... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Supporting functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service ...
... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Supporting functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service ...
Consultant - ServiceNow
Tempe, AZ · Remote
... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Contributing to functional design and configuration of ServiceNow solutions, including forms, workflows, notifications ...
Consultant - ServiceNow
Tempe, AZ · Remote
... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Contributing to functional design and configuration of ServiceNow solutions, including forms, workflows, notifications ...
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
Cybersecurity Analyst
Tempe, AZ · On-site
Third-Party Risk & Assessment Processing: • Coordinate intake, review, and tracking of third-party cybersecurity assessments in alignment with established risk management practices. • Maintain ...
Cybersecurity Analyst
Tempe, AZ · On-site
Third-Party Risk & Assessment Processing: • Coordinate intake, review, and tracking of third-party cybersecurity assessments in alignment with established risk management practices. • Maintain ...
Third-Party Risk & Assessment Processing: Coordinate intake, review, and tracking of third-party cybersecurity assessments in alignment with established risk management practices. Maintain third ...
Third-Party Risk & Assessment Processing: Coordinate intake, review, and tracking of third-party cybersecurity assessments in alignment with established risk management practices. Maintain third ...
Sr. Manager, GRC
Chandler, AZ · On-site
$109K - $147K/yr
Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...
Sr. Manager, GRC
Chandler, AZ · On-site
$109K - $147K/yr
Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...
Sr. Manager, GRC
Chandler, AZ · On-site
$109K - $147K/yr
Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...
Sr. Manager, GRC
Chandler, AZ · On-site
$109K - $147K/yr
Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...
Sr. Manager, GRC
$109K - $147K/yr
Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...
Sr. Manager, GRC
$109K - $147K/yr
Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...
Sr. Manager, GRC
Chandler, AZ · On-site
$113K - $153K/yr
Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...
Sr. Manager, GRC
Chandler, AZ · On-site
$113K - $153K/yr
Third-Party Risk Management (TPRM) * Oversee the cybersecurity components of the Third-Party Risk Management program for business suppliers, including risk assessments and due diligence. * Ensure ...
Information Security Manager
Phoenix, AZ · On-site
$120K/yr
Lead third-party risk management activities, including security assessments, contract reviews, and lifecycle oversight. * Support Data Loss Prevention (DLP), vulnerability management, and incident ...
Information Security Manager
Phoenix, AZ · On-site
$120K/yr
Lead third-party risk management activities, including security assessments, contract reviews, and lifecycle oversight. * Support Data Loss Prevention (DLP), vulnerability management, and incident ...
Information Security Manager
Phoenix, AZ · On-site +1
$120K/yr
Lead third-party risk management activities, including security assessments, contract reviews, and lifecycle oversight. * Support Data Loss Prevention (DLP), vulnerability management, and incident ...
Information Security Manager
Phoenix, AZ · On-site +1
$120K/yr
Lead third-party risk management activities, including security assessments, contract reviews, and lifecycle oversight. * Support Data Loss Prevention (DLP), vulnerability management, and incident ...
... third-party risk and vendor security. • Serve as the primary advisor to the Board and executive leadership on cybersecurity risk, while managing the cybersecurity budget and investment strategy to ...
... third-party risk and vendor security. • Serve as the primary advisor to the Board and executive leadership on cybersecurity risk, while managing the cybersecurity budget and investment strategy to ...
We are looking for a candidate with experience or interest in vendor management, sourcing, third-party risk, or technology operations who can help drive effective vendor engagement strategies ...
We are looking for a candidate with experience or interest in vendor management, sourcing, third-party risk, or technology operations who can help drive effective vendor engagement strategies ...
We are looking for a candidate with experience or interest in vendor management, sourcing, third-party risk, or technology operations who can help drive effective vendor engagement strategies ...
We are looking for a candidate with experience or interest in vendor management, sourcing, third-party risk, or technology operations who can help drive effective vendor engagement strategies ...
Serve as a central connector across the Second Line of Defense teams and other stakeholders (SOX, Third Party Risk, First Line of Defense Testing, IT First Line Risk, and Internal Audit) to align ...
Serve as a central connector across the Second Line of Defense teams and other stakeholders (SOX, Third Party Risk, First Line of Defense Testing, IT First Line Risk, and Internal Audit) to align ...
Manager - ServiceNow
Gilbert, AZ · On-site +1
... Third-Party Risk Management workstreams in partnership with architects and product owners * Managing stakeholder engagement and executive communications; facilitating decisions, change control, and ...
Manager - ServiceNow
Gilbert, AZ · On-site +1
... Third-Party Risk Management workstreams in partnership with architects and product owners * Managing stakeholder engagement and executive communications; facilitating decisions, change control, and ...
Serve as a central connector across the Second Line of Defense teams and other stakeholders (SOX, Third Party Risk, First Line of Defense Testing, IT First Line Risk, and Internal Audit) to align ...
Serve as a central connector across the Second Line of Defense teams and other stakeholders (SOX, Third Party Risk, First Line of Defense Testing, IT First Line Risk, and Internal Audit) to align ...
Manager - ServiceNow
Tempe, AZ · On-site +1
... Third-Party Risk Management workstreams in partnership with architects and product owners * Managing stakeholder engagement and executive communications; facilitating decisions, change control, and ...
Manager - ServiceNow
Tempe, AZ · On-site +1
... Third-Party Risk Management workstreams in partnership with architects and product owners * Managing stakeholder engagement and executive communications; facilitating decisions, change control, and ...
Head of Procurement
Scottsdale, AZ · Hybrid
$120K - $150K/yr
Partner with Legal, Security, Finance, and business stakeholders to manage third-party risk, data security requirements, compliance considerations, commercial terms, and contract obligations. * Lead ...
Head of Procurement
Scottsdale, AZ · Hybrid
$120K - $150K/yr
Partner with Legal, Security, Finance, and business stakeholders to manage third-party risk, data security requirements, compliance considerations, commercial terms, and contract obligations. * Lead ...
Head of Procurement
Scottsdale, AZ · On-site
$120K - $150K/yr
Partner with Legal, Security, Finance, and business stakeholders to manage third-party risk, data security requirements, compliance considerations, commercial terms, and contract obligations. * Lead ...
Head of Procurement
Scottsdale, AZ · On-site
$120K - $150K/yr
Partner with Legal, Security, Finance, and business stakeholders to manage third-party risk, data security requirements, compliance considerations, commercial terms, and contract obligations. * Lead ...
Third Party Risk information
See Arizona salary details
$17.98 is the 25th percentile. Wages below this are outliers.
$13.44 - $18.49
28% of jobs
The median wage is $21.51 / hr.
$18.49 - $23.54
37% of jobs
$23.54 - $28.59
6% of jobs
$31.75 is the 75th percentile. Wages above this are outliers.
$28.59 - $33.64
6% of jobs
$33.64 - $38.69
12% of jobs
$38.69 - $43.74
0% of jobs
$43.74 - $48.79
0% of jobs
$48.79 - $53.84
8% of jobs
$53.84 - $58.89
0% of jobs
$58.89 - $63.95
0% of jobs
$63.95 - $69
2% of jobs
$13
$28
$68
How much do third party risk jobs pay per hour?
What are some common challenges faced in a Third Party Risk role and how can they be managed?
What is the difference between Third Party Risk vs Vendor Risk Management?
| Aspect | Third Party Risk | Vendor Risk Management |
|---|---|---|
| Focus | Assessing risks from all external entities, including vendors, partners, and contractors | Evaluating risks specifically associated with third-party vendors |
| Credentials | Risk management certifications, compliance knowledge | Vendor management certifications, procurement experience |
| Work Environment | Corporate risk teams, compliance departments | Procurement, vendor management teams |
| Industry Usage | Financial, healthcare, technology sectors | Primarily in supply chain and procurement functions |
Third Party Risk encompasses a broader scope, including all external entities, while Vendor Risk Management specifically focuses on vendors. Both roles require risk assessment skills and industry knowledge, but Third Party Risk roles often involve broader compliance and strategic oversight.
What are the key skills and qualifications needed to thrive as a Third Party Risk professional, and why are they important?
What is Third Party Risk?

Deloitte rating
8.0
Based on 89 frontline employees who took The Breakroom Quiz
71st of 146 rated financial services
Job description
ServiceNow Senior Consultant
Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions that help clients navigate an evolving threat landscape. Through solutions and managed services that simplify complexity, we help clients operate with resilience, grow with confidence, and proactively manage cyber, risk, and technology programs.
Recruiting for this role ends on 12/31/2026.
Work you'll do
As a Senior Consultant - ServiceNow on the Cyber Strategy & Transformation team, you will be responsible for...
- Leading requirements workshops and stakeholder interviews to capture, validate, and document business requirements, user stories, and current-state and future-state process flows
- Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and automation across IT Operations Management, IT Asset Management, Integrated Risk Management, Security Operations, Third-Party Risk Management, and ServiceNow AI Control Tower use cases
- Supporting functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service level agreements, dashboards, reports, roles, and access controls
- Documenting data models, taxonomies, workflows, controls, and reporting requirements for cyber, risk, and artificial intelligence governance use cases
- Producing project artifacts, including requirements documentation, functional designs, test scenarios, training materials, release notes, and deployment support materials
- Collaborating with client stakeholders, functional teams, and technical teams to support demonstrations, user acceptance testing, defect triage, training, cutover activities, and solution adoption
A successful candidate would possess these skills:
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
Our Cyber Strategy & Transformation offering develops and transforms cyber programs in line with a client's strategic objectives, regulatory requirements, and risk appetite. It keeps the enterprise a step ahead of the evolving threat landscape and gives stakeholders confidence in the organization's cyber posture. Includes design of the cyber organization, governance, and risk assessments.
Qualifications
Required:
- Bachelor's degree in Computer Science, Information Systems, Cyber Security, Engineering, Information Technology, Finance, or Business
- 2+ years of experience supporting ServiceNow implementation projects in a client-facing consulting role
- 2+ years of experience gathering business requirements, facilitating workshops, documenting process flows or user stories, and producing functional documentation
- 2+ years of experience designing, configuring, or implementing ServiceNow solutions in one or more of the following modules: IT Operations Management, IT Asset Management, Integrated Risk Management, Security Operations, or Third-Party Risk Management
- 2+ years of experience configuring ServiceNow forms, workflows, notifications, service level agreements, reports, dashboards, roles, or access controls
- Ability to travel 50%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited immigration sponsorship may be available.
Preferred:
- ServiceNow Certified System Administrator (CSA)
- ServiceNow Certified Application Developer (CAD)
- ArchX (Architecture Excellence)
- One or more ServiceNow Certified Implementation Specialist (CIS) certifications, including CIS-Risk and Compliance (CIS-RC), CIS-Security Incident Response (CIS-SIR), CIS-Vulnerability Response (CIS-VR), CIS-Third-Party Risk Management (CIS-TPRM), CIS-Hardware Asset Management (CIS-HAM), CIS-Software Asset Management (CIS-SAM), CIS-Service Mapping (CIS-SM), CIS-Discovery (CIS-DISCO), CIS-Event Management (CIS-EM), CIS-Data Foundations (CIS-DF), or CIS-Strategic Portfolio Management (CIS-SPM)
- Experience supporting implementation and configuration of ServiceNow AI Control Tower capabilities, including AI inventory management, intake and approval workflows, lifecycle oversight, issue management, dashboards, and reporting
- Experience supporting identity governance for human and non-human actors using Veza, or cyber asset discovery and configuration management database (CMDB) integration using Armis
For individuals assigned and/or hired to work in a Remote role, Deloitte is required by law to include a reasonable estimate of the compensation range for this role. This compensation range is specific to a Remote role and takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Qualifications:ServiceNow Senior Consultant
Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions that help clients navigate an evolving threat landscape. Through solutions and managed services that simplify complexity, we help clients operate with resilience, grow with confidence, and proactively manage cyber, risk, and technology programs.
Recruiting for this role ends on 12/31/2026.
Work you'll do
As a Senior Consultant - ServiceNow on the Cyber Strategy & Transformation team, you will be responsible for...
- Leading requirements workshops and stakeholder interviews to capture, validate, and document business requirements, user stories, and current-state and future-state process flows
- Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and automation across IT Operations Management, IT Asset Management, Integrated Risk Management, Security Operations, Third-Party Risk Management, and ServiceNow AI Control Tower use cases
- Supporting functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service level agreements, dashboards, reports, roles, and access controls
- Documenting data models, taxonomies, workflows, controls, and reporting requirements for cyber, risk, and artificial intelligence governance use cases
- Producing project artifacts, including requirements documentation, functional designs, test scenarios, training materials, release notes, and deployment support materials
- Collaborating with client stakeholders, functional teams, and technical teams to support demonstrations, user acceptance testing, defect triage, training, cutover activities, and solution adoption
A successful candidate would possess these skills:
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
Our Cyber Strategy & Transformation offering develops and transforms cyber programs in line with a client's strategic objectives, regulatory requirements, and risk appetite. It keeps the enterprise a step ahead of the evolving threat landscape and gives stakeholders confidence in the organization's cyber posture. Includes design of the cyber organization, governance, and risk assessments.
Qualifications
Required:
- Bachelor's degree in Computer Science, Information Systems, Cyber Security, Engineering, Information Technology, Finance, or Business
- 2+ years of experience supporting ServiceNow implementation projects in a client-facing consulting role
- 2+ years of experience gathering business requirements, facilitating workshops, documenting process flows or user stories, and producing functional documentation
- 2+ years of experience designing, configuring, or implementing ServiceNow solutions in one or more of the following modules: IT Operations Management, IT Asset Management, Integrated Risk Management, Security Operations, or Third-Party Risk Management
- 2+ years of experience configuring ServiceNow forms, workflows, notifications, service level agreements, reports, dashboards, roles, or access controls
- Ability to travel 50%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited immigration sponsorship may be available.
Preferred:
- ServiceNow Certified System Administrator (CSA)
- ServiceNow Certified Application Developer (CAD)
- ArchX (Architecture Excellence)
- One or more ServiceNow Certified Implementation Specialist (CIS) certifications, including CIS-Risk and Compliance (CIS-RC), CIS-Security Incident Response (CIS-SIR), CIS-Vulnerability Response (CIS-VR), CIS-Third-Party Risk Management (CIS-TPRM), CIS-Hardware Asset Management (CIS-HAM), CIS-Software Asset Management (CIS-SAM), CIS-Service Mapping (CIS-SM), CIS-Discovery (CIS-DISCO), CIS-Event Management (CIS-EM), CIS-Data Foundations (CIS-DF), or CIS-Strategic Portfolio Management (CIS-SPM)
- Experience supporting implementation and configuration of ServiceNow AI Control Tower capabilities, including AI inventory management, intake and approval workflows, lifecycle oversight, issue management, dashboards, and reporting
- Experience supporting identity governance for human and non-human actors using Veza, or cyber asset discovery and configuration management database (CMDB) integration using Armis
For individuals assigned and/or hired to work in a Remote role, Deloitte is required by law to include a reasonable estimate of the compensation range for this role. This compensation range is specific to a Remote role and takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Education:Bachelor's DegreeEmployment Type: