ZipRecruiter

Log In

1

Grc Third Party Risk Analyst Jobs (NOW HIRING)

Radar Labs, Inc

Senior GRC Analyst

New York, NY · On-site

$125K - $160K/yr

About the role We're hiring a Senior GRC Analyst to help scale Radar's security and compliance ... Own and evolve Radar's third-party risk program, including vendor security and compliance reviews ...

HealthEquity

Sr Third Party Risk Analyst (TPRM)

$87.50K - $111.50K/yr

As a Senior Third Party Risk Analyst , you'll play a critical role in ensuring the security ... Prior experience with TPRM / GRC platforms , including tools such as Vanta, Archer, or ServiceNow.

Citizens

Third Party Risk Analyst

Philadelphia, PA

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

Citizens

Third Party Risk Analyst

Plano, TX · On-site

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

Citizens

Third Party Risk Analyst

Southfield, MI · On-site

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

Citizens

Third Party Risk Analyst

Irving, TX · On-site

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

Citizens

Third Party Risk Analyst

Johnston, RI · On-site

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

Citizens

Third Party Risk Analyst

Glen Allen, VA · On-site

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

Citizens

Third Party Risk Analyst

Cleveland, OH · On-site

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

Citizens

Third Party Risk Analyst

Irving, TX

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

Citizens

Third Party Risk Analyst

Southfield, MI

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

Citizens

Third Party Risk Analyst

Boston, MA · On-site

$86K - $101K/yr

Description Sponsorship Oversight Network Compliance Analyst Citizens Bank sponsors payment ... Familiarity with PCI DSS, Account Data Compromise (ADC), and thirdparty risk oversight Education:

next page

Showing results 1-20

People also search for

All JobsGrc Third Party Risk Analyst Jobs

Grc Third Party Risk Analyst information

See salary details

$44.5K

$86.7K

$124.5K

How much do grc third party risk analyst jobs pay per year?

As of May 31, 2026, the average yearly pay for grc third party risk analyst in the United States is $86,688.00, according to ZipRecruiter salary data. Most workers in this role earn between $56,500.00 and $100,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a GRC Third Party Risk Analyst, and why are they important?

To thrive as a GRC Third Party Risk Analyst, you need a strong understanding of risk management frameworks, compliance regulations, and vendor risk assessment methodologies, typically supported by a degree in information security, business, or a related field. Familiarity with GRC platforms (like Archer or ServiceNow), third-party risk management tools, and certifications such as CISA or CRISC is highly beneficial. Strong analytical thinking, attention to detail, and effective communication skills are essential soft skills for this role. These competencies ensure that organizations can accurately assess and mitigate third-party risks, maintaining compliance and protecting sensitive data.

What are some typical challenges a GRC Third Party Risk Analyst may encounter when assessing vendors?

As a GRC Third Party Risk Analyst, you may face challenges such as obtaining timely and complete responses from vendors, especially when dealing with large or international organizations. Navigating varying levels of vendor maturity in risk management practices can also be difficult. Additionally, balancing the need for thorough risk assessments with fast-paced business timelines requires strong communication and prioritization skills. Collaborating closely with procurement, legal, and IT teams is essential to ensure all risks are properly identified and managed.

What is a GRC Third Party Risk Analyst?

A GRC Third Party Risk Analyst is a professional who assesses and manages the risks associated with an organization’s external vendors, suppliers, or partners. Their role involves evaluating third-party compliance with regulatory standards and internal policies, identifying potential risks such as data breaches or non-compliance, and recommending mitigation strategies. They use frameworks like GRC (Governance, Risk, and Compliance) to help ensure that third-party relationships do not compromise the organization's security or reputation. This role often collaborates with procurement, legal, and IT teams to maintain robust risk management processes.

What is the difference between Grc Third Party Risk Analyst vs Grc Vendor Risk Analyst?

AspectGrc Third Party Risk AnalystGrc Vendor Risk Analyst
CertificationsCertifications like CRISC, CISA often preferredSame certifications commonly required
Work EnvironmentFocuses on third-party relationships and risk assessmentsPrimarily evaluates vendor-specific risks and compliance
Industry UsageUsed across finance, healthcare, and tech sectorsCommonly found in industries with extensive vendor networks

The Grc Third Party Risk Analyst and Grc Vendor Risk Analyst roles overlap significantly in certifications and work environment. The main difference lies in scope: the Third Party Risk Analyst assesses overall third-party relationships, while the Vendor Risk Analyst concentrates specifically on individual vendors. Both roles are vital for managing third-party risks in various industries.

More about Grc Third Party Risk Analyst jobs
What cities are hiring for Grc Third Party Risk Analyst jobs? Cities with the most Grc Third Party Risk Analyst job openings:
What states have the most Grc Third Party Risk Analyst jobs? States with the most job openings for Grc Third Party Risk Analyst jobs include:
What job categories do people searching Grc Third Party Risk Analyst jobs look for? The top searched job categories for Grc Third Party Risk Analyst jobs are:
Grc Third Party Risk Analyst jobs near you
Infographic showing various Grc Third Party Risk Analyst job openings in the United States as of May 2026, with employment types broken down into 100% Full Time. Highlights an 100% In-person job distribution, with an average salary of $86,688 per year, or $41.7 per hour.
Information Security Third-Party Risk Analyst

Information Security Third-Party Risk Analyst

US Bank

Cincinnati, OH

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 2 days ago

U.S. Bank rating

8.2

Company rating: 8.2 out of 10

Based on 344 frontline employees who took The Breakroom Quiz

37th of 141 rated banks

Job description

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.

Job Description
This position is not eligible for visa sponsorship.

Location expectations:
This role requires working from a U.S. Bank location three (3) or more days per week.

US Bank is seeking an Information Security Third-Party Risk Analyst to join our Information Security organization, supporting third-party risk management and vendor security oversight. This role is responsible for evaluating and managing information security risk across external vendors, ensuring appropriate controls are in place, and driving remediation of identified risks.

This person will perform hands-on third-party security risk assessments, analyze vendor controls and security posture, and partner with internal stakeholders and external vendors to reduce risk exposure. They will play a key role in identifying control gaps, tracking remediation, supporting contract security reviews, and contributing to ongoing risk monitoring, reporting, and audit activities.

Responsibilities:
  • Perform information security risk assessments on third-party vendors (new and existing)
  • Review and analyze vendor security questionnaires, control responses, and supporting documentation
  • Identify security gaps, control deficiencies, and non-compliance issues
  • Document and track risk findings and remediation efforts through resolution
  • Evaluate vendor remediation plans and compensating controls
  • Partner with business stakeholders and third parties to explain risks and recommend mitigation strategies
  • Support contract review and redlining with a focus on information security requirements
  • Conduct continuous monitoring of vendor security posture
  • Review and assess third-party security incidents and perform post-event analysis
  • Contribute to monthly and quarterly reporting, metrics, and trend analysis
  • Support audit activities, control testing, and quality assurance efforts
  • Collaborate across information security, risk, and compliance teams
Must-Have Skills:
  • 5+ years of experience in information security
  • 5+ years of experience in third-party risk management, vendor risk, or risk analysis
  • Hands-on experience conducting third-party/vendor information security risk assessments
  • Strong understanding of information security controls and risk concepts
  • Experience identifying control gaps and evaluating remediation actions
  • Experience with contract review or redlining related to security requirements
  • Ability to clearly communicate risk to both technical and non-technical stakeholders
Nice-to-Have Skills:
  • Familiarity with security frameworks (e.g., NIST 800-53)
  • Experience reviewing SOC 2 Type II reports
  • Experience with continuous monitoring tools (e.g., BitSight, Archer)
  • Exposure to third-party security incident response and post-event analysis
  • Broader technical cybersecurity background
  • Exposure to emerging risks (e.g., AI, new technologies)

If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to ourdisability accommodations for applicants.

Benefits:

Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following:

  • Healthcare (medical, dental, vision)

  • Basic term and optional term life insurance

  • Short-term and long-term disability

  • Pregnancy disability and parental leave

  • 401(k) and employer-funded retirement plan

  • Paid vacation (from two to five weeks depending on salary grade and tenure)

  • Up to 11 paid holiday opportunities

  • Adoption assistance

  • Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law

Review our full benefits available by employment status here.

U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.

E-Verify

U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about theE-Verify program.

The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $98,175.00 - $115,500.00

U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.

Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.

Posting may be closed earlier due to high volume of applicants.

What U.S. Bank employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

U.S. Bank logo

About U.S. Bank

Sourced by ZipRecruiter

U.S. Bank is a reputable and established financial institution that plays a significant role in the banking sector. With a history spanning over 150 years, U.S. Bank has built a strong foundation of trust and reliability. As a comprehensive bank, they offer a wide array of financial products and services to cater to the diverse needs of their customers, including individuals, businesses, and communities. Customer satisfaction is of utmost importance to U.S. Bank. They prioritize delivering exceptional service and fostering long-term relationships with their clients. Through their extensive network of branches and advanced digital banking platforms, U.S. Bank ensures convenient access to their services, empowering customers to manage their finances efficiently and securely.

Industry

Banking and credit intermediation

Company size

10,000+ Employees

Headquarters location

Minneapolis, MN, US

Year founded

1863

Social media

FacebookTwitter

View All U.S. Bank Jobs

Apply