Job Description

Job Title: Third-Party Risk Assessor (Onsite)
Location: Chicago, IL (100% Onsite)
Duration: 12-Month Contract-to-Hire
Pay Range: $70–$75/hour

Job Overview:
We are seeking an experienced Third-Party Risk Assessor to support enterprise-wide information security and risk initiatives by evaluating third-party vendors and their compliance with security, data privacy, and business continuity standards. The ideal candidate will have a strong technical foundation, excellent communication skills, and the ability to collaborate with both internal teams and external vendors.

Key Responsibilities:

Conduct information security, business continuity, and risk assessments of third-party vendors.
Evaluate vendor documentation to determine the adequacy of security controls and risk mitigation practices.
Collaborate with internal stakeholders and vendor representatives to define assessment scope and ensure readiness.
Identify control gaps, document risk findings, and provide actionable recommendations.
Participate in ongoing risk mitigation efforts, remediation tracking, and reporting to leadership.
Assist with continuous improvement efforts across third-party risk assessment processes.
Ensure alignment with relevant frameworks such as NIST, PCI-DSS, ISO 27001, SOX, and COBIT.

Required Skills & Experience:

5–7 years of experience in Information Security, IT Risk, or Third-Party Risk Management.

Hands-on operational knowledge of:

DLP technologies (Data Loss Prevention – email, endpoint, or network-based)
Endpoint protection suites (e.g., CrowdStrike, McAfee)
Intrusion Prevention Systems (IPS)
EDR (Endpoint Detection and Response)
Windows and Linux systems
Understanding of the design and purpose of key security tools and controls (e.g., patching, network security).
Strong experience conducting assessments and documenting risk findings.
Familiarity with industry standards and frameworks such as NIST, ISO 27001, PCI-DSS, COBIT, and ITIL.

Preferred Qualifications:

Prior experience performing third-party/vendor risk assessments.
Background in IT audit or risk advisory (Big 4 or internal audit functions is a plus).
Experience working with IT General Controls (ITGC) and ITDC controls.
Demonstrated ability to synthesize complex technical data into actionable insights for non-technical stakeholders.
Strong organizational skills with attention to detail and an analytical mindset.

Job Requirement

Third Party Risk Assessment
Data Loss Prevention
DLP
email
endpoint
network
Endpoint Protection
CrowdStrike
McAfee
Intrusion Prevention Systems
IPS
EDR
Endpoint Detection & Response
Information Security Controls
IT General Controls
ITGC
ITDC
Audit
Risk Management
Vendor Security Assessment

Reach Out to a Recruiter

Recruiter

Phone

Tanupriya Ganguly

tanupriya.ganguly@collabera.com

7032890198

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Risk Assessment

Job Requirement

Reach Out to a Recruiter

Apply Now

Apply Now