3rd Party and Contract Analyst

Overview

Remote
Depends on Experience
Contract - W2
Contract - Independent

Skills

onetrust
vanta
archer
DORA
GDPR

Job Details

We are looking for a 3rd Party and Contract Analyst for a position expected to be at least 6 months and could turn into a permanent role.

The position is based on the east coast and expected to be all remote.

No 3rd parties or sponsorship available.

Some details are below.

As a member of the Corporate GRC team, you will own and operate key processes in third-party (vendor and commercial partner) due diligence, contract compliance monitoring, and supporting regulatory and audit readiness (e.g., EU DORA, SOC 2, ISO, EU AI Act).

Skills

3+ years of experience in vendor risk management, third-party due diligence, contract compliance, procurement risk, or similar role in line with DORA, GDPR, or EU AI Act requirements
Familiarity with regulatory frameworks and certifications (SOC 2, ISO 27001, PCI DSS, GDPR, DORA, EU AI Act).
Experience working with risk or GRC tools (e.g., OneTrust, Vanta, Archer, or equivalent)

Nice to have
Professional certifications such as CTPRP (Certified Third Party Risk Professional), CIPP/E, or ISO 27001 Foundation
Understanding of how AI tools can support third-party due diligence, contract analysis, and risk monitoring

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.