IT GRC Analyst II
Raleigh, NC · On-site
Third party risk management * Working knowledge of various industry security standards and frameworks including: NIST, ISO 27001, ISF Standard of Good Practice (SoGP), etc. Desired Knowledge ...
IT GRC Analyst II
Raleigh, NC · On-site
Third party risk management * Working knowledge of various industry security standards and frameworks including: NIST, ISO 27001, ISF Standard of Good Practice (SoGP), etc. Desired Knowledge ...
... third-party vendor risk management program. * Other duties, as assigned, are based on the ongoing evolution of the Information Security program. KNOWLEDGE, SKILLS, AND ABILITIES: * Proficiency with ...
Quick apply
... third-party vendor risk management program. * Other duties, as assigned, are based on the ongoing evolution of the Information Security program. KNOWLEDGE, SKILLS, AND ABILITIES: * Proficiency with ...
Partner with Business Owners, Third Party Risk Management (TPRM) and Legal to establish standards for contract language, supplier negotiations, overall management, and dispute resolution. Ensures all ...
Partner with Business Owners, Third Party Risk Management (TPRM) and Legal to establish standards for contract language, supplier negotiations, overall management, and dispute resolution. Ensures all ...
Partner with Business Owners, Third Party Risk Management (TPRM) and Legal to establish standards for contract language, supplier negotiations, overall management, and dispute resolution. Ensures all ...
Partner with Business Owners, Third Party Risk Management (TPRM) and Legal to establish standards for contract language, supplier negotiations, overall management, and dispute resolution. Ensures all ...
... third-party vendor risk management program. * Other duties, as assigned, are based on the ongoing evolution of the Information Security program. KNOWLEDGE, SKILLS, AND ABILITIES: * Proficiency with ...
... third-party vendor risk management program. * Other duties, as assigned, are based on the ongoing evolution of the Information Security program. KNOWLEDGE, SKILLS, AND ABILITIES: * Proficiency with ...
Vice President, Sr. Enterprise Resilience Officer (Remote)
Raleigh, NC · On-site +1
$101K - $150K/yr
Provide subject matter expertise and strategic guidance on resilience-related initiatives, including business continuity, third-party risk, and crisis management. * Champion a culture of resilience ...
Vice President, Sr. Enterprise Resilience Officer (Remote)
Raleigh, NC · On-site +1
$101K - $150K/yr
Provide subject matter expertise and strategic guidance on resilience-related initiatives, including business continuity, third-party risk, and crisis management. * Champion a culture of resilience ...
Business Analyst II
Raleigh, NC · On-site
$67K - $103K/yr
... Third Party Risk Management, documenting items in the Archer system of record, etc. Lastly, this role supports risk maturity in a growing organization, coordinating and supporting 2nd and 3rd Line ...
Business Analyst II
Raleigh, NC · On-site
$67K - $103K/yr
... Third Party Risk Management, documenting items in the Archer system of record, etc. Lastly, this role supports risk maturity in a growing organization, coordinating and supporting 2nd and 3rd Line ...
Business Analyst II
Raleigh, NC · On-site +1
$67K - $103K/yr
... Third Party Risk Management, documenting items in the Archer system of record, etc. Lastly, this role supports risk maturity in a growing organization, coordinating and supporting 2nd and 3rd Line ...
Business Analyst II
Raleigh, NC · On-site +1
$67K - $103K/yr
... Third Party Risk Management, documenting items in the Archer system of record, etc. Lastly, this role supports risk maturity in a growing organization, coordinating and supporting 2nd and 3rd Line ...
Business Analyst II
Raleigh, NC · On-site +1
$67K - $103K/yr
... Third Party Risk Management, documenting items in the Archer system of record, etc. Lastly, this role supports risk maturity in a growing organization, coordinating and supporting 2nd and 3rd Line ...
Business Analyst II
Raleigh, NC · On-site +1
$67K - $103K/yr
... Third Party Risk Management, documenting items in the Archer system of record, etc. Lastly, this role supports risk maturity in a growing organization, coordinating and supporting 2nd and 3rd Line ...
Vendor and third-party risk: Assess and manage security risk associated with vendors, contractors, and third-party service providers. * Future team leadership: Lay the groundwork to scale the ...
Vendor and third-party risk: Assess and manage security risk associated with vendors, contractors, and third-party service providers. * Future team leadership: Lay the groundwork to scale the ...
Information Security Manager
Durham, NC · On-site
Vendor and third-party risk: Assess and manage security risk associated with vendors, contractors, and third-party service providers. * Future team leadership: Lay the groundwork to scale the ...
Information Security Manager
Durham, NC · On-site
Vendor and third-party risk: Assess and manage security risk associated with vendors, contractors, and third-party service providers. * Future team leadership: Lay the groundwork to scale the ...
Vice President, Sr. Enterprise Resilience Officer (Remote)
Raleigh, NC · Remote
$101K - $150K/yr
Provide subject matter expertise and strategic guidance on resilience-related initiatives, including business continuity, third-party risk, and crisis management. * Champion a culture of resilience ...
Vice President, Sr. Enterprise Resilience Officer (Remote)
Raleigh, NC · Remote
$101K - $150K/yr
Provide subject matter expertise and strategic guidance on resilience-related initiatives, including business continuity, third-party risk, and crisis management. * Champion a culture of resilience ...
Vice President, Sr. Enterprise Resilience Officer (Remote)
Raleigh, NC · Remote
$101K - $150K/yr
Provide subject matter expertise and strategic guidance on resilience-related initiatives, including business continuity, third-party risk, and crisis management. * Champion a culture of resilience ...
Vice President, Sr. Enterprise Resilience Officer (Remote)
Raleigh, NC · Remote
$101K - $150K/yr
Provide subject matter expertise and strategic guidance on resilience-related initiatives, including business continuity, third-party risk, and crisis management. * Champion a culture of resilience ...
Set firm aligned compliance requirements across audit methodology, SDLC, privacy, cybersecurity, third party risk, AI/GenAI, and data management lifecycle. Shape how risk and compliance are embedded ...
Set firm aligned compliance requirements across audit methodology, SDLC, privacy, cybersecurity, third party risk, AI/GenAI, and data management lifecycle. Shape how risk and compliance are embedded ...
RTP NC_PMP Certified Project manager(MS Project)
Raleigh, NC · On-site
$95K - $113K/yr
Experience with project risk management, including failure mode effect analysis and planning * Experience implementing solutions utilizing third party vendors and third party products. * Project ...
RTP NC_PMP Certified Project manager(MS Project)
Raleigh, NC · On-site
$95K - $113K/yr
Experience with project risk management, including failure mode effect analysis and planning * Experience implementing solutions utilizing third party vendors and third party products. * Project ...
Project Manager
Raleigh, NC · On-site
... project risk management, including failure mode effect analysis • Experience implementing solutions utilizing third party vendors and third party products • IT Project Management experience ...
Project Manager
Raleigh, NC · On-site
... project risk management, including failure mode effect analysis • Experience implementing solutions utilizing third party vendors and third party products • IT Project Management experience ...
Experience with project risk management, including failure mode effect analysis and planning * Experience implementing solutions utilizing third party vendors and third party products * Project ...
Experience with project risk management, including failure mode effect analysis and planning * Experience implementing solutions utilizing third party vendors and third party products * Project ...
... management, asset inventories). Controls Monitoring & Assurance * Establish and operate a ... Familiarity with third-party risk and vendor compliance monitoring. * Relevant certifications ...
... management, asset inventories). Controls Monitoring & Assurance * Establish and operate a ... Familiarity with third-party risk and vendor compliance monitoring. * Relevant certifications ...
... management, asset inventories). Controls Monitoring & Assurance * Establish and operate a ... Familiarity with third-party risk and vendor compliance monitoring. * Relevant certifications ...
... management, asset inventories). Controls Monitoring & Assurance * Establish and operate a ... Familiarity with third-party risk and vendor compliance monitoring. * Relevant certifications ...
Project Manager
Raleigh, NC · On-site
Experience with project risk management, including failure mode effect analysis Experience implementing solutions utilizing third party vendors and third party products IT Project Management ...
Project Manager
Raleigh, NC · On-site
Experience with project risk management, including failure mode effect analysis Experience implementing solutions utilizing third party vendors and third party products IT Project Management ...
Third Party Risk Management information
See Raleigh, NC salary details
$50.1K - $60.5K
4% of jobs
$60.5K - $71K
6% of jobs
$71K - $81.5K
11% of jobs
$85.4K is the 25th percentile. Wages below this are outliers.
$81.5K - $91.9K
11% of jobs
The median wage is $100.3K / yr.
$91.9K - $102.4K
23% of jobs
$102.4K - $112.9K
13% of jobs
$119.8K is the 75th percentile. Wages above this are outliers.
$112.9K - $123.4K
12% of jobs
$123.4K - $133.8K
8% of jobs
$133.8K - $144.3K
6% of jobs
$144.3K - $154.8K
4% of jobs
$154.8K - $165.2K
2% of jobs
$50.1K
$108.4K
$165.2K
How much do third party risk management jobs pay per year?
As of Jun 21, 2026, the average yearly pay for third party risk management in Raleigh, NC is $108,435.00, according to ZipRecruiter salary data. Most workers in this role earn between $87,500.00 and $125,400.00 per year, depending on experience, location, and employer.
What is a Third Party Risk Management job?
A Third Party Risk Management (TPRM) job involves assessing, monitoring, and mitigating risks associated with an organization's external vendors, suppliers, and service providers. Professionals in this role evaluate third parties for compliance, cybersecurity vulnerabilities, financial stability, and operational risks. They develop frameworks, conduct risk assessments, and ensure that vendors meet regulatory and organizational standards. TPRM specialists collaborate with internal teams like compliance, procurement, and IT security to protect the organization's interests. Their goal is to minimize potential disruptions, data breaches, or regulatory non-compliance stemming from third-party relationships.
What is the highest paying risk management job?
The highest paying risk management roles are often senior positions such as Chief Risk Officer (CRO) or Director of Risk Management, with salaries exceeding $150,000 annually. These roles require extensive experience, advanced certifications like FRM or CRM, and strong leadership skills in overseeing enterprise-wide risk strategies.
What is the role of a third party Risk Manager?
A third party Risk Manager is responsible for identifying, assessing, and mitigating risks associated with an organization’s external vendors and partners. They develop risk management strategies, conduct due diligence, and monitor third-party compliance to protect the organization from potential threats and ensure contractual obligations are met. Strong analytical skills and knowledge of risk assessment tools are essential in this role.
What is 3rd party risk management?
Third party risk management is the process of identifying, assessing, and mitigating risks associated with external vendors, suppliers, or partners that an organization relies on. It involves evaluating third parties' security, compliance, and operational practices to protect the organization from potential threats and disruptions. Professionals in this field often use risk assessment tools and frameworks to ensure third-party relationships do not compromise organizational integrity.
What are some common challenges faced in a Third Party Risk Management role, and how are they addressed?
One of the primary challenges in Third Party Risk Management is keeping up with evolving regulatory requirements and the diverse risk profiles of different vendors. Professionals in this role often encounter situations where they must coordinate risk assessments across multiple departments and ensure timely responses from both internal teams and external partners. To address these challenges, strong project management skills, proactive communication, and the use of dedicated risk management tools are essential. Many organizations also emphasize ongoing training and cross-functional collaboration to stay ahead of emerging risks and regulatory changes.
What are the key skills and qualifications needed to thrive in the Third Party Risk Management position, and why are they important?
To thrive in Third Party Risk Management, you need a strong understanding of risk assessment, compliance regulations, vendor management, and data analysis, typically supported by a bachelor's degree in business, finance, or a related field. Familiarity with risk assessment tools, third-party risk management platforms (such as Archer or ProcessUnity), and certifications like Certified Third Party Risk Professional (CTPRP) are common in this field. Exceptional communication, negotiation, and analytical-thinking skills are crucial soft skills for engaging vendors and stakeholders effectively. These abilities ensure comprehensive risk mitigation and help organizations maintain compliance and security while building strong external partnerships.
Is TPRM a good career?
Third Party Risk Management (TPRM) is a growing field focused on assessing and mitigating risks from external vendors and partners. It requires skills in compliance, cybersecurity, and risk assessment, often involving certifications like CTPRP or CRISC. The role offers opportunities in various industries and can lead to advancement in risk and compliance management careers.
What are the most commonly searched types of Third Party Risk Management jobs in Raleigh, NC? The most popular types of Third Party Risk Management jobs in Raleigh, NC are:
What are popular job titles related to Third Party Risk Management jobs in Raleigh, NC? For Third Party Risk Management jobs in Raleigh, NC, the most frequently searched job titles are:
What job categories do people searching Third Party Risk Management jobs in Raleigh, NC look for? The top searched job categories for Third Party Risk Management jobs in Raleigh, NC are:
What cities near Raleigh, NC are hiring for Third Party Risk Management jobs? Cities near Raleigh, NC with the most Third Party Risk Management job openings:
Full-time
Posted 19 days ago
Job description
If you are motivated and believe in the credit union philosophy of "People Helping People," join our team!
The IT GRC Analyst 2 assess, tests, documents, and monitors the SECU technology ecosystem to ensure the IT control environment effectively mitigates risks associated with an everchanging threat landscape. The IT GRC Analyst will possess a wide range of technical and interpersonal skills to bridge the gap between technology organizations and the business. Must have a big-picture perspective, ability to execute end-to-end risk management processes, and ability to quickly establish trust and build productive relationships across multiple departments. The IT GRC Analyst will require expertise to perform technology risk assessments, provide input to and/or document IT policies, standards, and guidelines, develop, monitor, and track risk remediation plans, and aggregate and report key risk metrics to senior stakeholders.
Responsibilities:
20% - Identify, document, and monitor technology risks present across both internal and external (vendor / cloud) environments
20% - Quantify inherent and residual IT risk levels to enhance analytics, inform prioritizations, and for use in management reporting
20% - Work with risk remediation owners to establish remediation plans with milestones and target dates, and monitor progress towards remediation, escalating as appropriate
20% - Execute technology risk management processes and provide input to support continuous improvement of process and program design
10% - Perform risk and controls assessments while aggregating reporting for Audit and/or Regulatory issues.
10% - Partner with relevant stakeholders to establish clear and consistent IT risk reporting, metrics, KRIs, and KPIs to inform decision making
Required Relevant Experience - 5 Years
Required Knowledge, Abilities and Skills:
* Teamwork, collaboration, self-driven and effective communication skills - both written and verbal.
* 3+ years of IT Security and/or IT Risk Management experience working in a mid-to-large size company
* Basic proficiency or ability to learn one or more of the following: * Risk and controls assessments
* Documenting and maintaining IT Policies / Standards
* IT Risk aggregation, reporting, KPI/KRIs
* Issues management
* Third party risk management
* Working knowledge of various industry security standards and frameworks including: NIST, ISO 27001, ISF Standard of Good Practice (SoGP), etc.
Desired Knowledge, Abilities, Skills:
* Knowledge of modern enterprise and security architectures, their challenges, common approaches to overcome their challenges, and their inherent security strengths and weaknesses.
* Professional certifications such as: CISSP, CISA, CISM, GIAC, CGEIT, CRISC, OSCE, or other relevant industry certification
* Experience working in a financial institution.
* Experience working within a DevOps environment.
SECU provides equal employment opportunity to all qualified persons regardless of race, color, religion, age, sex, sexual orientation, gender identity, national origin, genetic information, disability, veteran status, or other classification protected by law.
Disclaimer
State Employees' Credit Union reserves the right to fill this role at a higher/lower level based on business need.