This role ensures vendor risk activities--including due diligence, ongoing monitoring ... Strong analytical skills with the ability to assess risk data, identify trends, and support ...
Quick apply
This role ensures vendor risk activities--including due diligence, ongoing monitoring ... Strong analytical skills with the ability to assess risk data, identify trends, and support ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC ยท Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC ยท Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC ยท On-site +1
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC ยท On-site +1
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC ยท Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC ยท Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Review vendor-provided security evidence and identify control gaps and areas of risk. Candidate ... Strong ability to analyze control evidence and document risk findings clearly * Technical ...
Review vendor-provided security evidence and identify control gaps and areas of risk. Candidate ... Strong ability to analyze control evidence and document risk findings clearly * Technical ...
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
Third Party Risk Analyst
Reston, VA ยท On-site
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
Third Party Risk Analyst
Reston, VA ยท On-site
Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...
Risk Manager
Mclean, VA ยท On-site
$55 - $60/hr
Perform risk tracking, trending, analysis, and executive reporting * Provide strategic thinking on next levels of maturity in Technology & Vendor Risk management * Act as a cross functional partner ...
Quick apply
Risk Manager
Mclean, VA ยท On-site
$55 - $60/hr
Perform risk tracking, trending, analysis, and executive reporting * Provide strategic thinking on next levels of maturity in Technology & Vendor Risk management * Act as a cross functional partner ...
Cyber Solutions Architect (Hybrid)
Arlington, VA ยท On-site
$90/hr
This role translates executive intent, policy direction, and vendor risk analysis into scalable, secure technical solutions and informs government decisions. The position is intended for a seasoned ...
Cyber Solutions Architect (Hybrid)
Arlington, VA ยท On-site
$90/hr
This role translates executive intent, policy direction, and vendor risk analysis into scalable, secure technical solutions and informs government decisions. The position is intended for a seasoned ...
Cybersecurity Supply Chain Risk Management Subject Matter Expert (Anticipated Position)
Arlington, VA ยท Remote
Review current vendor risk assessment processes covering supplier ownership, foreign influence ... Provide expert analysis related to NIST SP 800-161, cybersecurity risk management, enterprise risk ...
Cybersecurity Supply Chain Risk Management Subject Matter Expert (Anticipated Position)
Arlington, VA ยท Remote
Review current vendor risk assessment processes covering supplier ownership, foreign influence ... Provide expert analysis related to NIST SP 800-161, cybersecurity risk management, enterprise risk ...
Review vendor-provided security evidence and identify control gaps and areas of risk. Candidate ... Strong ability to analyze control evidence and document risk findings clearly * Technical ...
Review vendor-provided security evidence and identify control gaps and areas of risk. Candidate ... Strong ability to analyze control evidence and document risk findings clearly * Technical ...
Review vendor-provided security evidence and identify control gaps and areas of risk. Candidate ... Strong ability to analyze control evidence and document risk findings clearly * Technical ...
Review vendor-provided security evidence and identify control gaps and areas of risk. Candidate ... Strong ability to analyze control evidence and document risk findings clearly * Technical ...
... vendor population. * Support thirdparty cyber and information security risk review activities ... Risk Governance, Reporting & Analytics: * Independently develop and deliver executive-level risk ...
... vendor population. * Support thirdparty cyber and information security risk review activities ... Risk Governance, Reporting & Analytics: * Independently develop and deliver executive-level risk ...
Analyze tail risks and conduct stress tests based on hypothetical and historical scenarios ... Prototype and develop risk reporting and interactive tools to extend upon vendor risk platforms ...
Analyze tail risks and conduct stress tests based on hypothetical and historical scenarios ... Prototype and develop risk reporting and interactive tools to extend upon vendor risk platforms ...
Analyze tail risks and conduct stress tests based on hypothetical and historical scenarios ... Prototype and develop risk reporting and interactive tools to extend upon vendor risk platforms ...
Analyze tail risks and conduct stress tests based on hypothetical and historical scenarios ... Prototype and develop risk reporting and interactive tools to extend upon vendor risk platforms ...
Analyze tail risks and conduct stress tests based on hypothetical and historical scenarios ... Prototype and develop risk reporting and interactive tools to extend upon vendor risk platforms ...
Analyze tail risks and conduct stress tests based on hypothetical and historical scenarios ... Prototype and develop risk reporting and interactive tools to extend upon vendor risk platforms ...
Analyze tail risks and conduct stress tests based on hypothetical and historical scenarios ... Prototype and develop risk reporting and tools to enhance existing vendor risk platforms (primarily ...
Analyze tail risks and conduct stress tests based on hypothetical and historical scenarios ... Prototype and develop risk reporting and tools to enhance existing vendor risk platforms (primarily ...
Third-Party Risk Management Analyst
Bethesda, MD ยท On-site
$80K - $129K/yr
Responsibilities As a Third-Party Risk Management Analyst, you will play a critical role in ensuring that our partnership with vendors and service providers are secure, compliant and align with the ...
Third-Party Risk Management Analyst
Bethesda, MD ยท On-site
$80K - $129K/yr
Responsibilities As a Third-Party Risk Management Analyst, you will play a critical role in ensuring that our partnership with vendors and service providers are secure, compliant and align with the ...
Third-Party Risk Management Analyst
Bethesda, MD ยท Hybrid
$80K - $129K/yr
Responsibilities As a Third-Party Risk Management Analyst, you will play a critical role in ensuring that our partnership with vendors and service providers are secure, compliant and align with the ...
Third-Party Risk Management Analyst
Bethesda, MD ยท Hybrid
$80K - $129K/yr
Responsibilities As a Third-Party Risk Management Analyst, you will play a critical role in ensuring that our partnership with vendors and service providers are secure, compliant and align with the ...
... Analysis platforms, vulnerability intelligence services, and vendor risk management tools to detect insecure dependencies, exposed libraries, and high-risk components embedded within mission ...
... Analysis platforms, vulnerability intelligence services, and vendor risk management tools to detect insecure dependencies, exposed libraries, and high-risk components embedded within mission ...
Internship Vendor Risk Analyst information
See Silver Spring, MD salary details
$67.2K - $74.8K
13% of jobs
$82.2K is the 25th percentile. Wages below this are outliers.
$74.8K - $82.3K
13% of jobs
$82.3K - $89.9K
11% of jobs
$89.9K - $97.5K
0% of jobs
$97.5K - $105K
2% of jobs
$105K - $112.6K
9% of jobs
The median wage is $114.5K / yr.
$112.6K - $120.2K
11% of jobs
$120.2K - $127.7K
11% of jobs
$132K is the 75th percentile. Wages above this are outliers.
$127.7K - $135.3K
12% of jobs
$135.3K - $142.8K
9% of jobs
$142.8K - $150.4K
11% of jobs
$67.2K
$112K
$150.4K
How much do internship vendor risk analyst jobs pay per year?
As of Jun 27, 2026, the average yearly pay for internship vendor risk analyst in Silver Spring, MD is $111,992.00, according to ZipRecruiter salary data. Most workers in this role earn between $82,700.00 and $135,400.00 per year, depending on experience, location, and employer.
What is a vendor risk analyst?
A vendor risk analyst is a professional responsible for assessing and managing risks associated with third-party vendors and suppliers. They evaluate vendor security, compliance, and operational risks, often using risk management tools and frameworks to ensure vendor relationships do not pose threats to the organization. Strong analytical skills and knowledge of industry regulations are essential for this role.
What is an Internship Vendor Risk Analyst?
An Internship Vendor Risk Analyst is an entry-level position, often designed for students or recent graduates, that focuses on assessing and managing the risks associated with third-party vendors. Interns in this role help organizations evaluate the security, compliance, and reliability of vendors by analyzing documentation, conducting risk assessments, and supporting ongoing risk monitoring activities. They work under the guidance of senior analysts to ensure vendors meet company standards and regulatory requirements, gaining hands-on experience in risk management and vendor oversight.
How to become a risk analyst with no experience?
To become a risk analyst with no experience, focus on gaining relevant knowledge through online courses or certifications in risk management, finance, or data analysis. Entry-level roles often require strong analytical skills, proficiency with Excel or data tools, and a willingness to learn on the job; internships or volunteer opportunities can also provide practical experience.
What are some common challenges Internship Vendor Risk Analysts face when assessing third-party vendors?
Internship Vendor Risk Analysts often encounter challenges such as limited access to comprehensive vendor data, navigating complex regulatory requirements, and balancing multiple stakeholder interests. Interns must learn to evaluate risk with incomplete information and communicate findings clearly to both internal teams and vendors. Building strong analytical and communication skills, as well as understanding the organization's risk appetite, are key to overcoming these challenges and making meaningful contributions during the internship.
Is risk analyst an entry level job?
A risk analyst role can be entry level or require experience, depending on the organization. Entry-level risk analyst positions typically require a bachelor's degree in finance, economics, or a related field, and may involve basic data analysis skills and familiarity with risk management tools. More advanced roles may require several years of experience or specialized certifications.
What are the key skills and qualifications needed to thrive as an Internship Vendor Risk Analyst, and why are they important?
To thrive as an Internship Vendor Risk Analyst, you need a solid understanding of risk assessment, vendor management principles, and basic knowledge of compliance frameworks, often supported by coursework in finance, business, or information security. Familiarity with tools like Excel, risk management software, and platforms such as SAP Ariba or RSA Archer is typically expected. Attention to detail, analytical thinking, and effective communication are standout soft skills for gathering data and collaborating with internal stakeholders. These skills are crucial for identifying potential vendor risks, ensuring regulatory compliance, and supporting organizational decision-making.
How much do risk analyst interns make at Fannie Mae?
Risk analyst interns at Fannie Mae typically earn an hourly wage that ranges from $20 to $30, depending on experience and location. Internships often last for 10 to 12 weeks during the summer, providing valuable experience in risk assessment and financial analysis.
What is the difference between Internship Vendor Risk Analyst vs Vendor Risk Analyst?
| Aspect | Internship Vendor Risk Analyst | Vendor Risk Analyst |
|---|---|---|
| Credentials | Typically pursuing or recent graduate, some certifications optional | Usually requires professional certifications like CRISC or CTP |
| Work Environment | Internship setting, entry-level tasks, learning-focused | Full-time role, responsible for ongoing risk assessments |
| Industry Usage | Common in finance, consulting, and tech companies for training | Established position in risk management departments across industries |
The Internship Vendor Risk Analyst is an entry-level role designed for students or recent graduates gaining experience in vendor risk management. In contrast, the Vendor Risk Analyst is a full-time professional responsible for ongoing risk assessments and mitigation strategies. While both roles involve evaluating vendor risks, the internship focuses on learning and support, whereas the analyst role involves independent decision-making and expertise.
What are the most commonly searched types of Vendor Risk Analyst jobs in Silver Spring, MD? The most popular types of Vendor Risk Analyst jobs in Silver Spring, MD are:
What are popular job titles related to Internship Vendor Risk Analyst jobs in Silver Spring, MD? For Internship Vendor Risk Analyst jobs in Silver Spring, MD, the most frequently searched job titles are:
What job categories do people searching Internship Vendor Risk Analyst jobs in Silver Spring, MD look for? The top searched job categories for Internship Vendor Risk Analyst jobs in Silver Spring, MD are:
What cities near Silver Spring, MD are hiring for Internship Vendor Risk Analyst jobs? Cities near Silver Spring, MD with the most Internship Vendor Risk Analyst job openings:
Full-time
Posted 17 days ago
Burke & Herbert Bank rating
5.6
Based on 8 frontline employees who took The Breakroom Quiz
134th of 142 rated banks
Job description
CLASSIFICATION: Non-exempt
REPORTS TO: Program Manager, Third Party Risk Management
JOB DESCRIPTION
Summary/Objective
Under the direction of the Program Manager, Third Party Risk Management, the ThirdโParty Vendor Risk Analyst supports the execution of the Bankโs ThirdโParty Risk Management (TPRM) Program by performing dayโtoโday operational, analytical, and facilitation activities. In partnership with the Program Manager, the Analyst helps strengthen and sustain effective vendor review cadence by coordinating stakeholder inputs, producing complete and traceable documentation, and preparing examโready artifacts. This role ensures vendor risk activitiesโincluding due diligence, ongoing monitoring, documentation, and issue trackingโare executed in a timely, consistent, and examinationโdefensible manner.
Essential Functions
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
- Execute dayโtoโday thirdโparty risk management activities for new and existing vendors in accordance with the Bankโs TPRM Program, with heightened focus on critical and GLBAโHigh risk relationships. Support initial due diligence and ongoing risk assessments by collecting, validating, and documenting required artifacts and supporting materials for higherโrisk vendors to facilitate effective review, challenge, and approval by the Program Manager.
- Maintain and manage the rolling vendor review schedule established by the Program Manager, ensuring critical and highโrisk thirdโparty relationships are prioritized and reviewed in accordance with established cadence and monitoring requirements. Coordinate with internal stakeholders, including Information Security, IT, Compliance, Finance, and Accounting, to obtain required risk assessment inputs and documentation necessary to support vendor reviews, providing enhanced facilitation for critical and GLBAโHigh risk vendors.
- Track vendors review progress, outstanding action items, and remediation activities, maintaining visibility into reviews, documentation gaps, and issue resolution. Proactively escalate aging, overdue, or atโrisk items to the Program Manager to support timely awareness, decisionโmaking, and risk mitigation.
- Prepare, maintain, and organize comprehensive vendor review documentation, including executive summaries, evidence inventories, and issue tracking materials, with enhanced rigor applied to files associated with critical and GLBAโHigh risk vendors. Ensure that vendor risk conclusions and assigned risk ratings are clearly, consistently, and defensibly supported by documented evidence prior to Program Manager review and signโoff.
- Assist in documenting risk acceptance decisions and remediation status under the direction of the Program Manager, ensuring alignment with TPRM program standards, internal governance expectations, and applicable regulatory requirements.
- Identify procedural gaps, workflow inefficiencies, and documentation issues encountered during thirdโparty risk management execution, particularly those impacting oversight of critical and GLBAโHigh risk vendors. Escalate observations and improvement opportunities to the Program Manager for programโlevel evaluation and continuous improvement.
- Support ad hoc projects, process enhancements, and targeted initiatives led by the Program Manager to strengthen thirdโparty risk governance, operational effectiveness, and overall program maturity.
Other Duties
- Contract and Procurement Support
Support the Program Manager by tracking vendorโrelated review milestones (including onboarding, renewals, and amendments). Ensure required vendor review documentation is complete, accurate, and available to support informed contractual decisions prior to execution.
- Governance, Metrics, and Reporting Support
Compile and maintain program metrics, status reports, and supporting materials used to measure and monitor ThirdโParty Risk Management (TPRM) program performance. Assist, as directed by the Program Manager, in preparing materials for internal governance forums, audits, and regulatory examinations.
- Audit and Examination Readiness
Support internal and external audits and regulatory examinations by organizing vendor files, maintaining evidence mappings, and assembling response documentation under Program Manager guidance. Maintain vendor records in an examโready state to support Program Manager interactions with auditors, regulators, and risk committees.
Skills/Abilities
- Working knowledge of third-party risk management practices and regulatory expectations within a regulated financial services environment.
- Strong analytical skills with the ability to assess risk data, identify trends, and support informed decision-making.
- Excellent organizational and documentation skills with high attention to detail.
- Ability to collaborate effectively with crossโfunctional stakeholders while operating under Program Manager direction.
- Strong written and verbal communication skills to support clear documentation, issue analysis, and timely escalation.
- Proficiency with Microsoft Office (Excel, Word, PowerPoint) and risk management or workflow tracking tools.
Supervisory Responsibility
This position does not have supervisory responsibilities.
Work Environment
This job operates in an office setting, the opportunity to telework is not available. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. Office environment with job duties conducted via telephone, face to face meetings, and on the computer.
Physical Demands
This position requires manual dexterity, the ability to lift files and open cabinets. This position requires bending, stooping, or standing, as necessary.
Travel
Limited local travel may be required for this position.
Education and Experience
Education
- Requires a bachelorโs degree in business, Finance, Risk Management, Information Systems, Compliance, or a related field or equivalent professional experience supporting risk management functions in a regulated environment.
Experience
- Requires a minimum of 1 year of experience supporting thirdโparty vendor management, operational risk, compliance, information security, or a related risk discipline within a regulated industry.
- Requires handsโon experience supporting vendor due diligence, ongoing monitoring, documentation, and issue tracking activities.
- Experience coordinating with crossโfunctional stakeholders (e.g., Information Security, IT, Compliance, Finance) to collect and organize risk assessment inputs.
- Experience producing or maintaining clear, wellโorganized, and evidenceโbased documentation to support management review, audit, or regulatory examination.
Equal Employment Opportunity/M/F/disability/protected veteran status.
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.
About Burke & Herbert Bank
Sourced by ZipRecruiter
Industry
Commercial banking
Company size
201 - 500 Employees
Headquarters location
Alexandria, VA, US