Set firm aligned compliance requirements across audit methodology, SDLC, privacy, cybersecurity, third party risk, AI/GenAI, and data management lifecycle. Shape how risk and compliance are embedded ...
Set firm aligned compliance requirements across audit methodology, SDLC, privacy, cybersecurity, third party risk, AI/GenAI, and data management lifecycle. Shape how risk and compliance are embedded ...
Safety and Risk Manager
Louisburg, NC · On-site
$72K - $75K/yr
Serves as the liaison with Third Party Administrators (TPA) for public liability claims. Serves as ... Analytical ability and inductive thinking to adapt policies, procedures and methods for emergency ...
Safety and Risk Manager
Louisburg, NC · On-site
$72K - $75K/yr
Serves as the liaison with Third Party Administrators (TPA) for public liability claims. Serves as ... Analytical ability and inductive thinking to adapt policies, procedures and methods for emergency ...
The individual will use data analysis techniques to detect and prevent first and third-party debit ... RESPONSIBILITIES Subject matter expertise for card-based risk and fraud prevention- related ...
The individual will use data analysis techniques to detect and prevent first and third-party debit ... RESPONSIBILITIES Subject matter expertise for card-based risk and fraud prevention- related ...
Head of Technology Risk, Governance, and Controls
$220K - $350K/yr
Exceptional analytical skills and problem-solving abilities, with proven experience in prioritizing ... Experience assessing third-party, vendor, and cloud-dependency technology risk, including ...
Head of Technology Risk, Governance, and Controls
$220K - $350K/yr
Exceptional analytical skills and problem-solving abilities, with proven experience in prioritizing ... Experience assessing third-party, vendor, and cloud-dependency technology risk, including ...
The Analyst, SBL Reporting and Product Support supports the Senior Manager, SBL Product & Data ... Risk-Based Assessments: Evaluate third-party risks (e.g., cybersecurity, operational resilience ...
The Analyst, SBL Reporting and Product Support supports the Senior Manager, SBL Product & Data ... Risk-Based Assessments: Evaluate third-party risks (e.g., cybersecurity, operational resilience ...
The Analyst, SBL Reporting and Product Support supports the Senior Manager, SBL Product & Data ... Risk-Based Assessments: Evaluate third-party risks (e.g., cybersecurity, operational resilience ...
The Analyst, SBL Reporting and Product Support supports the Senior Manager, SBL Product & Data ... Risk-Based Assessments: Evaluate third-party risks (e.g., cybersecurity, operational resilience ...
Head of Technology Risk, Governance, and Controls
$220K - $350K/yr
Exceptional analytical skills and problem-solving abilities, with proven experience in prioritizing ... Experience assessing third-party, vendor, and cloud-dependency technology risk, including ...
Head of Technology Risk, Governance, and Controls
$220K - $350K/yr
Exceptional analytical skills and problem-solving abilities, with proven experience in prioritizing ... Experience assessing third-party, vendor, and cloud-dependency technology risk, including ...
Information Security Manager
Durham, NC · On-site
Lead investigations into security events, perform forensic analysis, document findings, and ... Vendor and third-party risk: Assess and manage security risk associated with vendors, contractors ...
Information Security Manager
Durham, NC · On-site
Lead investigations into security events, perform forensic analysis, document findings, and ... Vendor and third-party risk: Assess and manage security risk associated with vendors, contractors ...
... third-party risk assessments. • Responsible for handling service requests from the Business and Technology teams. • Responsible for analyzing/validating the requirements, defining the access ...
... third-party risk assessments. • Responsible for handling service requests from the Business and Technology teams. • Responsible for analyzing/validating the requirements, defining the access ...
Conducts risk assessments on third-party vendors for TPRM Program. * Provides compliance support ... Strong ability to analyze operational, financial, and cyber risk and translate findings into ...
Conducts risk assessments on third-party vendors for TPRM Program. * Provides compliance support ... Strong ability to analyze operational, financial, and cyber risk and translate findings into ...
IT Security Operations Analyst
Butner, NC · On-site
... third-party software patches across enterprise environments. * Utilize Microsoft Endpoint ... Conduct risk assessments and provide recommendations to address vulnerabilities, security gaps, and ...
IT Security Operations Analyst
Butner, NC · On-site
... third-party software patches across enterprise environments. * Utilize Microsoft Endpoint ... Conduct risk assessments and provide recommendations to address vulnerabilities, security gaps, and ...
... third-party software patches across enterprise environments. * Utilize Microsoft Endpoint ... Conduct risk assessments and provide recommendations to address vulnerabilities, security gaps, and ...
... third-party software patches across enterprise environments. * Utilize Microsoft Endpoint ... Conduct risk assessments and provide recommendations to address vulnerabilities, security gaps, and ...
IT Security Operations Analyst
Butner, NC · On-site
... third-party software patches across enterprise environments. * Utilize Microsoft Endpoint ... Conduct risk assessments and provide recommendations to address vulnerabilities, security gaps, and ...
Quick apply
IT Security Operations Analyst
Butner, NC · On-site
... third-party software patches across enterprise environments. * Utilize Microsoft Endpoint ... Conduct risk assessments and provide recommendations to address vulnerabilities, security gaps, and ...
Cybersecurity Professional
Raleigh, NC · On-site
... and third-party cybersecurity risk. Examine audit reports (e.g., SOC 1, SOC 2, ISO 27001, etc ... analysis. • Multi-task and manage demands of multiple projects, incidents, and tasks. • Meet ...
Cybersecurity Professional
Raleigh, NC · On-site
... and third-party cybersecurity risk. Examine audit reports (e.g., SOC 1, SOC 2, ISO 27001, etc ... analysis. • Multi-task and manage demands of multiple projects, incidents, and tasks. • Meet ...
Experience with project risk management, including failure mode effect analysis and planning * Experience implementing solutions utilizing third party vendors and third party products * Project ...
Experience with project risk management, including failure mode effect analysis and planning * Experience implementing solutions utilizing third party vendors and third party products * Project ...
Project Manager
Raleigh, NC · On-site
... project risk management, including failure mode effect analysis • Experience implementing solutions utilizing third party vendors and third party products • IT Project Management experience ...
Project Manager
Raleigh, NC · On-site
... project risk management, including failure mode effect analysis • Experience implementing solutions utilizing third party vendors and third party products • IT Project Management experience ...
Personal Risk Advisor
Raleigh, NC · On-site
Implement comprehensive risk analysis reviews focused on identifying personal, professional and ... Engage, introduce and position value-added third-party subject matter experts in response to client ...
Personal Risk Advisor
Raleigh, NC · On-site
Implement comprehensive risk analysis reviews focused on identifying personal, professional and ... Engage, introduce and position value-added third-party subject matter experts in response to client ...
Cybersecurity Professional
Raleigh, NC · On-site
Supports assessment of internal and third-party cybersecurity risk. Examine audit reports (e.g ... Malware analysis. * Multi-task and manage demands of multiple projects, incidents, and tasks.
Cybersecurity Professional
Raleigh, NC · On-site
Supports assessment of internal and third-party cybersecurity risk. Examine audit reports (e.g ... Malware analysis. * Multi-task and manage demands of multiple projects, incidents, and tasks.
Supports assessment of internal and third-party cybersecurity risk. Examine audit reports (e.g ... Malware analysis. * Multi-task and manage demands of multiple projects, incidents, and tasks.
Supports assessment of internal and third-party cybersecurity risk. Examine audit reports (e.g ... Malware analysis. * Multi-task and manage demands of multiple projects, incidents, and tasks.
... third-party risk and vendor compliance monitoring. * Relevant certifications (preferred, not required): * CISA, CISSP, CRISC, PCI ISA, or similar. Key Competencies * Strong analytical and risk-based ...
... third-party risk and vendor compliance monitoring. * Relevant certifications (preferred, not required): * CISA, CISSP, CRISC, PCI ISA, or similar. Key Competencies * Strong analytical and risk-based ...
Full Time Third Party Risk Analyst information
See Raleigh, NC salary details
$14.96 - $19.42
3% of jobs
$19.42 - $23.88
7% of jobs
$23.88 - $28.34
12% of jobs
$29.21 is the 25th percentile. Wages below this are outliers.
$28.34 - $32.80
15% of jobs
$32.80 - $37.26
13% of jobs
The median wage is $37.41 / hr.
$37.26 - $41.72
16% of jobs
$41.72 - $46.18
8% of jobs
$46.74 is the 75th percentile. Wages above this are outliers.
$46.18 - $50.64
11% of jobs
$50.64 - $55.10
6% of jobs
$55.10 - $59.56
6% of jobs
$59.56 - $64.03
3% of jobs
$14
$39
$64
How much do full time third party risk analyst jobs pay per hour?
What is the difference between Full Time Third Party Risk Analyst vs Contract Third Party Risk Analyst?
| Aspect | Full Time Third Party Risk Analyst | Contract Third Party Risk Analyst |
|---|---|---|
| Employment Type | Permanent, full-time | Temporary, project-based |
| Certifications | Typically required or preferred (e.g., CRISC, CTPRP) | Often required, but may vary |
| Work Environment | In-house, corporate setting | Remote or on-site, client-specific |
| Industry Usage | Common in finance, banking, and insurance | Used across industries for specific projects |
While both roles focus on third-party risk management, Full Time Third Party Risk Analysts are permanent employees working within a company, whereas Contract Third Party Risk Analysts are temporary contractors hired for specific projects. The full-time role offers stability and ongoing responsibilities, while the contract position provides flexibility and project-based work. Both roles often require similar certifications and industry knowledge, but employment type and work environment differ significantly.
Full-time
Re-posted 7 days ago
Job description
We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, culture and talent experience and our ability to be compelling to our clients. You'll find an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you and that's why there's nowhere like RSM.
Director, Assurance Digital - Risk & Compliance
Assurance Digital delivers the technology that enables high quality external assurance engagements across the U.S. and the global network. The Director of Risk & Compliance establishes and scales the risk and compliance strategy for Assurance Digital, including leading a centralized certification program that ensures technology is governed, inspection ready, and fit for use in assurance engagements. Operating at the intersection of assurance, technology, and regulation, this role defines the Risk & Compliance operating model, embeds requirements across the product lifecycle, and influences risk based decisions that support audit quality and regulatory confidence at scale.
ESSENTIAL DUTIES:
- Risk & Compliance Strategy and Operating Model - Define and evolve the Risk & Compliance vision, operating model, and application certification strategy for Assurance Digital. Set firm aligned compliance requirements across audit methodology, SDLC, privacy, cybersecurity, third party risk, AI/GenAI, and data management lifecycle. Shape how risk and compliance are embedded into product development, procurement, and global deployment at scale.
- Certification Program Ownership - Own the overall design, effectiveness, and continuous improvement of the central certification program. Drive certification outcomes through stakeholder engagement, validate application release decisioning, and enable inspection readiness. Set standards for documentation quality and consistency.
- Governance, Decisioning, and Enterprise Representation - Drive governance, escalation, and resolution of significant risks. Represent Risk & Compliance on enterprise digital initiatives and influence cross functional decisions and priorities. Establish clear risk and compliance gates, decision rights, and escalation paths.
- Global Regulatory and Risk Leadership - Lead global alignment across network firms adopting US-led product development. Monitor evolving laws, regulations, and professional standards and translate implications into strategic guidance.
- Senior Advisory and Stakeholder Influence - Serve as a trusted advisor to senior IT, product, engineering, and assurance leaders. Challenge effectively and drive pragmatic, risk-based solutions aligned with audit quality and regulatory expectations.
- Team Leadership and Capability Building - Build, mentor, and scale the Digital Risk & Compliance organization.
- Other duties as assigned
QUALIFICATIONS:
EDUCATION/CERTIFICATIONS
- Degree: Bachelor's degree in accounting, Information Systems, Business, Computer Science, or a related field - required
- Certification: preferred - CPA, CISA, CRISC, AIGP, AAIR, AAISM or similar certification
TECHNICAL/SOFT SKILLS
- Translate technical and regulatory requirements into clear decisions and expectations for technical and non-technical audiences, including senior leaders.
- Lead multiple concurrent workstreams across a matrixed organization, prioritizing effectively and delivering through others.
EXPERIENCE
- 10+ Years of experience:
LEADERSHIP SKILLS
- Build and maintain senior stakeholder relationships across the business, technology, and risk/compliance functions.
- Lead cross-functional workstreams and influence senior stakeholders in a matrixed environment
NUMBER OF EMPLOYEES SUPERVISED (FTEs)
- Direct: 2+
At RSM, we offer a competitive benefits and compensation package for all our people.We offer flexibility in your schedule, empowering you to balance life's demands, while also maintaining your ability to serve clients.Learn more about our total rewards at https://rsmus.com/careers/working-at-rsm/benefits.
All applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race; color; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender; sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the US uniformed service; US Military/Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law.
Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership.RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at 800-274-3978 or send us an email at careers@rsmus.com.
RSM does not intend to hire entry level candidates who will require sponsorship now OR in the future (i.e. F-1 visa holders). If you are a recent U.S. college / university graduate possessing 1-2 years of progressive and relevant work experience in a same or similar role to the one for which you are applying, excluding internships, you may be eligible for hire as an experienced associate.
RSM will consider for employment qualified applicants with arrest or conviction records. For those living in California or applying to a position in California, please click here for additional information.
At RSM, an employee's pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range.
Compensation Range: $147,000 - $260,700Individualsselected for this role will be eligible for a discretionary bonus based on firm and individual performance.