The position works cross-functionally with Information Security, Risk Management, and IT. Essential Functions * Perform risk-based due diligence and ongoing monitoring of third-party vendors * Review ...
The position works cross-functionally with Information Security, Risk Management, and IT. Essential Functions * Perform risk-based due diligence and ongoing monitoring of third-party vendors * Review ...
Third-Party Procurement & Sourcing Senior Manager
Phoenix, AZ · On-site
$150K - $151K/yr
Establish and implement best in class category management and sourcing strategies into third-party risk concentration and rationalization requirements. Support development of a comprehensive sourcing ...
Third-Party Procurement & Sourcing Senior Manager
Phoenix, AZ · On-site
$150K - $151K/yr
Establish and implement best in class category management and sourcing strategies into third-party risk concentration and rationalization requirements. Support development of a comprehensive sourcing ...
Third-Party Procurement & Sourcing Senior Manager
$150K - $151K/yr
Establish and implement best in class category management and sourcing strategies into third-party risk concentration and rationalization requirements. Support development of a comprehensive sourcing ...
Third-Party Procurement & Sourcing Senior Manager
$150K - $151K/yr
Establish and implement best in class category management and sourcing strategies into third-party risk concentration and rationalization requirements. Support development of a comprehensive sourcing ...
Consultant - Procurement and Third-Party Governance & Compliance
Tempe, AZ · On-site
$64K - $105K/yr
Help prepare risk assessments and contribute to annual audit and testing plans for the Third Party Management Office. * Review business processes and controls against documented policies, procedures ...
Consultant - Procurement and Third-Party Governance & Compliance
Tempe, AZ · On-site
$64K - $105K/yr
Help prepare risk assessments and contribute to annual audit and testing plans for the Third Party Management Office. * Review business processes and controls against documented policies, procedures ...
Consultant - Procurement and Third-Party Governance & Compliance
Tempe, AZ · On-site
$64K - $105K/yr
Help prepare risk assessments and contribute to annual audit and testing plans for the Third Party Management Office. * Review business processes and controls against documented policies, procedures ...
Consultant - Procurement and Third-Party Governance & Compliance
Tempe, AZ · On-site
$64K - $105K/yr
Help prepare risk assessments and contribute to annual audit and testing plans for the Third Party Management Office. * Review business processes and controls against documented policies, procedures ...
Senior Cybersecurity Third-Party Risk Analyst
Tempe, AZ · Remote
$95K - $123K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Tempe, AZ · Remote
$95K - $123K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Mesa, AZ · Remote
$99K - $128K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Mesa, AZ · Remote
$99K - $128K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Tempe, AZ · Remote
$95K - $123K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Tempe, AZ · Remote
$95K - $123K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Mesa, AZ · Remote
$99K - $128K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Mesa, AZ · Remote
$99K - $128K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Risk Analyst - USA Remote
Phoenix, AZ · Remote
$130K - $160K/yr
Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake, inherent-risk tiering, security and privacy questionnaire administration, evidence collection and review ...
Senior Cybersecurity Risk Analyst - USA Remote
Phoenix, AZ · Remote
$130K - $160K/yr
Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake, inherent-risk tiering, security and privacy questionnaire administration, evidence collection and review ...
Role Summary The Third Party Management Office (TPMO) Standards, Procedures & Governance Lead will ... Lead development of recurring and ad hoc risk committee reporting packs that provide a consolidated ...
Role Summary The Third Party Management Office (TPMO) Standards, Procedures & Governance Lead will ... Lead development of recurring and ad hoc risk committee reporting packs that provide a consolidated ...
Role Summary The Third Party Management Office (TPMO) Standards, Procedures & Governance Lead will ... Lead development of recurring and ad hoc risk committee reporting packs that provide a consolidated ...
Role Summary The Third Party Management Office (TPMO) Standards, Procedures & Governance Lead will ... Lead development of recurring and ad hoc risk committee reporting packs that provide a consolidated ...
The role is accountable for managing TPMO-owned standards/procedures (including change control and RACI alignment), producing executive-ready risk committee materials, chairing the Third-Party ...
The role is accountable for managing TPMO-owned standards/procedures (including change control and RACI alignment), producing executive-ready risk committee materials, chairing the Third-Party ...
The role serves as a central coordinator for enterprise critical engagements across multiple business units, ensuring consistent execution of the Third-Party Risk Management (TPRM) lifecycle ...
The role serves as a central coordinator for enterprise critical engagements across multiple business units, ensuring consistent execution of the Third-Party Risk Management (TPRM) lifecycle ...
Help prepare risk assessments and contribute to annual audit and testing plans for the Third Party Management Office. * Review business processes and controls against documented policies, procedures ...
Help prepare risk assessments and contribute to annual audit and testing plans for the Third Party Management Office. * Review business processes and controls against documented policies, procedures ...
... third-party risk management, cloud security, incident readiness, and managed risk services. * Identify and qualify high-value expansion opportunities by analyzing client risk maturity, cyber program ...
... third-party risk management, cloud security, incident readiness, and managed risk services. * Identify and qualify high-value expansion opportunities by analyzing client risk maturity, cyber program ...
The role serves as a central coordinator for enterprise critical engagements across multiple business units, ensuring consistent execution of the Third-Party Risk Management (TPRM) lifecycle ...
The role serves as a central coordinator for enterprise critical engagements across multiple business units, ensuring consistent execution of the Third-Party Risk Management (TPRM) lifecycle ...
The role serves as a central coordinator for enterprise critical engagements across multiple business units, ensuring consistent execution of the Third-Party Risk Management (TPRM) lifecycle ...
The role serves as a central coordinator for enterprise critical engagements across multiple business units, ensuring consistent execution of the Third-Party Risk Management (TPRM) lifecycle ...
... Third-Party Risk Management, Policy Framework, and Technology and Information Security Risk Management. One of your key responsibilities will be to execute on your assigned Risk Program(s), ensuring ...
... Third-Party Risk Management, Policy Framework, and Technology and Information Security Risk Management. One of your key responsibilities will be to execute on your assigned Risk Program(s), ensuring ...
... Third-Party Risk Management, Policy Framework, and Technology and Information Security Risk Management. One of your key responsibilities will be to execute on your assigned Risk Program(s), ensuring ...
... Third-Party Risk Management, Policy Framework, and Technology and Information Security Risk Management. One of your key responsibilities will be to execute on your assigned Risk Program(s), ensuring ...
Third Party Risk Management information
See Arizona salary details
$48K - $58K
4% of jobs
$58K - $68.1K
6% of jobs
$68.1K - $78.1K
11% of jobs
$81.9K is the 25th percentile. Wages below this are outliers.
$78.1K - $88.1K
11% of jobs
The median wage is $96.1K / yr.
$88.1K - $98.2K
23% of jobs
$98.2K - $108.2K
13% of jobs
$114.8K is the 75th percentile. Wages above this are outliers.
$108.2K - $118.3K
12% of jobs
$118.3K - $128.3K
8% of jobs
$128.3K - $138.3K
6% of jobs
$138.3K - $148.4K
4% of jobs
$148.4K - $158.4K
2% of jobs
$48K
$104K
$158.4K
How much do third party risk management jobs pay per year?
What is a Third Party Risk Management job?
A Third Party Risk Management (TPRM) job involves assessing, monitoring, and mitigating risks associated with an organization's external vendors, suppliers, and service providers. Professionals in this role evaluate third parties for compliance, cybersecurity vulnerabilities, financial stability, and operational risks. They develop frameworks, conduct risk assessments, and ensure that vendors meet regulatory and organizational standards. TPRM specialists collaborate with internal teams like compliance, procurement, and IT security to protect the organization's interests. Their goal is to minimize potential disruptions, data breaches, or regulatory non-compliance stemming from third-party relationships.
What are some common challenges faced in a Third Party Risk Management role, and how are they addressed?
One of the primary challenges in Third Party Risk Management is keeping up with evolving regulatory requirements and the diverse risk profiles of different vendors. Professionals in this role often encounter situations where they must coordinate risk assessments across multiple departments and ensure timely responses from both internal teams and external partners. To address these challenges, strong project management skills, proactive communication, and the use of dedicated risk management tools are essential. Many organizations also emphasize ongoing training and cross-functional collaboration to stay ahead of emerging risks and regulatory changes.
What are the key skills and qualifications needed to thrive in the Third Party Risk Management position, and why are they important?
To thrive in Third Party Risk Management, you need a strong understanding of risk assessment, compliance regulations, vendor management, and data analysis, typically supported by a bachelor's degree in business, finance, or a related field. Familiarity with risk assessment tools, third-party risk management platforms (such as Archer or ProcessUnity), and certifications like Certified Third Party Risk Professional (CTPRP) are common in this field. Exceptional communication, negotiation, and analytical-thinking skills are crucial soft skills for engaging vendors and stakeholders effectively. These abilities ensure comprehensive risk mitigation and help organizations maintain compliance and security while building strong external partnerships.

Other
Medical, Dental, Vision, Retirement, PTO
Posted 11 days ago
OneAZ Credit Union rating
8.1
Based on 5 frontline employees who took The Breakroom Quiz
Job description
Join Us in Making an Impact
At OneAZ Credit Union, our success is measured only by yours. We're here to create lasting change in the lives of our members, our communities, and our team. If you're looking for a career with purpose, where your work truly matters-you've found it!
Who You Are
You're impactful, compassionate, and fearless, ready to embrace new challenges and shape the future of financial well-being. You take accountability for our success and thrive in an environment where curiosity is celebrated. If this sounds like you, let's build something great together.
What You'll Do
This position will be located at our Corporate Office: 2355 W Pinnacle Peak Rd, Phoenix, AZ 85027
- Perform risk-based due diligence and ongoing monitoring of third-party vendors
- Review and analyze Security questionnaires
- Review and analyze SOC 1 / SOC 2 reports
- Review and analyze Business continuity and disaster recovery documentation
- Document vendor risk assessments and identify control gaps
- Drive remediation efforts and follow up with business owners and vendors
- Maintain vendor risk inventory and supporting documentation
- Assist in preparing reports for management and regulatory exams
- Escalates overdue remediation items and unresolved control gaps.
- Support coordination of incident response activities (cybersecurity, and security/operational incidents)
- Track incidents from identification through resolution
- Manage incident documentation, evidence tracking, and record maintenance
- Assist in post-incident reviews, including root cause analysis and lessons learned
- Support development and maintenance of incident response procedures and playbooks
- Participate in incident response testing and tabletop exercises
- Compile and maintain reporting on Vendor risk assessments and outstanding issues
- Compile and maintain reporting on Incident trends and metrics
- Coordinate with IT and compliance teams to ensure timely execution of security operational requirements.
- Ensure documentation is complete, organized, and audit-ready
- Identify and deliver security training programs to employees, promoting best practices and enhancing the organization's security posture.
- Review penetration testing and security. Perform ongoing analysis of security systems logs and intrusion detection tools/procedures.
- Monitor changes in the security industry including new vulnerabilities, viruses, intrusions, fraud schemes, and best practices and tools available for system/network protection. Recommend appropriate technical changes to maintain designated security protection levels
What You Bring
- High School Diploma or GED Required
- Bachelors Degree in Business, Information Security, Risk Management, or related field (or equivalent experience)
- 3-5 years similar or related experience in one or more areas: Vendor/Third-Party Risk Management, Information Security or IT Risk, Incident Management or Incident Response
- Understanding of vendor risk management and due diligence practices
- Familiarity with SOC reports and basic control frameworks
- Working knowledge of incident response lifecycle and documentation
- Strong attention to detail and documentation discipline
- Ability to manage multiple priorities and meet deadlines
- Effective written and verbal communication skills
- Demonstrated ability to independently manage operational security tasks and drive follow-through across stakeholders.
- Strong written and verbal communication with consistent escalation and status reporting discipline.
Compensation & Benefits
- Generous paid time off: paid holidays, floating holidays, personal days, vacation days, plus sick time, Low-cost Medical, Dental & Vision plans
- Paid childcare assistance
- Award-winning 401K
- Gym fee reimbursement
- Tuition Reimbursement
- Student loan repayment
- ...and much more. Explore all the details in our comprehensive Benefits Booklet
- Target hiring range $84,149.19 - $105,186.49 (Depending on experience and prior to any incentives this position is eligible for)
Why Join OneAZ?
At OneAZ, we're not just a credit union; we're a financial trailblazer that passionately cares about inspiring dreams and driving prosperity in the communities we serve. We exist to clear the way for dreamers and doers, aspiring to be the bank for new pioneers.
We are driving change in our communities, constantly improving our products and services so our members and their families can relentlessly pursue their dreams. By embodying our values and living our promise, you'll be part of a team committed to exceeding expectations and redefining what's possible.
Additional Notes:
Knowingly submitting false information will result in disqualification for consideration of future positions, termination of employment and forfeiture of other rights. Candidates for this position will be required to sign an authorization for OneAZ to conduct a credit and criminal background check, pursuant to procedures in the Fair Credit Reporting Act and any other applicable laws. All candidates will be considered for this position on an individualized basis, in compliance with all applicable equal employment opportunity laws. Any individual who meets the definition of a mortgage loan originator (MLO) and is employed by a federal agency-regulated institution will need to be registered on the Nationwide Mortgage Licensing System (NMLS). Ensures compliance with applicable policies, laws, and regulations, including the Bank Secrecy Act (BSA), Anti-Money Laundering (AML) compliance, USA Patriot Act, and Office of Foreign Assets Control (OFAC). This job description should not be considered all-inclusive. It is merely a guide of expected duties. The associate understands that the job description is neither complete, nor permanent and may be modified at any time. At the request of their supervisor, an associate may be asked to perform additional duties or take on additional responsibilities without notice. Complies with all policies and standards. Position grades could fluctuate based on market value.
What OneAZ Credit Union employees say
Pay
Hours and flexibility
Workplace
Get the full story on Breakroom
About OneAZ Credit Union
Sourced by ZipRecruiter
Industry
Commercial banking
Company size
201 - 500 Employees
Headquarters location
Phoenix, AZ, US
Year founded
1951