The Risk Mitigation Framework provides the process, tools and approach that are needed to support ... Liaise with third-party vendors as required, maintaining strong professional relationships * Build ...
The Risk Mitigation Framework provides the process, tools and approach that are needed to support ... Liaise with third-party vendors as required, maintaining strong professional relationships * Build ...
Conduct quarterly account reviews with internal stakeholders, including cyber strategy, technology risk, IT audit, governance risk and compliance, privacy, third-party risk, cloud security, incident ...
Conduct quarterly account reviews with internal stakeholders, including cyber strategy, technology risk, IT audit, governance risk and compliance, privacy, third-party risk, cloud security, incident ...
Cybersecurity Manager
The Woodlands, TX · On-site
$160K/yr
This role oversees GRC, HIPAA compliance, third-party risk management, and security operations while partnering closely with IT, OT, and business stakeholders. Key Responsibilities * Lead ...
Cybersecurity Manager
The Woodlands, TX · On-site
$160K/yr
This role oversees GRC, HIPAA compliance, third-party risk management, and security operations while partnering closely with IT, OT, and business stakeholders. Key Responsibilities * Lead ...
Ensure appropriate documentation is in place for oversight, governance, risk management, issue ... Proven experience in third-party management, vendor management, procurement or contracting.
Ensure appropriate documentation is in place for oversight, governance, risk management, issue ... Proven experience in third-party management, vendor management, procurement or contracting.
Compliance Specialist
Houston, TX · On-site
Lead risk?based third?party due diligence reviews for customers, vendors, brokers, agents, contractors, and other counterparties across Energy Transfer's business lines. * Conduct enhanced due ...
Compliance Specialist
Houston, TX · On-site
Lead risk?based third?party due diligence reviews for customers, vendors, brokers, agents, contractors, and other counterparties across Energy Transfer's business lines. * Conduct enhanced due ...
Compliance Specialist
Houston, TX · On-site
Lead risk-based third-party due diligence reviews for customers, vendors, brokers, agents, contractors, and other counterparties across Energy Transfer's business lines. * Conduct enhanced due ...
Compliance Specialist
Houston, TX · On-site
Lead risk-based third-party due diligence reviews for customers, vendors, brokers, agents, contractors, and other counterparties across Energy Transfer's business lines. * Conduct enhanced due ...
Regional Corporate Third Party Oversight - Vice President Required Language English and Spanish
Plano, TX · On-site
As a Regional Corporate Third Party Oversight professional within the LATAM & Canada Governance ... Collaborate with risk and control functions to ensure program effectiveness. * Monitor the program ...
Regional Corporate Third Party Oversight - Vice President Required Language English and Spanish
Plano, TX · On-site
As a Regional Corporate Third Party Oversight professional within the LATAM & Canada Governance ... Collaborate with risk and control functions to ensure program effectiveness. * Monitor the program ...
They also oversee and manage all 3rd-party risk management and act as a gatekeeper for enabling integrations with 3rd-party partners, suppliers, and vendors, overseeing TPRM assessments and ...
They also oversee and manage all 3rd-party risk management and act as a gatekeeper for enabling integrations with 3rd-party partners, suppliers, and vendors, overseeing TPRM assessments and ...
Regional Corporate Third Party Oversight - Vice President Required Language English and Spanish
Plano, TX · On-site
As a Regional Corporate Third Party Oversight professional within the LATAM & Canada Governance ... Collaborate with risk and control functions to ensure program effectiveness. * Monitor the program ...
Regional Corporate Third Party Oversight - Vice President Required Language English and Spanish
Plano, TX · On-site
As a Regional Corporate Third Party Oversight professional within the LATAM & Canada Governance ... Collaborate with risk and control functions to ensure program effectiveness. * Monitor the program ...
Regional Corporate Third Party Oversight - Vice President Required Language English and Spanish
Plano, TX · On-site
As a Regional Corporate Third Party Oversight professional within the LATAM & Canada Governance ... Collaborate with risk and control functions to ensure program effectiveness. * Monitor the program ...
Regional Corporate Third Party Oversight - Vice President Required Language English and Spanish
Plano, TX · On-site
As a Regional Corporate Third Party Oversight professional within the LATAM & Canada Governance ... Collaborate with risk and control functions to ensure program effectiveness. * Monitor the program ...
Business Analyst III
Plano, TX · On-site
$50 - $55/hr
Track and coordinate remediation actions from Third-Party assessments Required Skills: * Experience in vendor management, procurement coordination, governance, or operational risk, preferably within ...
Business Analyst III
Plano, TX · On-site
$50 - $55/hr
Track and coordinate remediation actions from Third-Party assessments Required Skills: * Experience in vendor management, procurement coordination, governance, or operational risk, preferably within ...
We deliver the market-leading enterprise SaaS solution for managing third-party risk and compliance, helping Global 2000 companies protect their brand, build customer trust, and drive principled ...
We deliver the market-leading enterprise SaaS solution for managing third-party risk and compliance, helping Global 2000 companies protect their brand, build customer trust, and drive principled ...
Third-Party Risk Management (TPRM) * Standard Contractual Clauses (SCC) * Transfer Impact Assessments (TIA) Key Responsibilities * Gather, analyze, and document business and functional requirements ...
Third-Party Risk Management (TPRM) * Standard Contractual Clauses (SCC) * Transfer Impact Assessments (TIA) Key Responsibilities * Gather, analyze, and document business and functional requirements ...
Trusted by millions of third-party users in 195+ countries, Aravo provides guidance for the most complex third-party networks in the world, helping them mitigate risk, build business resilience, and ...
Quick apply
Apply Early
Trusted by millions of third-party users in 195+ countries, Aravo provides guidance for the most complex third-party networks in the world, helping them mitigate risk, build business resilience, and ...
Apply Early
Aravo Solutions, Inc., provides leading third-party risk management (TPRM), ESG, and vendor lifecycle management solutions powered by intelligent automation software and designed to meet the needs of ...
Aravo Solutions, Inc., provides leading third-party risk management (TPRM), ESG, and vendor lifecycle management solutions powered by intelligent automation software and designed to meet the needs of ...
Ethics & Compliance Program Manager
Austin, TX · On-site
$79K/yr
AMD is seeking an Ethics & Compliance Program Manager to play a key role in building, scaling, and operationalizing our global anti-corruption, competition, third-party risk management, and ...
Ethics & Compliance Program Manager
Austin, TX · On-site
$79K/yr
AMD is seeking an Ethics & Compliance Program Manager to play a key role in building, scaling, and operationalizing our global anti-corruption, competition, third-party risk management, and ...
The Head of Third-Party Claims establishes the strategic direction for the third-party claims ... Reputational Risk * Tenant Liability / Discrimination * Auto Liability Workers' Compensation
New
The Head of Third-Party Claims establishes the strategic direction for the third-party claims ... Reputational Risk * Tenant Liability / Discrimination * Auto Liability Workers' Compensation
New
Sr GRC Analyst - w2
Texas City, TX · On-site
Ability to configure and/or maintain 3rd party vendor risk management tools (such as OneTrust vendor assessment or a similar tool ) for third party risk assessments is a plus One or more ...
Quick apply
Sr GRC Analyst - w2
Texas City, TX · On-site
Ability to configure and/or maintain 3rd party vendor risk management tools (such as OneTrust vendor assessment or a similar tool ) for third party risk assessments is a plus One or more ...
Corporate Compliance Manager
Houston, TX · On-site
$103K - $138K/yr
Third-Party Risk & Due Diligence - Support third-party and vendor data cleansing efforts and compliance reviews. Partner with cross-functional stakeholders to strengthen third-party risk oversight ...
Corporate Compliance Manager
Houston, TX · On-site
$103K - $138K/yr
Third-Party Risk & Due Diligence - Support third-party and vendor data cleansing efforts and compliance reviews. Partner with cross-functional stakeholders to strengthen third-party risk oversight ...
Vendor Analyst, AI & Technology Risk
Dallas, TX · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Dallas, TX · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Third Party Risk information
See Texas salary details
$17.97 is the 25th percentile. Wages below this are outliers.
$13.44 - $18.49
28% of jobs
The median wage is $21.50 / hr.
$18.49 - $23.54
37% of jobs
$23.54 - $28.59
6% of jobs
$31.74 is the 75th percentile. Wages above this are outliers.
$28.59 - $33.63
6% of jobs
$33.63 - $38.68
12% of jobs
$38.68 - $43.73
0% of jobs
$43.73 - $48.78
0% of jobs
$48.78 - $53.83
8% of jobs
$53.83 - $58.88
0% of jobs
$58.88 - $63.93
0% of jobs
$63.93 - $68.98
2% of jobs
$13
$28
$68
How much do third party risk jobs pay per hour?
What are some common challenges faced in a Third Party Risk role and how can they be managed?
What is the difference between Third Party Risk vs Vendor Risk Management?
| Aspect | Third Party Risk | Vendor Risk Management |
|---|---|---|
| Focus | Assessing risks from all external entities, including vendors, partners, and contractors | Evaluating risks specifically associated with third-party vendors |
| Credentials | Risk management certifications, compliance knowledge | Vendor management certifications, procurement experience |
| Work Environment | Corporate risk teams, compliance departments | Procurement, vendor management teams |
| Industry Usage | Financial, healthcare, technology sectors | Primarily in supply chain and procurement functions |
Third Party Risk encompasses a broader scope, including all external entities, while Vendor Risk Management specifically focuses on vendors. Both roles require risk assessment skills and industry knowledge, but Third Party Risk roles often involve broader compliance and strategic oversight.
What are the key skills and qualifications needed to thrive as a Third Party Risk professional, and why are they important?
What is Third Party Risk?

Full-time
Retirement, PTO
Posted 13 days ago
Job description
Hiring Manager:
Associate DirectorDepartment:
Operational Risk ManagementDepartment Overview
The Operational Risk Management ("ORM") Department is responsible for the Risk Mitigation Framework. The Risk Mitigation Framework provides the process, tools and approach that are needed to support and enhance the control environment required to minimize operational risks related to Golub Capital's non-investment functions. The Risk Mitigation Framework was created to minimize material losses, provide process and internal control oversight, and anticipate potential material loss events. The Risk Mitigation Framework is comprised of a set of consistent and repeatable elements that allow Golub Capital to identify, assess, mitigate, and report on the operational risk profile of the firm. The Risk Mitigation programs include Risk and Control Self-Assessment ("RCSA"), Issue Management ("IM"), Vendor Risk Management ("VRM"), Business Continuity Management ("BCM"), and Internal Control Testing ("ICT").
Position Responsibilities
The essential functions of the Assistant Vice President, Operational Risk Management role includes participation in the assessment of risks the Firm faces and supporting a comprehensive plan to identify, measure, monitor and report risk components. We are looking for an individual to support the continued development of this function and to help us take the program to the next level. This individual will serve as a subject matter expert for the VRM and BCM programs, expand the program's capabilities, increase participation in the programs and drive process improvements.
This role will require strong project management skills to develop detailed plans, track progress, handle obstacles and ultimately deliver new initiatives on budget and on schedule. In addition to managing the project tasks, the candidate will gain a thorough understanding of the deliverables. This is an internal client-facing role requiring communication with users at all levels of the organization. As a result, exceptional verbal and written communication skills are a must.
Responsibilities include but are not limited to:
- Oversee the development and implementation of initiatives and tasks associated with the VRM and BCM programs
- Guide the implementation of the VRM framework, providing strategic direction to the First Line of Defense
- Manage the central vendor repository for the Firm and oversee the automation of vendor on-boarding and off-boarding processes
- Facilitate oversight of vendor risk, ensuring vendor relationship owners and management have visibility of existing and emerging threats and identifying mitigation strategies
- Lead the execution of VRM training to ensure effective application and awareness of the program throughout the Firm
- Stay informed about the latest developments and regulations in the industry, ensuring compliance and proactive adaptation
- Liaise with third-party vendors as required, maintaining strong professional relationships
- Build and maintain VRM and BCM-related reporting to meet the needs of senior management and oversight committees
- Proactively identify, track and analyze operational risks within Golub Capital, implementing critical control improvements
- Represent team interests at internal meetings, committees and working groups
- Cultivate and build relationships with key Operational Risk Management stakeholders, promoting a robust risk culture
Candidate Requirements
Qualifications & Experience:
- Bachelor's Degree in relevant field and 5+ years of experience in financial services risk management, third-party / vendor risk management, Management Information System (MIS) or related role
- Experience or detailed knowledge of third-party risk management
- Certifications (Preferred): Operational Risk Management Certificate, Certified Third Party Risk Management Professional (C3PRMP), Certified Internal Auditor (CIA), Financial Risk Manager (FRM) Designation; Project Management (PMP)
- Appropriate knowledge of financial services industry practices, internal controls and regulatory requirements
- Understanding and experience with operational loss causes, measures and mitigation strategies
- Experience analyzing excel reports with ability to leverage formulas preferred
- Experience working with a Governance, Risk and Compliance (GRC) tool (e.g., MetricStream) or other risk management information systems preferred
- Assertive, self-motivated, team oriented, flexible and able to multi-task
- Excellent analytical and problem-solving skills
- Exceptional written and verbal communication skills; capable of communicating effectively across all levels of the organization
- Attention to detail and strong organizational skills, including the ability to handle several projects
- Highly motivated and resourceful in a fast-paced, growth environment; successful working both independently and as a team member
- Ability to probe sensitive issues while maintaining the highest level of integrity and objectivity
- Enthusiastic about working in office and creating a Gold Standard hybrid work culture
Critical Competencies for Success
Our Gold Standards Model defines key behaviors and competencies across 4 dimensions: Leadership, Achieving Results, Personal Effectiveness and Thinking Critically. These behaviors and competencies drive our ability to win together.
- Leadership: Role models in this area consistently focus on the right goals and priorities and continually develop themselves and others. Always team players, they influence and engage with others to contribute to a supportive and inclusive culture where all feel welcome.
- Achieving Results: Role models in this area are high achievers who develop careful plans and deliver consistently and effectively. They hold themselves and others accountable for delivering high quality results, and they remove barriers to ensure others can contribute and grow.
- Personal Effectiveness: Role models in this area build strong relationships, treat others with respect and communicate effectively. They are driven to exceed expectations and are adaptable to changing circumstances.
- Thinking Critically: Role models in this area understand our business, rely on analytical reasoning and seek diverse perspectives to solve problems. They are forward thinking, anticipating issues and addressing them in advance.
The department-specific competencies define the knowledge, skills and abilities that are needed to successfully perform the functional or technical work of this role.
- Change Management: Communicates the benefits and the impact of refinements to internal processes or technology.
- Innovative Mindset: Leverages an agile and creative mindset to drive innovative value creation, continuous process improvement and proactive learning through new technology, processes and people.
- Risk Management: Identifies, forecasts and articulates ways to pursue and manage informed risks in ambiguous, complex or uncertain situations based on sound value propositions and an analysis of potential rewards and costs.
- Technical Communication and Documentation: Documents and communicates technical processes and procedures in area of specialty to stakeholders. Adapts the level of detail and specificity based on the needs of the intended audience.
- Industry Knowledge: Demonstrates an understanding of risk management and the Firm's position in the industry, including its complex structure and competitive advantage in the marketplace. Monitors industry trends and changes and recognizes their relevancy and implications.
- Business Needs Assessment: Identifies business needs across departments within the Firm to understand the challenges, goals and problems that the business needs to solve and identifies appropriate technical solutions.
- Project / Program Management: Manages projects and / or programs through planning, identifying resources, monitoring and communicating project activities and assessing impacts of project decisions.
Compensation and Benefits
For Illinois Only: It is expected that the base salary range for this position will be $115,000 to $135,000. Actual salaries may vary based on factors such as skills, experiences and qualifications for the role. The total compensation package for this position may also include other elements and discretionary awards in addition to a full range of medical, financial and / or other benefits (including 401(k) eligibility and various paid time off benefits such as vacation, sick time and parental leave) dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, the employee will be in an 'at-will position' and the Firm reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time including for reasons related to individual performance, Firm or individual department / team performance and market factors.Golub Capital is an Equal Opportunity Employer.
Due to the highly regulated nature of Golub Capital's business and because of the sensitivity of the information that all personnel have access to, Golub Capital performs extensive and thorough pre-hire screens to ensure that its personnel act with expected levels of integrity, professionalism and personal responsibility.
Please review Golub Capital's US Job Applicant privacy notice and, for California residents, the California Applicant privacy notice for information on how your personal data is collected, processed and stored.