1

Third Party Risk Analyst Jobs in Virginia (NOW HIRING)

Third-Party Risk Analyst

Mclean, VA · On-site

$45 - $47/hr

Third-Party Risk Analyst Location: McLean, VA (5 days - Onsite) Job Overview The Third-Party Risk Analyst will support Enterprise Operationally Critical Third Parties (EOCTP) and Enterprise ...

As our new Third Party Risk Analyst , you will play a critical role in protecting Anaplan by managing the risks associated with our third-party suppliers and reporting to our legal team. You will be ...

As our new Third Party Risk Analyst , you will play a critical role in protecting Anaplan by managing the risks associated with our third-party suppliers and reporting to our legal team. You will be ...

Third Party Risk management encompasses evaluating suppliers across all operational risk domains including: Information, Technology, Operational Resiliency,Processes/Transactions, Models, Reporting ...

next page

Showing results 1-20

Third Party Risk Analyst information

See Virginia salary details

$15

$40

$65

How much do third party risk analyst jobs pay per hour?

As of Jul 7, 2026, the average hourly pay for third party risk analyst in Virginia is $40.14, according to ZipRecruiter salary data. Most workers in this role earn between $29.57 and $48.85 per hour, depending on experience, location, and employer.

How does a Third Party Risk Analyst typically collaborate with other departments to manage vendor risks?

A Third Party Risk Analyst works closely with departments such as procurement, legal, IT security, and compliance to assess and mitigate potential risks posed by vendors and service providers. Collaboration often involves reviewing contracts, conducting risk assessments, and ensuring vendors meet the organization's security and compliance requirements. Regular communication and joint meetings are common to align on risk standards and address any emerging concerns. This cross-functional teamwork ensures a comprehensive approach to managing third-party risks and maintaining regulatory compliance.

What is the difference between Third Party Risk Analyst vs Vendor Risk Analyst?

AspectThird Party Risk AnalystVendor Risk Analyst
CertificationsCertifications like CRISC, CISA often preferredSimilar certifications, often the same as Third Party Risk Analyst
Work EnvironmentFinancial institutions, corporations managing third-party relationshipsOrganizations assessing vendor security, compliance, and performance
Industry UsageCommon in finance, healthcare, and tech sectorsPrimarily in procurement, supply chain, and IT sectors

The main difference is that a Third Party Risk Analyst focuses on assessing risks associated with all third-party relationships, including vendors, partners, and service providers. A Vendor Risk Analyst specifically concentrates on evaluating risks posed by vendors and suppliers. While their roles overlap, the Third Party Risk Analyst has a broader scope, often handling multiple types of third-party relationships within various industries.

Is a grc analyst a good entry-level job?

A third-party risk analyst is often considered an entry-level role in risk management and compliance, suitable for individuals with strong analytical skills and knowledge of regulations like GDPR or HIPAA. The position typically involves assessing vendor risks, using tools like GRC software, and may require certifications such as CRISC or CISA. It provides a foundation for career growth in cybersecurity, compliance, or risk management fields.

How much does a third-party risk analyst make?

A third-party risk analyst typically earns between $60,000 and $100,000 annually, depending on experience, location, and industry. Entry-level positions may start lower, while experienced analysts with certifications like CRISC or CISSP can earn higher salaries.

Is third-party risk management a good career?

Third-party risk management is a growing field within risk analysis and compliance, focusing on assessing and mitigating risks from external vendors and partners. It requires skills in risk assessment, regulatory knowledge, and often involves using tools like risk management software. The role offers opportunities for career advancement in industries such as finance, healthcare, and technology.

What does a third-party risk analyst do?

A third-party risk analyst evaluates the risks associated with an organization’s external vendors, suppliers, and partners. They assess third-party security, compliance, and operational risks using tools like risk management software and often require knowledge of industry standards and certifications. Their goal is to ensure that external relationships do not compromise the organization’s security or compliance posture.

What are the key skills and qualifications needed to thrive as a Third Party Risk Analyst, and why are they important?

To thrive as a Third Party Risk Analyst, you need a solid understanding of risk management principles, vendor assessment processes, and compliance regulations, often supported by a degree in business, finance, or information security. Familiarity with risk assessment tools, GRC (Governance, Risk, and Compliance) platforms, and certifications like CTPRA or CRISC is highly valuable. Strong analytical thinking, attention to detail, and effective communication skills set exceptional analysts apart in this field. These competencies are crucial for identifying and mitigating vendor risks, ensuring organizational compliance, and safeguarding sensitive data.
What are the most commonly searched types of Third Party Risk Analyst jobs in Virginia? The most popular types of Third Party Risk Analyst jobs in Virginia are:
What are popular job titles related to Third Party Risk Analyst jobs in Virginia? For Third Party Risk Analyst jobs in Virginia, the most frequently searched job titles are:
What job categories do people searching Third Party Risk Analyst jobs in Virginia look for? The top searched job categories for Third Party Risk Analyst jobs in Virginia are:
What cities in Virginia are hiring for Third Party Risk Analyst jobs? Cities in Virginia with the most Third Party Risk Analyst job openings:
Infographic showing various Third Party Risk Analyst job openings in Virginia as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $83,487 per year, or $40.1 per hour.

Third-Party Risk Analyst

DRC Systems

Mclean, VA • On-site

$45 - $47/hr

Contractor

Posted 3 days ago


Job description

Title: Third-Party Risk Analyst
Location: McLean, VA (5 days - Onsite)
 
Job Overview
The Third-Party Risk Analyst will support Enterprise Operationally Critical Third Parties (EOCTP) and Enterprise Vulnerability Incident Management (VIM) programs. This role partners closely with Governance Advisors and enterprise stakeholders to drive risk oversight, data analysis, reporting, and program execution within a financial services environment.
 
Key Responsibilities
Risk & Program Management
  • Partner with the Governance Advisor to execute EOCTP and VIM programs.
  • Ensure divisions comply with internal guidance for managing third-party risk.
  • Support crisis response activities involving third parties.
  • Project manage the data management platform supporting EOCTP and VIM.
  • Launch and review risk assessments across operational, financial, legal/compliance, reputational, and lifecycle domains.
  • Analyze program requirements and propose solutions, risks, and impact assessments.
Data Analysis & Reporting
  • Aggregate and analyze enterprise data for periodic and ad hoc reporting.
  • Independently extract and interpret KRIs and KPIs.
  • Develop monthly and quarterly third-party metrics dashboards.
  • Maintain the Vulnerability Incident Management tracker.
  • Synthesize complex data into clear, executive-ready insights.
  • Document and track vulnerability incidents and control evidence.
Stakeholder & Project Coordination
  • Establish and maintain strong relationships with enterprise stakeholders.
  • Facilitate meetings, forums, and follow-ups to drive project goals.
  • Support leadership using OneTrust workflows and processes.
  • Monitor and document third-party risk and cybersecurity trends.
Documentation & Communications
  • Create professional communications including:
    • Procedures and guidance
    • Job aids
    • PowerPoint presentations
    • Questionnaire templates
    • Dashboards and reports
  • Produce incident summaries and executive-level write-ups.
Required Qualifications
  • Bachelor’s degree in Risk Management, Business Administration, Finance, Data Analytics, Project Management, Information Security, or related field.
  • 5+ years of experience in risk management or third-party risk management (financial services preferred).
  • Strong hands-on data analysis experience.
  • Advanced proficiency in Microsoft Office Suite:
    • Excel (required)
    • Word
    • PowerPoint
    • Power BI
  • Experience aggregating and interpreting enterprise data.
  • Excellent professional writing and communication skills.
  • Strong multitasking and time-management abilities.
  • Experience in third-party risk assessment, remediation, and monitoring.
  • Knowledge of cybersecurity or information security incident management.
  • Familiarity with third-party risk frameworks and methodologies.
  • Ability to work onsite Monday–Friday in McLean, VA.
Preferred Qualifications
  • Experience with OneTrust platform.
  • Background in financial services risk environments.
  • Exposure to enterprise vulnerability management programs.
Key Skills
  • Enterprise Risk Management
  • Third-Party Risk Management (TPRM)
  • Data Analysis & Aggregation
  • KPI/KRI Development
  • Executive Reporting
  • Microsoft Excel (Advanced)
  • Power BI
  • Stakeholder Management
  • Incident Management
  • Strong Written Communication