Third-Party Risk Consultant

Third-Party Risk Consultant, a part-time contract role focused on conducting cybersecurity risk assessments for medical devices and applications, working remotely for approximately 20 hours per week. Key ResponsibilitiesReview and assess requests for medical devices and software prior to network onboarding Perform cybersecurity risk assessments and identify risks, control gaps, and security deficiencies Participate in risk review meetings and contribute to risk ratings and documentationRequired QualificationsExperience in cybersecurity risk assessments for medical devices or healthcare IT systems Ability to interpret network diagrams Familiarity with ePHI and healthcare security considerations Understanding of security controls, including patching and hardening Experience operating within a structured TPRM process