Note: The job is a remote job and is open to candidates in USA. Hampton North is hiring a GRC Analyst to support their Governance, Risk, and Compliance program with a focus on third-party vendor risk. The role involves managing vendor assessment requests and analyzing workflow trends to improve processes.
Responsibilities
- Manage and triage third-party vendor risk assessment intakes, tracking each request accurately from submission through resolution
- Prioritize, route, and track vendor assessments so requests are reviewed and completed on time
- Perform vendor risk reviews, reassessments, and remediation tracking
- Coordinate with vendors and partners on assessment findings and follow-up items
- Drive cross-functional follow-up with Security, Legal, Privacy, Procurement, IT, Finance, and business owners
- Support broader third-party risk program management activities
- Analyze intake and ticketing data to identify workflow trends and improvement opportunities across guidance, templates, reporting, and automation
Skills
- 2+ years in GRC
- Working knowledge of cybersecurity compliance frameworks and controls: ISO 27001, NIST CSF, COSO, SOC 2, PCI-DSS
- Strong organizational and operational discipline, with the ability to escalate clearly and quickly and bring informed recommendations to management
- A collaborative approach in a dynamic, fast-moving setting
- A bachelor's degree in any discipline
- Third-party risk management experience
- Computer science, cybersecurity, risk, or technology degrees
Company Overview