Cyber Security Third Party Continuous Monitoring Analyst - Truist

Key Responsibilities

• Perform continuous security monitoring of third‑party vendors, reviewing vulnerability scan results, security questionnaires, and threat intelligence feeds.
• Analyze security incidents and alerts from SIEM platforms to assess potential impact on the organization’s supply chain.
• Maintain and update third‑party risk registers, ensuring accurate documentation of risk levels, remediation actions, and compliance status.
• Collaborate with internal stakeholders and vendor security teams to drive remediation of identified weaknesses and verify closure.
• Generate regular risk reports and dashboards for leadership, highlighting trends, high‑risk vendors, and mitigation progress.

Requirements

• 2+ years of experience in cyber security, preferably in third‑party risk or continuous monitoring.
• Hands‑on experience with vulnerability scanning tools (e.g., Qualys, Nessus) and SIEM solutions.
• Strong understanding of security frameworks such as NIST, ISO 27001, and SOC 2.
• Ability to interpret technical findings and communicate risk to both technical and non‑technical audiences.
• Proficiency in documenting processes, creating reports, and using data visualization tools.