ZipRecruiter

Log In

3

Full Time Remote Third Party Risk Jobs (NOW HIRING)

LoanCare

Counterparty Risk Program Manager- Remote

Coordinate change management activities across Counterparty Risk teams including Third-Party Risk Management and Sourcing/Procurement. * Prepare and deliver management reporting on all aspects of the ...

Akoya

Head of Risk & Security

Boston, NY · On-site +1

Lead third-party risk management across fintech partners, vendors, and service providers. * Conduct ... Align IT and Security controls with remote-first operating model. Team Leadership & Organizational ...

Zaviant

Senior Manager - USA

Remote (US) Travel: Up to 25% About Zaviant Zaviant, headquartered in Philadelphia, is a boutique consulting firm specializing in Data Security , Privacy , and Third-Party Risk Management . We help ...

Upstart

Senior Manager, Vendor Management

The function works within Upstart's enterprise third-party risk management framework to ensure ... Remote Time zone requirements The team operates on the East/West coast time zones. Travel ...

Nebius

Compliance Due Diligence Specialist

$90K - $120K/yr

Conduct third-party due diligence assessments, including risk scoring, screening, verification, and documentation of third-party risk profiles * Perform name screening against sanctions, PEP, adverse ...

next page

Showing results 1-20

All JobsThird Party Risk JobsFull Time Remote Third Party Risk Jobs

Full Time Remote Third Party Risk information

See salary details

$14

$30

$74

How much do full time remote third party risk jobs pay per hour?

As of Jun 17, 2026, the average hourly pay for full time remote third party risk in the United States is $30.34, according to ZipRecruiter salary data. Most workers in this role earn between $19.47 and $38.70 per hour, depending on experience, location, and employer.

How does a Full Time Remote Third Party Risk professional typically collaborate with internal teams and external vendors?

As a Full Time Remote Third Party Risk professional, you will regularly coordinate with internal stakeholders such as procurement, legal, IT security, and compliance teams to assess and manage vendor risks. Communication is often conducted through video meetings, emails, and collaboration platforms, ensuring all parties are aligned on risk assessment processes and remediation actions. Additionally, you may interact directly with third-party vendors to gather necessary documentation, clarify risk-related queries, and support due diligence activities. Strong organizational and communication skills are essential for managing these cross-functional relationships effectively in a remote setting.

What is a Full Time Remote Third Party Risk professional?

A Full Time Remote Third Party Risk professional is responsible for assessing, monitoring, and managing the risks that arise from an organization's relationships with external vendors or service providers, while working remotely. Their job includes conducting due diligence on third parties, ensuring compliance with relevant regulations, and implementing risk mitigation strategies. They collaborate with internal teams to identify potential threats to data security, operational continuity, or reputation that may arise from third-party engagements. This role is crucial for organizations that rely on external partners and want to minimize potential risks, especially in industries like finance, healthcare, and technology.

What is the difference between Full Time Remote Third Party Risk vs Full Time Remote Vendor Risk Analyst?

AspectFull Time Remote Third Party RiskFull Time Remote Vendor Risk Analyst
CredentialsRisk management certifications, such as CRISC or CTPRPRisk management certifications, often CRISC or CTPRP
Work EnvironmentRemote, collaborative with risk teams and vendorsRemote, focused on analyzing vendor risks and compliance
Industry UsageFinancial, healthcare, technology sectorsFinancial, healthcare, technology sectors
Job FocusManaging risks associated with third-party vendors and partnersAssessing and mitigating risks posed by vendors

While both roles involve risk assessment and require similar certifications, the Full Time Remote Third Party Risk role emphasizes managing overall third-party relationships, whereas the Full Time Remote Vendor Risk Analyst focuses specifically on analyzing individual vendors' risks. Both positions are integral to organizational risk management in remote settings.

What are the key skills and qualifications needed to thrive as a Full Time Remote Third Party Risk professional, and why are they important?

To thrive as a Full Time Remote Third Party Risk professional, you need a solid understanding of risk management principles, vendor assessment procedures, and regulatory compliance, typically supported by a bachelor's degree in business, finance, or a related field. Familiarity with third-party risk management platforms, GRC (governance, risk, and compliance) tools, and relevant certifications such as CTPRP or CISA is highly valuable. Strong analytical thinking, effective communication, and the ability to manage projects independently are crucial soft skills. These competencies are essential for accurately assessing vendor risks, ensuring regulatory compliance, and maintaining the security and integrity of organizational operations in a remote environment.
More about Full Time Remote Third Party Risk jobs
What cities are hiring for Full Time Remote Third Party Risk jobs? Cities with the most Full Time Remote Third Party Risk job openings:
What states have the most Full Time Remote Third Party Risk jobs? States with the most job openings for Full Time Remote Third Party Risk jobs include:
What job categories do people searching Full Time Remote Third Party Risk jobs look for? The top searched job categories for Full Time Remote Third Party Risk jobs are:
Full Time Remote Third Party Risk jobs near you
(On-site) Information Security Vendor Management Analyst

(On-site) Information Security Vendor Management Analyst

Centreville Bank

West Warwick, RI • On-site, Remote

Full-time

Posted 27 days ago

Job description

The Vendor Management Analyst is responsible for supporting the Bank's Third-Party Risk Management (TPRM) Program within the Information Security department. This role evaluates the risk of new and existing third-party relationships, conducts and documents due diligence, supports contract reviews, and manages ongoing monitoring activities to ensure compliance with regulatory guidance (e.g., FFIEC, GLBA, FDIC). The Analyst will work closely with business owners, Risk, Compliance, Project Management, Finance, and senior leadership to ensure vendors meet the Bank's security, operational, and financial requirements.
Third-Party Risk Assessments
  • Evaluate risks presented by new and existing vendors across cybersecurity, operational, financial, compliance, business continuity, privacy, and reputational domains.
  • Determine required risk tiering and corresponding due diligence requirements.
  • Partner with business units to ensure clear articulation of vendor use cases and criticality.Due Diligence and Ongoing Vendor Monitoring
  • Gather required due diligence artifacts such as SOC 2 reports, independent audits, penetration test summaries, cybersecurity questionnaires, financial statements, insurance certificates, business continuity plans, and regulatory compliance attestations.
  • Review and assess due diligence documents for adequacy, control effectiveness, gaps, and red flags.
  • Document findings, residual risks, and recommendations within the Bank's vendor management system.
  • Request and follow up on remediation or compensating controls for identified deficiencies.
  • Maintain documentation memorializing new vendor diligence and ongoing monitoring results.

Contract Review Support
  • Review contracts and amendments for required information security and risk-related provisions, including data security requirements, confidentiality, incident reporting, business continuity, right to audit, subcontractor oversight, and termination rights.
  • Collaborate with Legal and Procurement to ensure contract terms align with bank policy.

Issue Tracking & Remediation Oversight
  • Maintain the Bank's Vendor Watchlist to track issues with vendors, vendor remediation efforts, and follow up on open issues.
  • Document evidence of corrective actions and ensure timely resolution of audit or exam findings.

Program Governance & Reporting
  • Prepare reporting for management, committees, and the Board.
  • Support internal/external audits and regulatory exams.
  • Assist with development and enhancement of TPRM policies and procedures.
  • Train business units and stakeholders on the vendor management process and program.

Requirements
  • Bachelor's degree in Information Security, Business, Risk Management, or related field.
  • 2-5 years of experience in vendor management, third-party risk, cybersecurity risk, or related banking role.
  • Prior experience in banking or financial services.
  • Ability to interpret SOC reports and cybersecurity controls.
  • Strong analytical and documentation skills.

Preferred Qualifications
  • Understanding of FFIEC, GLBA, and industry best practices.
  • Familiarity with NIST CSF, ISO 27001, SIG/AUP questionnaires.
  • Experience reviewing contracts from a security or risk perspective.
  • Exceptional candidates will have relevant certifications such as CTPRP, CRVPM, or CRISC

Apply