ZipRecruiter

Log In

1

Third Party Risk Manager Jobs in Arizona (NOW HIRING)

Clayco

Senior GRC Analyst

Phoenix, AZ ยท On-site

This role will assume ownership of the Third-Party Risk Management (TPRM) process to gather details on the security practices and compliance levels for each third-party being considered or contracted ...

Clayco

Senior GRC Analyst

Phoenix, AZ ยท On-site

This role will assume ownership of the Third-Party Risk Management (TPRM) process to gather details on the security practices and compliance levels for each third-party being considered or contracted ...

Clayco

Senior GRC Analyst

Phoenix, AZ ยท On-site

This role will assume ownership of the Third-Party Risk Management (TPRM) process to gather details on the security practices and compliance levels for each third-party being considered or contracted ...

Clayco

Senior GRC Analyst

Phoenix, AZ ยท On-site

This role will assume ownership of the Third-Party Risk Management (TPRM) process to gather details on the security practices and compliance levels for each third-party being considered or contracted ...

MUFG Bank, Ltd.

Change Manager, AVP

Tempe, AZ ยท On-site

$106K - $130K/yr

Support and participate in risk-related discussions, particularly as they relate to third-party risk management, contracting, and procurement controls * Create and maintain executive-level materials ...

Avnet, Inc.

Sr. Manager, GRC

Chandler, AZ

$109K - $147K/yr

Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...

Avnet, Inc.

Sr. Manager, GRC

Chandler, AZ ยท On-site

$109K - $147K/yr

Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...

Deloitte

Senior Consultant - ServiceNow

Tempe, AZ ยท Remote

... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Supporting functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service ...

Avnet, Inc.

Sr. Manager, GRC

Chandler, AZ

$109K - $147K/yr

Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...

Deloitte

Consultant - ServiceNow

Tempe, AZ ยท Remote

... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Contributing to functional design and configuration of ServiceNow solutions, including forms, workflows, notifications ...

Avnet

Sr. Manager, GRC

Chandler, AZ

$113K - $153K/yr

Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...

Deloitte

Consultant - ServiceNow

Gilbert, AZ ยท Remote

... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Contributing to functional design and configuration of ServiceNow solutions, including forms, workflows, notifications ...

Deloitte

Senior Consultant - ServiceNow

Gilbert, AZ ยท Remote

... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Supporting functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service ...

next page

Showing results 1-20

All JobsThird Party Risk Manager JobsThird Party Risk Manager Jobs in Arizona

Third Party Risk Manager information

See Arizona salary details

$48K

$104K

$158.4K

How much do third party risk manager jobs pay per year?

As of Jun 10, 2026, the average yearly pay for third party risk manager in Arizona is $103,958.00, according to ZipRecruiter salary data. Most workers in this role earn between $83,900.00 and $120,200.00 per year, depending on experience, location, and employer.

What is the difference between Third Party Risk Manager vs Vendor Risk Analyst?

AspectThird Party Risk ManagerVendor Risk Analyst
CredentialsCertifications like CRISC, CTPRP often preferredCertifications such as CRISC, CTPRP common
Work EnvironmentOversees multiple vendors and third-party relationships at strategic levelFocuses on assessing specific vendor risks and compliance
Employer & Industry UsageUsed in finance, healthcare, and large corporations managing third-party risksCommon in IT, finance, and procurement departments
Search & Comparison IntentOften compared for broader risk management rolesCompared for detailed vendor risk assessments

The Third Party Risk Manager oversees the overall risk associated with third-party vendors, focusing on strategic risk mitigation. The Vendor Risk Analyst concentrates on evaluating individual vendors' risks and compliance. While both roles require similar certifications and work in related environments, the Risk Manager has a broader scope, whereas the Analyst specializes in detailed assessments.

What are the key skills and qualifications needed to thrive as a Third Party Risk Manager, and why are they important?

To thrive as a Third Party Risk Manager, you need a strong background in risk assessment, vendor management, and regulatory compliance, often supported by a degree in business, finance, or a related field. Familiarity with risk management frameworks, tools like GRC (Governance, Risk, and Compliance) platforms, and relevant certifications such as CTPRP (Certified Third Party Risk Professional) are highly beneficial. Excellent communication, analytical thinking, and stakeholder management skills set top performers apart in this role. These competencies are crucial for effectively identifying, mitigating, and communicating third-party risks to protect organizational assets and ensure regulatory compliance.

What is a Third Party Risk Manager?

A Third Party Risk Manager is a professional responsible for identifying, assessing, and mitigating risks associated with an organization's external vendors, suppliers, or partners. Their main job is to ensure that third-party relationships do not expose the company to undue financial, operational, regulatory, or reputational risk. This includes evaluating vendor security practices, monitoring compliance with contracts and regulations, and developing risk management policies. Third Party Risk Managers often collaborate with legal, procurement, and IT teams to safeguard the organization's interests. Their work is crucial in today's interconnected business environment, where companies increasingly rely on third-party services and products.

How does a Third Party Risk Manager typically collaborate with other departments to manage vendor risks?

A Third Party Risk Manager works closely with teams such as procurement, legal, IT security, and compliance to assess and monitor the risks associated with external vendors. They coordinate with these departments to perform due diligence, review contracts, and establish ongoing monitoring processes. Regular cross-functional meetings and clear communication channels are essential, as the role often requires aligning risk management strategies with organizational objectives and ensuring that vendor-related risks are identified and mitigated promptly.
What are popular job titles related to Third Party Risk Manager jobs in Arizona? For Third Party Risk Manager jobs in Arizona, the most frequently searched job titles are:
What job categories do people searching Third Party Risk Manager jobs in Arizona look for? The top searched job categories for Third Party Risk Manager jobs in Arizona are:
What cities in Arizona are hiring for Third Party Risk Manager jobs? Cities in Arizona with the most Third Party Risk Manager job openings:
Third Party Risk Manager jobs near you
Infographic showing various Third Party Risk Manager job openings in Arizona as of June 2026, with employment types broken down into 97% Full Time, 2% Part Time, and 1% Contract. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $103,958 per year, or $50 per hour.
Senior GRC Analyst

Senior GRC Analyst

Clayco

Phoenix, AZ โ€ข On-site

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 23 days ago

Job description

About Us
Clayco is a full-service, turnkey real estate development, master planning, architecture, engineering, and construction firm that safely delivers clients across North America the highest quality solutions on time, on budget, and above and beyond expectations. With $8.1 billion in revenue for 2025, Clayco specializes in the "art and science of building," providing fast track, efficient solutions for mission critical, industrial, life sciences, power & energy, aviation, commercial, institutional, residential and sports & entertainment related building projects.
The Role We Want You For
Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a Risk focused, highly analytical role that ensures all Human and Third-Party risk to Clayco is identified, quantified, documented, and treated to an acceptable level across the Clayco organization. This role will assume ownership of the Third-Party Risk Management (TPRM) process to gather details on the security practices and compliance levels for each third-party being considered or contracted for a solution or services to assess the potential for compromise due to a control gap or exploitable misconfiguration as well as non-compliance with legal and regulatory requirements.. Additional contribution will be expected for internal assessments and 3rd Party audits to gather and submit discovery and transactional responses and artifacts.The Sr. GRC Analyst will also assume ownership of Human Risk Management (HRM) including the delivery of comprehensive security awareness education, the end-to-end execution of phishing simulation programs, and the technical maintenance and life-cycle management of security awareness platforms. Beyond simple training, the position focuses on Human Risk Management (HRM), using data-driven insights to identify high-risk user groups and implementing targeted interventions to proactively mitigate human-centric threats to cultivate a security-first culture internally through education and behavioral change. Additional responsibilities will be assigned as deemed necessary. Any travel is usually planned in advance, but issues may arise which warrant immediate travel to one or more satellite locations.
The Specifics of the Role
  • Assumes operational ownership of the 3rd Party Vendor Risk Management program identifying, assessing, and mitigating risks associated with external vendors, suppliers, and service providers
  • Conducts due diligence on new and existing vendors by reviewing security questionnaires, SOC reports, compliance certifications, and other supporting attestations
  • Captures, analyzes, and recommends treatment, assignment, and tracking of identified issues
  • Collaborates with legal and stakeholder teams to ensure contracts include specific clauses for data protection, service-level agreements (SLAs), and AI governance
  • Documents and communicates all relevant findings and recommendations to stakeholders
  • Tracks, monitors, and reports on execution of remediation action plans and escalates inadequate responses or progress
  • Assumes ownership of the Security Awareness program determining appropriate topics, themes, scopes, and timing of cyber awareness communications, events, and content delivery
  • Conducts regular, simulated social engineering exercises to assess and improve employee recognition of real-world attacks
  • Develops engaging, simple materials-such as infographics, newsletters, and videos-that translate complex technical risks into layman's terms
  • Maintains Security Awareness training and simulation platforms to support content delivery and End User interaction, including support for any Client-side functionality (i.e., "Report Phish" button)
  • Plans, coordinates, and executes activities for Cybersecurity month
  • Partners with Employee Relations, Legal, and Marketing to ensure security messaging is integrated into the broader corporate culture
  • Tracks Key Risk Indicators (KRI's) such as actual phishing click-through rates, failed simulations, and missed training as well as Key Performance Indicators (KPIs) like suspicious email reporting, passed simulations, and successful training completion status to measure program effectiveness for leadership

Requirements
  • 6-8+ years' experience in Risk & Compliance Assessment, Audit & Reporting, or similar functions, preferably within the Information Security or Technology fields
  • 3-4+ years working specifically in Information Security roles involving Risk Analysis, Information System Security Assessment, and/or Security Awareness and Human Risk Management
  • Bachelor's degree in Information Technology or related field, or equivalent experience
  • Required Certifications: Certified in Risk & Information Systems Control (CRISC), SANS Security Awareness Professional (SSAP), and Certified Third-party Risk Professional Certification (CTPRP) (Current status, or obtained within 9 months of assuming role)
  • Strong experience leveraging auditing principles and methods to evaluate policies, processes, systems, and vendors to identify business risks and control gaps
  • Strong knowledge of Regulations, Frameworks, and Standards such as NIST 800-171/CSF/RMF, ISO27001, CIS Critical Security Controls, etc.
  • Strong, technical knowledge of modern Systems, Services, Cloud Applications/Platforms, Identity Services, and Data Storage/Handling and their areas of Risk and Threat exposure
  • Experience with administering, maintaining, and leveraging a Risk Register to track and communicate identified Risk and its required remediation
  • Knowledge of statistics, reporting and analytical tools to analyze and solve complex problems
  • Proficiency in necessary productivity tools (i.e., Microsoft Excel, PowerPoint, Word etc.) for analytics and presentations
  • Operate with strong integrity with ability to manage projects of a confidential nature
  • Ability to translate technical or abstract concepts into a narrative that is easily understood
  • Ability to thrive in fast-paced environment.

Some Things You Should Know.
  • No other builder can offer the collaborative design-build approach that Clayco does.
  • We work on creative, complex, award-winning, high-profile jobs.
  • The pace is fast!
  • This position is classified as a safety-sensitive role in accordance with applicable state and federal laws. Candidates selected for this position will be subject to a comprehensive background check, which includes mandatory drug testing.

Why Clayco?
  • 2025 Best Places to Work - St. Louis Business Journal, Los Angeles Business Journal, and Phoenix Business Journal.
  • 2025 ENR Top 400 - Top Data Center Contractor (Top 3).
  • 2025 ENR Top 100 Design-Build Firms - Design-Build Contractor (Top 5).
  • 2025 ENR Top 100 Green Contractors - Green Contractor (Top 3).

Benefits
  • Discretionary Annual Bonus: Subject to company and individual performance.
  • Comprehensive Benefits Package Including: Medical, dental and vision plans, 401k, generous PTO and paid company holidays, employee assistance program, flexible spending accounts, life insurance, disability coverage, learning & development programs and more!

Compensation
  • The salary range for this position considers a wide range of factors in making compensation decisions including but not limited to: Education, qualifications, skills, training, experience, certifications, internal equity, and location. Compensation decisions are dependent on the facts and circumstances of each case.

Apply