1

Third Party Risk Assessment Jobs in Virginia (NOW HIRING)

Third-Party Risk Analyst

Mclean, VA ยท On-site

$45 - $47/hr

Third-Party Risk Analyst Location: McLean, VA (5 days - Onsite) Job Overview The Third-Party Risk ... Launch and review risk assessments across operational, financial, legal/compliance, reputational ...

As our new Third Party Risk Analyst , you will play a critical role in protecting Anaplan by ... Risk Assessment & Due Diligence * Conduct comprehensive risk assessments of new and existing ...

Procurement Risk & Compliance Lead

Centreville, VA ยท On-site

$155K/yr

Partner with Internal Audit on third-party risk assessments. * Support remediation efforts tied to vendor governance findings. * Promote a culture of governance and risk awareness. What We're Looking ...

Procurement Risk & Compliance Lead

Centreville, VA ยท On-site

$155K/yr

Partner with Internal Audit on third-party risk assessments. * Support remediation efforts tied to vendor governance findings. * Promote a culture of governance and risk awareness. What We're Looking ...

Project Manager Professional - Onsite

Mclean, VA ยท On-site

$42.80 - $52.80/hr

This role is focused on third-party risk management within the financial services sector. The ... assessments to identify potential risks, such as operational, financial, legal/compliance ...

Identify, assess, and prioritize information security risks; drive remediation to closure against SLAs, negotiating compensating controls with stakeholders where appropriate. Third-Party Risk ...

GRC Team Lead

Richmond, VA ยท On-site +1

Identify, assess, and prioritize information security risks; drive remediation to closure against SLAs, negotiating compensating controls with stakeholders where appropriate. Third-Party Risk ...

next page

Showing results 1-20

Third Party Risk Assessment information

See Virginia salary details

$44.1K

$85.9K

$123.4K

How much do third party risk assessment jobs pay per year?

As of Jul 14, 2026, the average yearly pay for third party risk assessment in Virginia is $85,944.00, according to ZipRecruiter salary data. Most workers in this role earn between $56,000.00 and $99,100.00 per year, depending on experience, location, and employer.

Is SOC analyst a high paying job?

A SOC analyst typically earns a competitive salary that varies by experience, location, and employer. Entry-level positions may start lower, but experienced analysts with certifications like CISSP or CEH can command higher wages, especially in organizations with advanced security needs.

What are some challenges commonly faced in a Third Party Risk Assessment role?

Professionals in Third Party Risk Assessment often face the challenge of managing a large and diverse portfolio of third-party vendors, each with unique risk factors and compliance requirements. Balancing thorough risk analysis with tight project deadlines can require strong organizational and prioritization skills. Additionally, staying current with evolving regulatory standards and ensuring consistent communication with both internal stakeholders and external vendors can be demanding. However, these challenges also provide opportunities to develop critical expertise in risk management, improve cross-functional collaboration, and contribute significantly to organizational resilience and reputation.

What is a Third Party Risk Assessment job?

A Third Party Risk Assessment job involves evaluating the security, compliance, and operational risks associated with external vendors, suppliers, or partners. Professionals in this role assess third-party practices to ensure they meet regulatory and organizational standards. They analyze potential risks such as data breaches, financial instability, and operational disruptions. The job typically involves conducting risk assessments, reviewing contracts, and working with internal stakeholders to mitigate risks.

How much does a third-party risk analyst make?

A third-party risk analyst typically earns between $60,000 and $100,000 annually, depending on experience, location, and industry. Entry-level positions may start lower, while experienced analysts with certifications like CRISC or CISSP can earn higher salaries. The role often requires strong analytical skills and knowledge of risk management tools.

What does a third-party risk analyst do?

A third-party risk analyst evaluates the risks associated with external vendors, suppliers, or partners to ensure they meet security, compliance, and operational standards. They review contracts, perform risk assessments, and monitor third-party performance using tools like risk management software to mitigate potential vulnerabilities for their organization.

What are the key skills and qualifications needed to thrive in the Third Party Risk Assessment position, and why are they important?

To thrive in Third Party Risk Assessment, you need a solid understanding of risk management frameworks, vendor due diligence processes, and regulatory compliance, typically supported by a degree in business, IT, or a related field. Familiarity with GRC (Governance, Risk, and Compliance) platforms, risk assessment tools, and relevant certifications such as Certified Third Party Risk Professional (CTPRP) or Certified Risk Manager (CRM) is highly desirable. Excellent communication, analytical thinking, and problem-solving abilities set top candidates apart, as do project management skills. These skills are vital to effectively identify, evaluate, and mitigate risks posed by third-party vendors, ensuring the organization's overall security and compliance.

Is third-party risk management a good career?

Third-party risk management is a growing field that involves assessing and mitigating risks from external vendors and partners. It requires skills in compliance, cybersecurity, and risk assessment, often supported by certifications like CTPRP or ISO standards. The role offers opportunities in various industries with a focus on protecting organizational assets and ensuring regulatory adherence.
What job categories do people searching Third Party Risk Assessment jobs in Virginia look for? The top searched job categories for Third Party Risk Assessment jobs in Virginia are:
What cities in Virginia are hiring for Third Party Risk Assessment jobs? Cities in Virginia with the most Third Party Risk Assessment job openings:

Third-Party Risk Analyst

DRC Systems

Mclean, VA โ€ข On-site

$45 - $47/hr

Contractor

Posted 10 days ago


Job description

Title: Third-Party Riskย Analyst
Location:ย McLean,ย VAย (5 days - Onsite)
ย 
Job Overview
The Third-Party Risk Analyst will support Enterprise Operationally Critical Third Parties (EOCTP) and Enterprise Vulnerability Incident Management (VIM) programs. This role partners closely with Governance Advisors and enterprise stakeholders to drive risk oversight, data analysis, reporting, and program execution within a financial services environment.
ย 
Key Responsibilities
Risk & Program Management
  • Partner with the Governance Advisor to execute EOCTP and VIM programs.
  • Ensure divisions comply with internal guidance for managing third-party risk.
  • Support crisis response activities involving third parties.
  • Project manage the data management platform supporting EOCTP and VIM.
  • Launch and review risk assessments across operational, financial, legal/compliance, reputational, and lifecycle domains.
  • Analyze program requirements and propose solutions, risks, and impact assessments.
Data Analysis & Reporting
  • Aggregate and analyze enterprise data for periodic and ad hoc reporting.
  • Independently extract and interpret KRIs and KPIs.
  • Develop monthly and quarterly third-party metrics dashboards.
  • Maintain the Vulnerability Incident Management tracker.
  • Synthesize complex data into clear, executive-ready insights.
  • Document and track vulnerability incidents and control evidence.
Stakeholder & Project Coordination
  • Establish and maintain strong relationships with enterprise stakeholders.
  • Facilitate meetings, forums, and follow-ups to drive project goals.
  • Support leadership using OneTrust workflows and processes.
  • Monitor and document third-party risk and cybersecurity trends.
Documentation & Communications
  • Create professional communications including:
    • Procedures and guidance
    • Job aids
    • PowerPoint presentations
    • Questionnaire templates
    • Dashboards and reports
  • Produce incident summaries and executive-level write-ups.
Required Qualifications
  • Bachelorโ€™s degree in Risk Management, Business Administration, Finance, Data Analytics, Project Management, Information Security, or related field.
  • 5+ yearsย of experience in risk management or third-party risk management (financial services preferred).
  • Strong hands-on data analysis experience.
  • Advanced proficiency in Microsoft Office Suite:
    • Excel (required)
    • Word
    • PowerPoint
    • Power BI
  • Experience aggregating and interpreting enterprise data.
  • Excellent professional writing and communication skills.
  • Strong multitasking and time-management abilities.
  • Experience in third-party risk assessment, remediation, and monitoring.
  • Knowledge of cybersecurity or information security incident management.
  • Familiarity with third-party risk frameworks and methodologies.
  • Ability to work onsite Mondayโ€“Friday in McLean, VA.
Preferred Qualifications
  • Experience with OneTrustย platform.
  • Background in financial services risk environments.
  • Exposure to enterprise vulnerability management programs.
Key Skills
  • Enterprise Risk Management
  • Third-Party Risk Management (TPRM)
  • Data Analysis & Aggregation
  • KPI/KRI Development
  • Executive Reporting
  • Microsoft Excel (Advanced)
  • Power BI
  • Stakeholder Management
  • Incident Management
  • Strong Written Communication