This role ensures vendor risk activities--including due diligence, ongoing monitoring ... Strong analytical skills with the ability to assess risk data, identify trends, and support ...
Quick apply
This role ensures vendor risk activities--including due diligence, ongoing monitoring ... Strong analytical skills with the ability to assess risk data, identify trends, and support ...
Technology Risk Analyst
Richmond, VA · On-site
... vendors and ensure they are successfully processed through the firm's vendor risk process ... Analytical Thinking, Effective Communications, Information Assurance, Information Security ...
Technology Risk Analyst
Richmond, VA · On-site
... vendors and ensure they are successfully processed through the firm's vendor risk process ... Analytical Thinking, Effective Communications, Information Assurance, Information Security ...
... vendors and ensure they are successfully processed through the firm's vendor risk process ... Analytical Thinking, Effective Communications, Information Assurance, Information Security ...
... vendors and ensure they are successfully processed through the firm's vendor risk process ... Analytical Thinking, Effective Communications, Information Assurance, Information Security ...
Vendor Risk Assessment (VRA): * Conduct thorough risk assessments for potential and existing ... For positions that are available as remote work, Sentara Health employs associates in the following ...
Vendor Risk Assessment (VRA): * Conduct thorough risk assessments for potential and existing ... For positions that are available as remote work, Sentara Health employs associates in the following ...
Vendor Risk Assessment (VRA): * Conduct thorough risk assessments for potential and existing ... For positions that are available as remote work, Sentara Health employs associates in the following ...
Vendor Risk Assessment (VRA): * Conduct thorough risk assessments for potential and existing ... For positions that are available as remote work, Sentara Health employs associates in the following ...
The team seeks to optimize vendor resources and operations to mitigate risk and reduce costs. They ... Analyze and optimize operational procedures for quality and efficiency. * Lead moderate to large ...
The team seeks to optimize vendor resources and operations to mitigate risk and reduce costs. They ... Analyze and optimize operational procedures for quality and efficiency. * Lead moderate to large ...
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
The team seeks to optimize vendor resources and operations to mitigate risk and reduce costs. They ... Analyze and optimize operational procedures for quality and efficiency. * Lead moderate to large ...
The team seeks to optimize vendor resources and operations to mitigate risk and reduce costs. They ... Analyze and optimize operational procedures for quality and efficiency. * Lead moderate to large ...
Third Party Risk Analyst
Reston, VA · On-site
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
Third Party Risk Analyst
Reston, VA · On-site
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
Third Party Risk Analyst
Reston, VA · On-site
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
Third Party Risk Analyst
Reston, VA · On-site
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
Position Summary ANSER is seeking an Associate China Corporate & Investment Risk Analyst to support the Office of the Deputy Assistant Secretary of Defense for Industrial Base Policy (IBP), Global ...
Position Summary ANSER is seeking an Associate China Corporate & Investment Risk Analyst to support the Office of the Deputy Assistant Secretary of Defense for Industrial Base Policy (IBP), Global ...
Cyber Risk Analyst
Chantilly, VA · On-site
$86K - $138K/yr
We are seeking a Cyber Risk Analyst to support cybersecurity risk identification, assessment, and ... Bachelor's degree and 5 years experience or Masters degree and 3 years experience or Associate ...
New
Cyber Risk Analyst
Chantilly, VA · On-site
$86K - $138K/yr
We are seeking a Cyber Risk Analyst to support cybersecurity risk identification, assessment, and ... Bachelor's degree and 5 years experience or Masters degree and 3 years experience or Associate ...
New
Cyber Risk Analyst
Chantilly, VA · On-site
We are seeking a Cyber Risk Analyst to support cybersecurity risk identification, assessment, and ... Bachelor's degree and 5 years experience or Masters degree and 3 years experience or Associate ...
Cyber Risk Analyst
Chantilly, VA · On-site
We are seeking a Cyber Risk Analyst to support cybersecurity risk identification, assessment, and ... Bachelor's degree and 5 years experience or Masters degree and 3 years experience or Associate ...
We are seeking a Cyber Risk Analyst to support cybersecurity risk identification, assessment, and ... Bachelor's degree and 5 years experience or Masters degree and 3 years experience or Associate ...
We are seeking a Cyber Risk Analyst to support cybersecurity risk identification, assessment, and ... Bachelor's degree and 5 years experience or Masters degree and 3 years experience or Associate ...
Risk Manager
Mclean, VA · On-site
$55 - $60/hr
Perform risk tracking, trending, analysis, and executive reporting * Provide strategic thinking on next levels of maturity in Technology & Vendor Risk management * Act as a cross functional partner ...
Quick apply
Risk Manager
Mclean, VA · On-site
$55 - $60/hr
Perform risk tracking, trending, analysis, and executive reporting * Provide strategic thinking on next levels of maturity in Technology & Vendor Risk management * Act as a cross functional partner ...
As a GRC Analyst, you will play a pivotal role in ensuring our organization adheres to regulatory ... Support third-party risk management and vendor security assessments * Prepare and present regular ...
As a GRC Analyst, you will play a pivotal role in ensuring our organization adheres to regulatory ... Support third-party risk management and vendor security assessments * Prepare and present regular ...
Cybersecurity Supply Chain Risk Management Subject Matter Expert (Anticipated Position)
Arlington, VA · On-site
Review current vendor risk assessment processes covering supplier ownership, foreign influence ... Provide expert analysis related to NIST SP 800-161, cybersecurity risk management, enterprise risk ...
Cybersecurity Supply Chain Risk Management Subject Matter Expert (Anticipated Position)
Arlington, VA · On-site
Review current vendor risk assessment processes covering supplier ownership, foreign influence ... Provide expert analysis related to NIST SP 800-161, cybersecurity risk management, enterprise risk ...
Cyber Solutions Architect (Hybrid)
Arlington, VA · On-site
$90/hr
This role translates executive intent, policy direction, and vendor risk analysis into scalable, secure technical solutions and informs government decisions. The position is intended for a seasoned ...
Cyber Solutions Architect (Hybrid)
Arlington, VA · On-site
$90/hr
This role translates executive intent, policy direction, and vendor risk analysis into scalable, secure technical solutions and informs government decisions. The position is intended for a seasoned ...
Counterparty Risk Analyst Principal Associate As a Principal Risk Associate at Capital One you'll be responsible for working with business partners to identify and mitigate potential risks to Capital ...
Counterparty Risk Analyst Principal Associate As a Principal Risk Associate at Capital One you'll be responsible for working with business partners to identify and mitigate potential risks to Capital ...
Cybersecurity Supply Chain Risk Management Subject Matter Expert (Anticipated Position)
Arlington, VA · Remote
Review current vendor risk assessment processes covering supplier ownership, foreign influence ... Provide expert analysis related to NIST SP 800-161, cybersecurity risk management, enterprise risk ...
Cybersecurity Supply Chain Risk Management Subject Matter Expert (Anticipated Position)
Arlington, VA · Remote
Review current vendor risk assessment processes covering supplier ownership, foreign influence ... Provide expert analysis related to NIST SP 800-161, cybersecurity risk management, enterprise risk ...
Associate Vendor Risk Analyst information
What is the difference between Associate Vendor Risk Analyst vs Vendor Risk Analyst?
| Aspect | Associate Vendor Risk Analyst | Vendor Risk Analyst |
|---|---|---|
| Certifications | Certifications like CISA, CRISC beneficial | Similar certifications often required |
| Work Environment | Entry-level, supporting risk assessments | More experienced, leading risk evaluations |
| Employer & Industry Usage | Common in financial, tech, and consulting firms | Used across similar industries with increased responsibility |
The Associate Vendor Risk Analyst typically performs supporting tasks in vendor risk management, focusing on data collection and initial assessments. The Vendor Risk Analyst has more experience, leading risk evaluations and making strategic recommendations. Both roles require similar certifications and are used in comparable industries, but the Vendor Risk Analyst holds greater responsibility and independence.
What are the most commonly searched types of Vendor Risk Analyst jobs in Virginia? The most popular types of Vendor Risk Analyst jobs in Virginia are:
What are popular job titles related to Associate Vendor Risk Analyst jobs in Virginia? For Associate Vendor Risk Analyst jobs in Virginia, the most frequently searched job titles are:
What job categories do people searching Associate Vendor Risk Analyst jobs in Virginia look for? The top searched job categories for Associate Vendor Risk Analyst jobs in Virginia are:
What cities in Virginia are hiring for Associate Vendor Risk Analyst jobs? Cities in Virginia with the most Associate Vendor Risk Analyst job openings:
Full-time
Posted 8 days ago
Burke & Herbert Bank rating
5.6
Based on 8 frontline employees who took The Breakroom Quiz
132nd of 141 rated banks
Job description
CLASSIFICATION: Non-exempt
REPORTS TO: Program Manager, Third Party Risk Management
JOB DESCRIPTION
Summary/Objective
Under the direction of the Program Manager, Third Party Risk Management, the Third‑Party Vendor Risk Analyst supports the execution of the Bank’s Third‑Party Risk Management (TPRM) Program by performing day‑to‑day operational, analytical, and facilitation activities. In partnership with the Program Manager, the Analyst helps strengthen and sustain effective vendor review cadence by coordinating stakeholder inputs, producing complete and traceable documentation, and preparing exam‑ready artifacts. This role ensures vendor risk activities—including due diligence, ongoing monitoring, documentation, and issue tracking—are executed in a timely, consistent, and examination‑defensible manner.
Essential Functions
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
- Execute day‑to‑day third‑party risk management activities for new and existing vendors in accordance with the Bank’s TPRM Program, with heightened focus on critical and GLBA‑High risk relationships. Support initial due diligence and ongoing risk assessments by collecting, validating, and documenting required artifacts and supporting materials for higher‑risk vendors to facilitate effective review, challenge, and approval by the Program Manager.
- Maintain and manage the rolling vendor review schedule established by the Program Manager, ensuring critical and high‑risk third‑party relationships are prioritized and reviewed in accordance with established cadence and monitoring requirements. Coordinate with internal stakeholders, including Information Security, IT, Compliance, Finance, and Accounting, to obtain required risk assessment inputs and documentation necessary to support vendor reviews, providing enhanced facilitation for critical and GLBA‑High risk vendors.
- Track vendors review progress, outstanding action items, and remediation activities, maintaining visibility into reviews, documentation gaps, and issue resolution. Proactively escalate aging, overdue, or at‑risk items to the Program Manager to support timely awareness, decision‑making, and risk mitigation.
- Prepare, maintain, and organize comprehensive vendor review documentation, including executive summaries, evidence inventories, and issue tracking materials, with enhanced rigor applied to files associated with critical and GLBA‑High risk vendors. Ensure that vendor risk conclusions and assigned risk ratings are clearly, consistently, and defensibly supported by documented evidence prior to Program Manager review and sign‑off.
- Assist in documenting risk acceptance decisions and remediation status under the direction of the Program Manager, ensuring alignment with TPRM program standards, internal governance expectations, and applicable regulatory requirements.
- Identify procedural gaps, workflow inefficiencies, and documentation issues encountered during third‑party risk management execution, particularly those impacting oversight of critical and GLBA‑High risk vendors. Escalate observations and improvement opportunities to the Program Manager for program‑level evaluation and continuous improvement.
- Support ad hoc projects, process enhancements, and targeted initiatives led by the Program Manager to strengthen third‑party risk governance, operational effectiveness, and overall program maturity.
Other Duties
- Contract and Procurement Support
Support the Program Manager by tracking vendor‑related review milestones (including onboarding, renewals, and amendments). Ensure required vendor review documentation is complete, accurate, and available to support informed contractual decisions prior to execution.
- Governance, Metrics, and Reporting Support
Compile and maintain program metrics, status reports, and supporting materials used to measure and monitor Third‑Party Risk Management (TPRM) program performance. Assist, as directed by the Program Manager, in preparing materials for internal governance forums, audits, and regulatory examinations.
- Audit and Examination Readiness
Support internal and external audits and regulatory examinations by organizing vendor files, maintaining evidence mappings, and assembling response documentation under Program Manager guidance. Maintain vendor records in an exam‑ready state to support Program Manager interactions with auditors, regulators, and risk committees.
Skills/Abilities
- Working knowledge of third-party risk management practices and regulatory expectations within a regulated financial services environment.
- Strong analytical skills with the ability to assess risk data, identify trends, and support informed decision-making.
- Excellent organizational and documentation skills with high attention to detail.
- Ability to collaborate effectively with cross‑functional stakeholders while operating under Program Manager direction.
- Strong written and verbal communication skills to support clear documentation, issue analysis, and timely escalation.
- Proficiency with Microsoft Office (Excel, Word, PowerPoint) and risk management or workflow tracking tools.
Supervisory Responsibility
This position does not have supervisory responsibilities.
Work Environment
This job operates in an office setting, the opportunity to telework is not available. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. Office environment with job duties conducted via telephone, face to face meetings, and on the computer.
Physical Demands
This position requires manual dexterity, the ability to lift files and open cabinets. This position requires bending, stooping, or standing, as necessary.
Travel
Limited local travel may be required for this position.
Education and Experience
Education
- Requires a bachelor’s degree in business, Finance, Risk Management, Information Systems, Compliance, or a related field or equivalent professional experience supporting risk management functions in a regulated environment.
Experience
- Requires a minimum of 1 year of experience supporting third‑party vendor management, operational risk, compliance, information security, or a related risk discipline within a regulated industry.
- Requires hands‑on experience supporting vendor due diligence, ongoing monitoring, documentation, and issue tracking activities.
- Experience coordinating with cross‑functional stakeholders (e.g., Information Security, IT, Compliance, Finance) to collect and organize risk assessment inputs.
- Experience producing or maintaining clear, well‑organized, and evidence‑based documentation to support management review, audit, or regulatory examination.
Equal Employment Opportunity/M/F/disability/protected veteran status.
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.
About Burke & Herbert Bank
Sourced by ZipRecruiter
Industry
Commercial banking
Company size
201 - 500 Employees
Headquarters location
Alexandria, VA, US