Oversee risk-based third-party due diligence, risk assessments, and ongoing monitoring activities across the full third-party lifecycle, ensuring consistent, defensible, and risk-informed outcomes.
Oversee risk-based third-party due diligence, risk assessments, and ongoing monitoring activities across the full third-party lifecycle, ensuring consistent, defensible, and risk-informed outcomes.
Oversee risk-based third-party due diligence, risk assessments, and ongoing monitoring activities across the full third-party lifecycle, ensuring consistent, defensible, and risk-informed outcomes.
Oversee risk-based third-party due diligence, risk assessments, and ongoing monitoring activities across the full third-party lifecycle, ensuring consistent, defensible, and risk-informed outcomes.
Oversee risk-based third-party due diligence, risk assessments, and ongoing monitoring activities across the full third-party lifecycle, ensuring consistent, defensible, and risk-informed outcomes.
Oversee risk-based third-party due diligence, risk assessments, and ongoing monitoring activities across the full third-party lifecycle, ensuring consistent, defensible, and risk-informed outcomes.
Third-Party Risk Management Officer
Manhattan, NY · On-site
$120K - $145K/yr
This role supports the SMTB AD's ability to identify, assess, mitigate, monitor, and report third ... Third Party Risk Framework and provide reporting to the U.S. Chief Risk Officer and U.S. Risk ...
Quick apply
Third-Party Risk Management Officer
Manhattan, NY · On-site
$120K - $145K/yr
This role supports the SMTB AD's ability to identify, assess, mitigate, monitor, and report third ... Third Party Risk Framework and provide reporting to the U.S. Chief Risk Officer and U.S. Risk ...
Manager, Third Party Risk
Overland Park, KS · On-site
$99/hr
Review completed vendor assessment reports for quality and consistency; ensure TPRM procedures are ... Third Party Risk Management - Demonstrated ability to design, manage, and mature a TPRM program ...
Manager, Third Party Risk
Overland Park, KS · On-site
$99/hr
Review completed vendor assessment reports for quality and consistency; ensure TPRM procedures are ... Third Party Risk Management - Demonstrated ability to design, manage, and mature a TPRM program ...
Third-Party Risk Management Officer
Manhattan, NY · Hybrid
$120K - $145K/yr
This role supports the SMTB AD's ability to identify, assess, mitigate, monitor, and report third ... Third Party Risk Framework and provide reporting to the U.S. Chief Risk Officer and U.S. Risk ...
Quick apply
Third-Party Risk Management Officer
Manhattan, NY · Hybrid
$120K - $145K/yr
This role supports the SMTB AD's ability to identify, assess, mitigate, monitor, and report third ... Third Party Risk Framework and provide reporting to the U.S. Chief Risk Officer and U.S. Risk ...
Operational Risk Management Department-Third Party Risk Management AVP/Associate
Manhattan, NY · On-site
$42K/yr
S/he will also assess, monitor and track TPRM lifecycle activities, ensure documentation ... Update third party risk management policies and procedures * Develop and execute a third party risk ...
Operational Risk Management Department-Third Party Risk Management AVP/Associate
Manhattan, NY · On-site
$42K/yr
S/he will also assess, monitor and track TPRM lifecycle activities, ensure documentation ... Update third party risk management policies and procedures * Develop and execute a third party risk ...
ABOUT YOUR ROLE The primary responsibility of this position is to support the assessment and oversight of Third-Party Risk, as a component of Operational Risk, and to enhance the Bank's risk ...
ABOUT YOUR ROLE The primary responsibility of this position is to support the assessment and oversight of Third-Party Risk, as a component of Operational Risk, and to enhance the Bank's risk ...
S/he will also assess, monitor and track TPRM lifecycle activities, ensure documentation ... Include but are not limited to Third Party Risk Management Framework * Establish and enhance the ...
S/he will also assess, monitor and track TPRM lifecycle activities, ensure documentation ... Include but are not limited to Third Party Risk Management Framework * Establish and enhance the ...
IT Third Party Risk Professional
Mclean, VA · On-site
$87K - $131K/yr
We are seeking a senior third party risk professional who can independently assess complex supplier risks, apply sound judgment, and deliver clear, risk-based recommendations through strong ...
IT Third Party Risk Professional
Mclean, VA · On-site
$87K - $131K/yr
We are seeking a senior third party risk professional who can independently assess complex supplier risks, apply sound judgment, and deliver clear, risk-based recommendations through strong ...
Operational Risk Management Department-Third Party Risk Management AVP/Associate
Manhattan, NY · On-site
$42K - $150K/yr
S/he will also assess, monitor and track TPRM lifecycle activities, ensure documentation ... Update third party risk management policies and procedures * Develop and execute a third party risk ...
Operational Risk Management Department-Third Party Risk Management AVP/Associate
Manhattan, NY · On-site
$42K - $150K/yr
S/he will also assess, monitor and track TPRM lifecycle activities, ensure documentation ... Update third party risk management policies and procedures * Develop and execute a third party risk ...
Third-Party Risk Management Program Officer
Hillsboro, OR · On-site
$100K - $126K/yr
Oversees execution of inherent risk assessments, due diligence reviews, and control assessments across all third-party risk domains (cybersecurity, privacy, operational resilience, etc.). Ensures ...
Third-Party Risk Management Program Officer
Hillsboro, OR · On-site
$100K - $126K/yr
Oversees execution of inherent risk assessments, due diligence reviews, and control assessments across all third-party risk domains (cybersecurity, privacy, operational resilience, etc.). Ensures ...
Key Accountabilities Third Party Risk Management • Perform third-party due diligence reviews and provide oversight of third-party risk assessments in accordance with TPRM policies, program and ...
Key Accountabilities Third Party Risk Management • Perform third-party due diligence reviews and provide oversight of third-party risk assessments in accordance with TPRM policies, program and ...
Mature the firm's oversight and assessment of third party concentration risks. Experience * Ideally 10+ years of enterprise risk or third-party risk management related experience, preferably within ...
Mature the firm's oversight and assessment of third party concentration risks. Experience * Ideally 10+ years of enterprise risk or third-party risk management related experience, preferably within ...
Oversee third party risk assessment and regular updates for critical suppliers along the supplier life cycle leveraging a central risk tool , working with business leads to provide required inputs ...
Oversee third party risk assessment and regular updates for critical suppliers along the supplier life cycle leveraging a central risk tool , working with business leads to provide required inputs ...
This role performs vendor risk assessments, evaluates control effectiveness, reviews supporting evidence, monitors remediation activities, and helps ensure third-party partners meet Choice's security ...
This role performs vendor risk assessments, evaluates control effectiveness, reviews supporting evidence, monitors remediation activities, and helps ensure third-party partners meet Choice's security ...
Oversee third party risk assessment and regular updates for critical suppliers along the supplier life cycle leveraging a central risk tool , working with business leads to provide required inputs ...
Oversee third party risk assessment and regular updates for critical suppliers along the supplier life cycle leveraging a central risk tool , working with business leads to provide required inputs ...
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
The Senior Analyst operates independently on complex assessments and reviews, providing risk insights, effective challenge, and recommendations to strengthen third-party compliance practices. This ...
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
The Senior Analyst operates independently on complex assessments and reviews, providing risk insights, effective challenge, and recommendations to strengthen third-party compliance practices. This ...
Key Accountabilities Third Party Risk Management • Perform third-party due diligence reviews and provide oversight of third-party risk assessments in accordance with TPRM policies, program and ...
Key Accountabilities Third Party Risk Management • Perform third-party due diligence reviews and provide oversight of third-party risk assessments in accordance with TPRM policies, program and ...
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
The Senior Analyst operates independently on complex assessments and reviews, providing risk insights, effective challenge, and recommendations to strengthen third-party compliance practices. This ...
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
The Senior Analyst operates independently on complex assessments and reviews, providing risk insights, effective challenge, and recommendations to strengthen third-party compliance practices. This ...
Third Party Risk Assessor information
See salary details
$23.10 is the 25th percentile. Wages below this are outliers.
$19.95 - $24.28
34% of jobs
The median wage is $26.98 / hr.
$24.28 - $28.61
25% of jobs
$28.61 - $32.93
0% of jobs
$32.93 - $37.26
0% of jobs
$37.26 - $41.59
6% of jobs
$41.59 - $45.91
2% of jobs
$45.91 - $50.24
5% of jobs
$51.68 is the 75th percentile. Wages above this are outliers.
$50.24 - $54.57
6% of jobs
$54.57 - $58.89
8% of jobs
$58.89 - $63.22
10% of jobs
$63.22 - $67.55
2% of jobs
$19
$38
$67
How much do third party risk assessor jobs pay per hour?
What are the key skills and qualifications needed to thrive as a Third Party Risk Assessor, and why are they important?
What jobs in the US pay 300,000 a year?
What is the difference between Third Party Risk Assessor vs Vendor Risk Analyst?
| Aspect | Third Party Risk Assessor | Vendor Risk Analyst |
|---|---|---|
| Certifications | ISO 27001, CRISC, CISA | ISO 27001, CRISC, CISA |
| Work Environment | Risk management teams, compliance departments | Procurement, compliance, and risk teams |
| Industry Usage | Financial, healthcare, technology | Financial, healthcare, technology |
The Third Party Risk Assessor and Vendor Risk Analyst roles often share similar certifications and work environments, focusing on evaluating third-party vendors' risks. While the Risk Assessor primarily conducts risk assessments and compliance reviews, the Vendor Risk Analyst may focus more on vendor performance and procurement processes. Both roles are essential in managing third-party relationships and ensuring organizational security and compliance.
What are Third Party Risk Assessors?
How much does a third-party risk analyst make?
How do you become a risk assessor?
Is third-party risk management a good career?
What are some common challenges faced by Third Party Risk Assessors when evaluating vendors, and how can they be addressed?

Full-time
Medical, Dental, Vision, Life, Retirement, PTO
Posted 8 days ago
Job description
Who we are
Founded in 1997, Merrick Bank is an FDIC®-insured financial institution headquartered in South Jordan, Utah, with over $10 billion in assets. A wholly owned subsidiary of CardWorks Financial Group, Merrick Bank serves roughly five million cardmembers and more than 100,000 merchant customers nationwide.
What we do
We provide credit cards, recreational loans, deposit accounts, merchant services and bank sponsorships to consumers and businesses. As a leader in non-prime lending and merchant acquiring, we combine innovative technology with data-driven insights to help underserved consumers build and strengthen credit while delivering integrated, scalable payment solutions for businesses.
Merrick Bank ranks among the top 20 FDIC®-insured credit card issuers in the U.S. and among the top 15 merchant acquirers by transaction volume.
The Assistant Vice President, Third-Party Risk Management ("TPRM") is responsible for leading key components of the execution, oversight, and strategic enhancement of Merrick Bank's ("Bank") Third-Party Risk Management Program. This role partners across the first and second lines of defense to ensure risks arising from third-party relationships are effectively identified, assessed, monitored, and reported in alignment with regulatory requirements, internal policies, and the Bank's risk appetite.
The AVP serves as a senior program leader responsible for advancing enterprise TPRM strategy, strengthening risk governance, driving consistent risk practices, and delivering actionable insights to senior management and risk governance committees.
Essential Functions:
- Lead the execution and ongoing enhancement of the Bank's Third-Party Risk Management framework, ensuring alignment with regulatory expectations and internal governance standards.
- Oversee risk-based third-party due diligence, risk assessments, and ongoing monitoring activities across the full third-party lifecycle, ensuring consistent, defensible, and risk-informed outcomes.
- Partner with business units, Vendor Relationship Owners, and Subject Matter Experts to identify, assess, and mitigate risks associated with third-party relationships.
- Provide senior level review and challenge of third-party risk assessments, ensuring conclusions are evidence-based, appropriately documented, and escalated when risk exposure exceeds defined thresholds.
- Monitor third-party performance, control effectiveness, and risk indicators, escalating issues, control gaps, and emerging risks in accordance with established governance protocols.
- Lead the design, development, and maintenance of TPRM policies, procedures, standards, and workflows to support a consistent enterprise-wide operating model.
- Define and Deliver executive, committee, and Board-level reporting that provides clear visibility into third-party risk exposure, trends, issues, concentrations, and emerging risks.
- Collaborate with Legal, Procurement, Information Security, Compliance, and business stakeholders to ensure appropriate contract provisions, controls, and risk mitigation strategies are implemented.
- Lead TPRM responses for regulatory exams, internal audits, and independent reviews, including documentation, analysis, issue remediation, and management responses.
- Drive the TPRM program maturity roadmap, including process improvements, automation, data quality, GRC optimization, regulatory alignment, and adoption of industry best practices.
- Leads, develops, and mentors TPRM teams, promoting strong risk culture, accountability, high performance, and continuous improvement.
- Partner with ERM leadership to establish TPRM priorities, roadmap initiatives, governance routines, and success measures aligned to enterprise risk strategy and business objectives.
- Identify and escalate third-party concentration risk, critical vendor risk, fourth-party risk, control gaps, and emerging risk themes to appropriate governance forums.
- Delivers executive, committee, and Board level risk reporting, including dashboards and risk insights that support informed decision making and effective oversight.
- Owns continuous improvement of TPRM tools, data, workflows, reporting, and GRC system capabilities to improve efficiency, transparency, data integrity, and regulatory readiness.
- Performs other duties as assigned.
Requirements for Success:
Education & Experience:
- Bachelor's degree in Risk Management, Finance, Business Administration, Accounting, or a related field required; advanced degree or professional certification, such as CTPRP, CTPRA, CRVPM, CRMA, FRM, CPA, OR CIA preferred.
- Minimum of 8 years of progressive experience in Third-Party Risk Management, Enterprise Risk Management, Operational Risk, or a related risk discipline within a financial services or regulated environment, including experience leading program initiatives, risk governance routines, and team members
Knowledge, Skills and Capabilities:
- Strong expertise in enterprise risk reporting, including development of executive and Board level materials, risk dashboards, metrics, and written risk summaries.
- In-depth knowledge of third-party risk regulatory requirements and industry standards, including full TPRM lifecycle.
- Demonstrated experience aggregating and synthesizing complex risk information into clear, concise, and decision useful reporting for senior management and Boards.
- Solid understanding of ERM frameworks, risk governance practices, and regulatory expectations applicable to banking and financial services organizations.
- Proven ability to work cross functionally, influence stakeholders, and partner effectively with both first and second line teams.
- Excellent written and verbal communication skills, with a strong attention to detail and the ability to translate technical risk concepts into business focused insights.
- Experience with ERM systems and risk data repositories (e.g., risk assessment tools, issue management systems, reporting platforms) strongly preferred.
Compliance with Laws & Regulations
- Responsible for complying with all the Bank's internal control policies and procedures.
- Responsible for understanding and complying with all laws and regulations to which the Bank is subject.
- Responsible for communicating problems in operations, noncompliance with the code of conduct, noncompliance with laws and regulations, policy violations, or illegal acts.
#INDHP1
Why join us
We believe in putting people first by supporting our customers, employees and our partners while creating opportunities for everyone to reach their potential. From fostering work-life balance to rewarding good work and innovative ideas, we invest in what matters most, our people.
At Merrick Bank, you'll be part of a collaborative, customer-focused team where you can grow your career while making a meaningful impact.
Our Employee Value Proposition
- Competitive Pay, including a Bonus Target or Variable Pay Incentive Program
- Benefits Package -Medical, Dental, and Vision (plus much more)
- 401(k) Plan with Company Match
- Short- & Long-Term Disability
- Wellness Programs
- Group Life and AD&D Insurance
- Paid Vacation, Sick Days and bank Holidays
- Employee Engagement Activities including Employee Appreciation Day, DEI Employee Resource Groups, Corporate Social Responsibility, Service Recognition
We offer a total rewards package comprised of a competitive base rate of pay, variable pay incentive programs based on the role, and a comprehensive benefit suite. Offered rates of pay are determined based on job-related knowledge, relevant experience, skills, certifications, and geographic location.
We are proud to be an equal opportunity employer. All qualified applicants will receive consideration without regard to age, race, color, sex, or gender identity/expression (including pregnancy, childbirth, transgender status, or sexual orientation), religion or creed, ancestry, citizenship, national origin, disability, military or veteran status, marital status, genetic information, or any other characteristic protected by applicable law.
We do not tolerate discrimination, harassment, or retaliation. Employment decisions are based solely on qualifications, merit, and business needs. Everyone is welcome here, and we hire based on your ability to do the job, not any protected characteristics.
If you need help or reasonable accommodation during the application or hiring process, please let your TA Partner know.
About Merrick Bank
Sourced by ZipRecruiter
Industry
Commercial banking
Company size
201 - 500 Employees
Headquarters location
South Jordan, UT, US
Year founded
1997