ZipRecruiter

Log In

1

Third Party Risk Management Jobs in California (NOW HIRING)

NUBYT, INC.

Senior Cybersecurity GRC Analyst

San Jose, CA · On-site

$117K - $151K/yr

This individual will be responsible for managing compliance programs, conducting risk assessments, leading audits, overseeing identity and access governance, and driving third-party risk management ...

NuByt, Inc

Be Seen First

Senior Cybersecurity GRC Analyst

San Jose, CA · On-site

$85 - $95/hr

This individual will be responsible for managing compliance programs, conducting risk assessments, leading audits, overseeing identity and access governance, and driving third-party risk management ...

SHEIN

GRC Risk Manager

Los Angeles, CA · On-site

... into third-party engagements. * Prepare risk assessment reports to inform risk treatment decisions. * Track and monitor remediation and risk management activities. * Maintain a current and ...

SHEIN

GRC Risk Manager

Los Angeles, CA

... into third-party engagements. * Prepare risk assessment reports to inform risk treatment decisions. * Track and monitor remediation and risk management activities. * Maintain a current and ...

next page

Showing results 1-20

All JobsThird Party Risk Management JobsThird Party Risk Management Jobs in California

Third Party Risk Management information

See California salary details

$50.8K

$110.1K

$167.8K

How much do third party risk management jobs pay per year?

As of Jun 27, 2026, the average yearly pay for third party risk management in California is $110,095.00, according to ZipRecruiter salary data. Most workers in this role earn between $88,800.00 and $127,300.00 per year, depending on experience, location, and employer.

What is a Third Party Risk Management job?

A Third Party Risk Management (TPRM) job involves assessing, monitoring, and mitigating risks associated with an organization's external vendors, suppliers, and service providers. Professionals in this role evaluate third parties for compliance, cybersecurity vulnerabilities, financial stability, and operational risks. They develop frameworks, conduct risk assessments, and ensure that vendors meet regulatory and organizational standards. TPRM specialists collaborate with internal teams like compliance, procurement, and IT security to protect the organization's interests. Their goal is to minimize potential disruptions, data breaches, or regulatory non-compliance stemming from third-party relationships.

What is the highest paying risk management job?

The highest paying risk management roles are often senior positions such as Chief Risk Officer (CRO) or Director of Risk Management, with salaries exceeding $150,000 annually. These roles require extensive experience, advanced certifications like FRM or CRM, and strong leadership skills in overseeing enterprise-wide risk strategies.

What is the role of a third party Risk Manager?

A third party Risk Manager is responsible for identifying, assessing, and mitigating risks associated with an organization’s external vendors and partners. They develop risk management strategies, conduct due diligence, and monitor third-party compliance to protect the organization from potential threats and ensure contractual obligations are met. Strong analytical skills and knowledge of risk assessment tools are essential in this role.

What is 3rd party risk management?

Third party risk management is the process of identifying, assessing, and mitigating risks associated with external vendors, suppliers, or partners that an organization relies on. It involves evaluating third parties' security, compliance, and operational practices to protect the organization from potential threats and disruptions. Professionals in this field often use risk assessment tools and frameworks to ensure third-party relationships do not compromise organizational integrity.

What are some common challenges faced in a Third Party Risk Management role, and how are they addressed?

One of the primary challenges in Third Party Risk Management is keeping up with evolving regulatory requirements and the diverse risk profiles of different vendors. Professionals in this role often encounter situations where they must coordinate risk assessments across multiple departments and ensure timely responses from both internal teams and external partners. To address these challenges, strong project management skills, proactive communication, and the use of dedicated risk management tools are essential. Many organizations also emphasize ongoing training and cross-functional collaboration to stay ahead of emerging risks and regulatory changes.

What are the key skills and qualifications needed to thrive in the Third Party Risk Management position, and why are they important?

To thrive in Third Party Risk Management, you need a strong understanding of risk assessment, compliance regulations, vendor management, and data analysis, typically supported by a bachelor's degree in business, finance, or a related field. Familiarity with risk assessment tools, third-party risk management platforms (such as Archer or ProcessUnity), and certifications like Certified Third Party Risk Professional (CTPRP) are common in this field. Exceptional communication, negotiation, and analytical-thinking skills are crucial soft skills for engaging vendors and stakeholders effectively. These abilities ensure comprehensive risk mitigation and help organizations maintain compliance and security while building strong external partnerships.

Is TPRM a good career?

Third Party Risk Management (TPRM) is a growing field focused on assessing and mitigating risks from external vendors and partners. It requires skills in compliance, cybersecurity, and risk assessment, often involving certifications like CTPRP or CRISC. The role offers opportunities in various industries and can lead to advancement in risk and compliance management careers.
What are the most commonly searched types of Third Party Risk Management jobs in California? The most popular types of Third Party Risk Management jobs in California are:
What are popular job titles related to Third Party Risk Management jobs in California? For Third Party Risk Management jobs in California, the most frequently searched job titles are:
What job categories do people searching Third Party Risk Management jobs in California look for? The top searched job categories for Third Party Risk Management jobs in California are:
What cities in California are hiring for Third Party Risk Management jobs? Cities in California with the most Third Party Risk Management job openings:
Third Party Risk Management jobs near you
Infographic showing various Third Party Risk Management job openings in California as of June 2026, with employment types broken down into 86% Full Time, 8% Part Time, 3% Temporary, 2% Contract, and 1% Nights. Highlights an 91% Physical, 3% Hybrid, and 6% Remote job distribution, with an average salary of $110,095 per year, or $52.9 per hour.
Director, Business Operations (Risk Management)

Director, Business Operations (Risk Management)

CIM Group, LP

Los Angeles, CA

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 20 days ago

Job description

ABOUT CIM GROUP:
CIM is a community-focused real estate and infrastructure owner, operator, lender, and developer. Our team of experts works together to identify and create value in real assets, benefiting the communities in which we invest. Back in 1994, our three founders focused on projects in Southern California neighborhoods. Today, we are a diverse team of 900+ employees with projects across the Americas. Our projects have delivered jobs; created comfortable places to live, work, and relax; and provided necessary and sustainable infrastructure. Our focus on enhancing communities is unwavering, and we strive to make an even greater impact in the years to come. Join us and make an impact today!

POSITION PURPOSE:
 

The Director of Business Operations holds primary responsibility for managing and executing the firm's operational resilience framework, with full accountability for third-party risk management, incident response planning, business continuity and business operational reporting. This role requires both strategic oversight and hands-on execution. The director will also support key firmwide initiatives and special projects.

The Director, Business Operations establishes firmwide standards, ensuring controls are robust, thoroughly documented, effective, and appropriately tailored to the organization's needs. The position involves ongoing program enhancement by identifying and mitigating emerging threats in advance. Additionally, this role directly implements these standards, including incident triage and crisis response, as necessary.

Note: Considering incidents may occur outside of core working hours, occasional work during weekends and/or holidays may be required.

RESPONSIBILITIES:

Third-Party Risk Management

  • Take full ownership of the firm's Third-Party Risk Management (TPRM) program, leading both strategy and hands-on execution. Oversee vendor supervision using a risk-based approach, ensuring seamless management throughout the vendor lifecycle-including due diligence, onboarding, ongoing monitoring, remediation, and offboarding.
  • Ensure all vendor risk activities comply with internal policies, regulatory requirements (SEC, FINRA), and investor standards.
  • Regularly update and maintain TPRM policies, standards and procedures, delivering clear documentation and continuous improvements.

Incident Management

  • Lead the execution and ongoing enhancement of the firm's Incident Response Plan. Collaborate closely with legal, compliance, technology and additional internal stakeholders to maintain and update protocols.
  • Serve as the primary point of contact for all incident types, coordinating rapid triage, containment, and resolution across teams. Guide the Incident Response Team, including after-hours support, as needed.
  • Track, report, and document incidents; conduct thorough reviews and remediation planning post-incident. Perform analytics and root cause analysis to proactively reduce future risk and continually evolve the program to meet emerging threats and business needs.

Business Continuity Planning (BCP)

  • Own and drive the Business Continuity Planning program, from policy development and governance to hands-on execution of annual tests and disaster response. Lead BCP committees and engage stakeholders to ensure the program evolves with changing business and regulatory requirements.
  • Conduct regular business impact assessments to define suitable recovery goals. Integrate high-risk service providers into BCP testing, maintain comprehensive documentation of outcomes, and deliver remediation where needed.
  • Execute BCP plans during disasters, providing after-hours leadership to restore operations promptly and in accordance with established recovery strategies.

Operational Excellence & Reporting

  • Continuously review and refine workflows to optimize efficiency. Identify and implement improvement opportunities across operational risk controls.
  • Deliver high-quality, insightful reporting-including dashboards, KPI tracking, incident summaries, and vendor risk metrics-to senior leadership and committees.
  • Maintain client-ready documentation of operational risk controls; collaborate with the RFP team to address due diligence questionnaires and inquiries. Support internal/external audits, regulatory exams, and investor due diligence processes.
  • Partner with Compliance to ensure SEC and FINRA regulatory adherence, actively supporting employee training and awareness initiatives.
  • Manage one direct report and oversee vendor resources. Responsible for hiring, coaching and performance management.
  • Support divisional and departmental business operational reporting, including Quarterly Business Review (QBRs).
  • Support the Head of Transformation on high-priority, firmwide initiatives and special projects.
EDUCATION/EXPERIENCE REQUIREMENTS: (including certification, licenses, etc.)
  • Bachelor's degree required (Business, Economics, Information Systems, Risk Management, or related field preferred).  
  • 12+ years of business operations, internal controls, risk management, or compliance experience.
  • Experience in real estate, asset management, financial services, or similar industries required.
  • Experience as a people manager required.
  • Advanced proficiency in Excel (index/match, pivot tables, advanced formulas, analytics).
  • Familiarity with risk frameworks (e.g., SOC 2, NIST, ITGC, SOX) is preferred.
  • Experience with Prevalent or similar platforms.
  • Familiarity with FINRA and SEC compliance frameworks; FINRA S99 is a plus.
ABOUT YOU:
  • Bachelor's degree required (Business, Economics, Information Systems, Risk Management, or related field preferred).  
  • 12+ years of business operations, internal controls, risk management, or compliance experience.
  • Experience in real estate, asset management, financial services, or similar industries required.
  • Experience as a people manager required.
  • Advanced proficiency in Excel (index/match, pivot tables, advanced formulas, analytics).
  • Familiarity with risk frameworks (e.g., SOC 2, NIST, ITGC, SOX) is preferred.
  • Experience with Prevalent or similar platforms.
  • Familiarity with FINRA and SEC compliance frameworks; FINRA S99 is a plus.
WHAT CIM OFFERS:
At CIM, we believe our success stems from our collective efforts, and we are committed to providing well-rounded support and resources for our employees. In addition to a competitive compensation plan, CIM offers a comprehensive benefits program for employees to thrive both inside and outside of work. Eligible employees can enjoy a wide range of benefits, including:
  • A variety of Medical, dental, and vision benefit plans
  • Health Savings Account with a generous employer contribution
  • Company paid life and disability insurance
  • 401(k) savings plan, with company match
  • Comprehensive paid time off, including: vacation days, 10 designated holidays, sick time, and bereavement leave
  • Up to 16 hours of volunteer time off
  • Up to 16 weeks of Paid Parental Leave
  • Ongoing professional development programs
  • Wellness program, including monthly and quarterly prizes
  • And more!
 
Actual base salary considers several factors including but not limited to geography, job-related knowledge, experience, and budget. The start of the salary range is typically associated with the minimum experience required. At CIM, base pay is one part of the total compensation package. For this role, bonus compensation may be a significant part of the total compensation. The anticipated base salary range for the position in Los Angeles, CA is $160,000 - $180,000. 
 
 
 
#LI-BL1

HOW WE FEEL ABOUT DIVERSITY AND INCLUSION:
At CIM Group, we believe that the unique perspectives and backgrounds of our employees enhance everything we do. We are committed to fostering an inclusive environment where diversity is not only respected but celebrated. We strive to ensure that our workplace is free from discrimination and harassment, allowing everyone to contribute meaningfully and feel a sense of belonging. As an equal opportunity employer, we strictly prohibit any form of unlawful discrimination and adhere to the laws enforced by the EEOC. Our goal is to provide a safe and supportive environment where all employees can grow and make impactful contributions together.
 
*Applicants with disabilities may be entitled to reasonable accommodation under the terms of the Americans with Disabilities Act and certain state or local laws. A reasonable accommodation is a change in the way things are normally done which will ensure an equal employment opportunity without imposing undue hardship on CIM Group. Please inform our Talent team if you need any assistance completing any forms or to otherwise participate in the application process.
 
CIM is committed to maintaining the confidentiality and privacy of your personal and financial information. Please click here for our Privacy Policy.
 
CIM does not accept unsolicited resumes from Agencies.  Any unsolicited resumes received from Agencies will be considered property of CIM and no fees will be due or paid.  If you wish to become an approved Agency with CIM or any of its Affiliates, please contact a member of the CIM Talent Acquisition Team.
apply for this job

Apply