Senior Security Third Party Risk (TPRM) Analyst

OneTrustAtlanta, GA
$104,325 - $156,488Hybrid

About The Position

OneTrust is looking for a dynamic Senior Information Security GRC Analyst to support IT and InfoSec by performing various governance, risk, and compliance activities as part of the OneTrust InfoSec GRC team. This role will collaborate with architecture, legal, compliance, and privacy as part of our TPRM (Third Party Risk Management) process. This role will help review risk assessments for customers/vendors, data flow diagrams, architecture diagrams, certifications, questionnaires, etc.

Requirements

  • BA/BS in Computer Science, Cybersecurity, Information assurance or related subject
  • 5+ years, hands on experience in cybersecurity/risk management
  • Experience reviewing SOC 1, SOC 2 reports & ISO 27001 certifications
  • Experience reviewing security questionnaires, business continuity and disaster recovery plans as well as vendor contracts and security requirements
  • Understanding of information security best practices around confidentiality, integrity and availability
  • Cloud experience in at least one cloud provider
  • Understanding of applicable laws and regulations, including but not limited to, GDPR, CCPA, PCI-DSS, SOC 2, ISO, and FedRAMP
  • Understanding of the standards for the processing practice of third-party management
  • Understanding of technology domains including governance, risk management, security, privacy, and information technology and business continuity

Nice To Haves

  • CRISC, Security+, CISSP, CISM, CCSP, CISA, Azure
  • Knowledge of OneTrust security/GRC products.

Responsibilities

  • Collaborate with IT, InfoSec, and within the GRC team to mature the compliance process
  • Review vendor due diligence documentation, including SOC reports, ISO certifications, penetration testing reports, policies, and security questionnaires.
  • Evaluate supplier control environments against established risk management standards and frameworks.
  • Document risk findings and communicate recommendations to business stakeholders.
  • Execute risk assessments of third-party vendors
  • Mentor Junior Security Analysts, and work with them to evaluate and remediate complex security incidents
  • Responsible for generation and continued delivery of relevant KPIs and metrics
  • Provide feedback on solutions and processes to mature overall capabilities
  • Impart expertise on the OneTrust environment and security best practices to others on the team

Benefits

  • comprehensive healthcare coverage
  • flexible PTO
  • equity RSUs
  • annual performance bonus opportunities
  • retirement account support
  • 14+ weeks of paid parental leave
  • career development opportunities
  • company-paid privacy certification exam fees
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service