1

Third Party Risk Manager Jobs in Michigan (NOW HIRING)

Third-Party Risk Management (TPRM) * 10+ years of demonstrated deep technical expertise in ServiceNow, typically evidenced by advanced ServiceNow certifications (e.g., Certified Application Developer ...

Lead Security Architect

Lansing, MI ยท On-site

$75 - $95/hr

Third-Party Risk Evaluation * SaaS Security Architecture Data & Infrastructure Security ... Model Risk Management * AI Governance and Security Controls Security Frameworks Experience with one ...

next page

Showing results 1-20

Third Party Risk Manager information

See Michigan salary details

$44.9K

$97.2K

$148.2K

How much do third party risk manager jobs pay per year?

As of Jul 14, 2026, the average yearly pay for third party risk manager in Michigan is $97,232.00, according to ZipRecruiter salary data. Most workers in this role earn between $78,400.00 and $112,400.00 per year, depending on experience, location, and employer.

What is the difference between Third Party Risk Manager vs Vendor Risk Analyst?

AspectThird Party Risk ManagerVendor Risk Analyst
CredentialsCertifications like CRISC, CTPRP often preferredCertifications such as CRISC, CTPRP common
Work EnvironmentOversees multiple vendors and third-party relationships at strategic levelFocuses on assessing specific vendor risks and compliance
Employer & Industry UsageUsed in finance, healthcare, and large corporations managing third-party risksCommon in IT, finance, and procurement departments
Search & Comparison IntentOften compared for broader risk management rolesCompared for detailed vendor risk assessments

The Third Party Risk Manager oversees the overall risk associated with third-party vendors, focusing on strategic risk mitigation. The Vendor Risk Analyst concentrates on evaluating individual vendors' risks and compliance. While both roles require similar certifications and work in related environments, the Risk Manager has a broader scope, whereas the Analyst specializes in detailed assessments.

What are the key skills and qualifications needed to thrive as a Third Party Risk Manager, and why are they important?

To thrive as a Third Party Risk Manager, you need a strong background in risk assessment, vendor management, and regulatory compliance, often supported by a degree in business, finance, or a related field. Familiarity with risk management frameworks, tools like GRC (Governance, Risk, and Compliance) platforms, and relevant certifications such as CTPRP (Certified Third Party Risk Professional) are highly beneficial. Excellent communication, analytical thinking, and stakeholder management skills set top performers apart in this role. These competencies are crucial for effectively identifying, mitigating, and communicating third-party risks to protect organizational assets and ensure regulatory compliance.

What is a Third Party Risk Manager?

A Third Party Risk Manager is a professional responsible for identifying, assessing, and mitigating risks associated with an organization's external vendors, suppliers, or partners. Their main job is to ensure that third-party relationships do not expose the company to undue financial, operational, regulatory, or reputational risk. This includes evaluating vendor security practices, monitoring compliance with contracts and regulations, and developing risk management policies. Third Party Risk Managers often collaborate with legal, procurement, and IT teams to safeguard the organization's interests. Their work is crucial in today's interconnected business environment, where companies increasingly rely on third-party services and products.

How does a Third Party Risk Manager typically collaborate with other departments to manage vendor risks?

A Third Party Risk Manager works closely with teams such as procurement, legal, IT security, and compliance to assess and monitor the risks associated with external vendors. They coordinate with these departments to perform due diligence, review contracts, and establish ongoing monitoring processes. Regular cross-functional meetings and clear communication channels are essential, as the role often requires aligning risk management strategies with organizational objectives and ensuring that vendor-related risks are identified and mitigated promptly.
What job categories do people searching Third Party Risk Manager jobs in Michigan look for? The top searched job categories for Third Party Risk Manager jobs in Michigan are:
What cities in Michigan are hiring for Third Party Risk Manager jobs? Cities in Michigan with the most Third Party Risk Manager job openings:
Infographic showing various Third Party Risk Manager job openings in Michigan as of July 2026, with employment types broken down into 84% Full Time, 13% Part Time, 1% Temporary, and 2% Contract. Highlights an 86% Physical, 1% Hybrid, and 13% Remote job distribution, with an average salary of $97,232 per year, or $46.7 per hour.
Senior IT Security Risk Analyst

Senior IT Security Risk Analyst

Amerisure Mutual Insurance Company

Farmington Hills, MI โ€ข Hybrid

Full-time

Medical, Retirement, PTO

Re-posted 3 days ago


Job description

Amerisure creates exceptional value for its partners, policyholders, and employees. As a property and casualty insurance company, Amerisure's promise to our partner agencies and policyholders begins with a comprehensive line of insurance products designed to protect businesses, as well as the health and safety of every employee. With an A.M. Best "A" (Excellent) rating, Amerisure serves mid-sized commercial enterprises focused in construction, manufacturing and healthcare. Ranked as one of the top 100 Property & Casualty companies in the United States, we proudly manage nearly $1 Billion of Direct Written Premium and maintain $1.21 billion in surplus.

Amerisure is currently recruiting for a Senior IT Security Risk Analyst that can do a 3-day hybrid approach onsite in our Farmington Hills office. The ideal candidate will also possess the following skill set.

Summary Statement

The Senior IT Security Risk Analyst is responsible for leading the organization's cybersecurity governance, risk, and compliance initiatives. This role drives the design, implementation, and continuous improvement of the IT risk program, ensuring alignment with regulatory requirements (e.g., New York State Department of Financial Services, NIST CSF) and business objectives.

Essential Tasks/Major Duties

  • Perform security risk assessments of third-party vendors including AI and mobile application reviews.
  • Lead the review, update, and communication of cybersecurity policies, standards, and procedures to ensure alignment with global frameworks (e.g., NIST CSF, NYDFS, NIS2, PCI DSS).
  • Lead and maintain the IT Risk Register including metrics which provides leadership an overall view of IT risk.
  • Perform risk assessments of IT risks.
  • Map regulations to policies and controls.
  • Create risk and compliance metrics for management and compliance purposes.
  • Perform control testing and validation to ensure proper control effectiveness.
  • Support IT audits and controls around Model Audit Rule (MAR).
  • Monitor threat intelligence to determine potential impact to environment and remediation urgency.
  • Support vulnerability management program, daily security operations and identity tasks as needed.
  • Be a key advisor to leadership, translating cybersecurity risk into business impact and enabling informed decision-making.

Knowledge, Skills & Abilities

  • Bachelor's degree or equivalent combination of education and experience.
  • 5 years cybersecurity experience.
  • Advanced Cyber Risk Management domain specific professional certification required: Certified Information Systems Security Professional (CISSP); Certified Information Security Manager (CISM); Certified in Risk and Information Systems Control (CRISC); Certified Cloud Security Professional (CCSP); AWS Certified Security.
  • 2 years experience performing IT security control testing.
  • Experience reviewing SOC 2 Type 1 and Type 2 reports to articulate potential security risk.
  • Expertise in conducting third-party cyber risk assessments.
  • Proficient in NIST security domain frameworks and architectures.
  • Experience in Logicgate or another GRC tool.
  • Experience using AI driven tools to enhance automation and operational efficiency.
  • Ability to quickly diagnose security control problems and propose/implement solutions.
  • Clear and concise articulation of risk to both technical peers and non-technical stakeholders.
  • Partner with IT teams, developers, and business leaders to support security initiatives, and mentor and develop members of the security team.
  • Analyze data and security trends to anticipate and assess potential threats.
  • Stay current with regulations, evolving threats, technologies, and security protocols.

#LI-BR1

Just as we are committed to creating exceptional value for our Partners For Success agencies and policyholders, Amerisure also remains committed to being an employer of choice. We reinforce this commitment by adhering to an Employee Value Proposition that, in part, is provided through a competitive total rewards package. This package includes competitive base pay, performance-based incentive pay, comprehensive health and welfare benefits, a 401(k) savings plan with profit sharing, and generous paid time off programs. We also offer flexible work arrangements to promote work-life balance. Recognized as one of the Best and Brightest Companies to Work For in the Nation and one of Business Insurance magazine's Best Places to Work in Insurance, we provide a workplace that fosters excellence and professional growth. If you are looking for a collaborative and rewarding career, Amerisure is looking for you.

Amerisure Mutual Insurance Company is an Equal Employment Opportunity employer. Amerisure provides equal employment opportunities to all employees and applicants without regard to race, color, religion, sex (to include sexual orientation and gender identity), national origin, age, disability, genetic information, veteran status, or any other protected characteristic under applicable federal, state, or local laws. Amerisure complies with all applicable laws governing nondiscrimination in employment in all locations where the company operates. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Amerisure prohibits harassment or discrimination of any kind and is committed to maintaining a workplace free from unlawful harassment or discrimination. Amerisure prohibits retaliation against anyone who reports discrimination, participates in an investigation, or opposes unlawful practices. Any improper interference with an employee's ability to perform their job duties may result in disciplinary action, up to and including termination.