ZipRecruiter

Log In

1

Vendor Risk Analyst Jobs in Washington (NOW HIRING)

System One Holdings, LLC

Risk Analyst

Merrifield, VA ยท On-site

Risk Analyst Location: Remote Pay Rate: Open to Both C2C and W2 options Position Type: Multiyear Contract Responsibilities: โ€ข Support annual information security program risk assessments. o ...

Aegis Corps, Inc.

Risk Analyst

Washington, DC ยท On-site

Estimate and validate loan-level logistic regression and survival analysis models to analyze the credit risk associated with multifamily residential, nursing home, and hospital loans. * Develop ...

Lockton, Inc.

Risk Analyst

Washington, DC ยท On-site

Position Overview The Risk Analyst is an entry level position designed for a recent college graduate or professional with 1 to 2 years of relevant insurance experience. The Analyst is the primary ...

Anaplan

Third Party Risk Analyst

Reston, VA

Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...

Anaplan

Third Party Risk Analyst

Reston, VA ยท On-site

Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...

BlueVoyant

Business Risk Analyst I

Washington, DC ยท On-site

Business Risk Analyst I Location: Hybrid in Washington DC Work Authorization: US Citizenship ... vendors, and digital footprints as a single attack surface. The company's award-winning Microsoft ...

DRC Systems

Third-Party Risk Analyst

Mclean, VA ยท On-site

$45 - $47/hr

Third-Party Risk Analyst Location: McLean, VA (5 days - Onsite) Job Overview The Third-Party Risk Analyst will support Enterprise Operationally Critical Third Parties (EOCTP) and Enterprise ...

IMR Soft Llc

Risk Manager

Mclean, VA ยท On-site

$55 - $60/hr

Perform risk tracking, trending, analysis, and executive reporting * Provide strategic thinking on next levels of maturity in Technology & Vendor Risk management * Act as a cross functional partner ...

next page

Showing results 1-20

All JobsVendor Risk Analyst JobsVendor Risk Analyst Jobs in Washington

Vendor Risk Analyst information

See Washington salary details

$17

$45

$74

How much do vendor risk analyst jobs pay per hour?

As of Jun 12, 2026, the average hourly pay for vendor risk analyst in Washington is $45.85, according to ZipRecruiter salary data. Most workers in this role earn between $33.75 and $55.82 per hour, depending on experience, location, and employer.

Is risk analyst a good career?

A risk analyst, including vendor risk analysts, plays a key role in identifying and mitigating potential threats to an organization, often requiring skills in data analysis, risk assessment, and familiarity with compliance standards. The profession offers steady demand, competitive salaries, and opportunities for advancement, especially with relevant certifications like CRCM or CRISC. It can be a rewarding career for those interested in security, compliance, and strategic decision-making.

How much do risk analysts make in the US?

Risk analysts in the US typically earn a median annual salary of around $70,000 to $90,000, depending on experience, industry, and location. Senior risk analysts or those with specialized skills and certifications can earn higher salaries, often exceeding $100,000 annually.

What is a vendor risk analyst?

A vendor risk analyst is a professional responsible for assessing and managing risks associated with third-party vendors and suppliers. They evaluate vendor security, compliance, and operational risks, often using risk management tools and frameworks to ensure organizational safety and regulatory adherence.

How does a Vendor Risk Analyst typically collaborate with other departments within an organization?

Vendor Risk Analysts work closely with various departments such as procurement, legal, IT security, and compliance to assess and manage risks associated with third-party vendors. They facilitate communication between teams to ensure vendor contracts meet security and regulatory requirements. Regularly, they coordinate risk assessments, share findings, and help develop mitigation strategies, ensuring that vendor relationships support the organization's risk tolerance and business goals.

What are the key skills and qualifications needed to thrive as a Vendor Risk Analyst, and why are they important?

To thrive as a Vendor Risk Analyst, you need strong analytical skills, knowledge of risk management frameworks, and a relevant degree in business, finance, or a related field. Familiarity with third-party risk management platforms, regulatory compliance tools, and certifications like Certified Third Party Risk Professional (CTPRP) are often required. Excellent communication, attention to detail, and problem-solving abilities help you effectively assess vendor risks and collaborate with cross-functional teams. These competencies ensure your organization can identify, mitigate, and manage risks associated with external vendors, protecting both operational integrity and regulatory compliance.

What does a vendor analyst do?

A vendor risk analyst evaluates third-party vendors to ensure they meet security, compliance, and performance standards. They review contracts, conduct risk assessments, and monitor vendor activities using tools like risk management software to mitigate potential threats to the organization.
What are the most commonly searched types of Vendor Risk Analyst jobs in Washington? The most popular types of Vendor Risk Analyst jobs in Washington are:
What are popular job titles related to Vendor Risk Analyst jobs in Washington? For Vendor Risk Analyst jobs in Washington, the most frequently searched job titles are:
What job categories do people searching Vendor Risk Analyst jobs in Washington look for? The top searched job categories for Vendor Risk Analyst jobs in Washington are:
Vendor Risk Analyst jobs near you
Infographic showing various Vendor Risk Analyst job openings in Washington as of June 2026, with employment types broken down into 97% Full Time, 1% Part Time, and 2% Contract. Highlights an 83% Physical, 4% Hybrid, and 13% Remote job distribution, with an average salary of $95,375 per year, or $45.9 per hour.
Third Party Risk Management Analyst

Third Party Risk Management Analyst

Burke & Herbert Bank & Trust

Alexandria, VA โ€ข On-site

Full-time

Posted yesterday

Burke & Herbert Bank rating

5.6

Company rating: 5.6 out of 10

Based on 8 frontline employees who took The Breakroom Quiz

132nd of 141 rated banks

Job description

CLASSIFICATION: Non-exempt

REPORTS TO: Program Manager, Third Party Risk Management

JOB DESCRIPTION

Summary/Objective


Under the direction of the Program Manager, Third Party Risk Management, the Thirdโ€‘Party Vendor Risk Analyst supports the execution of the Bankโ€™s Thirdโ€‘Party Risk Management (TPRM) Program by performing dayโ€‘toโ€‘day operational, analytical, and facilitation activities. In partnership with the Program Manager, the Analyst helps strengthen and sustain effective vendor review cadence by coordinating stakeholder inputs, producing complete and traceable documentation, and preparing examโ€‘ready artifacts. This role ensures vendor risk activitiesโ€”including due diligence, ongoing monitoring, documentation, and issue trackingโ€”are executed in a timely, consistent, and examinationโ€‘defensible manner.


Essential Functions
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.


  • Execute dayโ€‘toโ€‘day thirdโ€‘party risk management activities for new and existing vendors in accordance with the Bankโ€™s TPRM Program, with heightened focus on critical and GLBAโ€‘High risk relationships. Support initial due diligence and ongoing risk assessments by collecting, validating, and documenting required artifacts and supporting materials for higherโ€‘risk vendors to facilitate effective review, challenge, and approval by the Program Manager.


  • Maintain and manage the rolling vendor review schedule established by the Program Manager, ensuring critical and highโ€‘risk thirdโ€‘party relationships are prioritized and reviewed in accordance with established cadence and monitoring requirements. Coordinate with internal stakeholders, including Information Security, IT, Compliance, Finance, and Accounting, to obtain required risk assessment inputs and documentation necessary to support vendor reviews, providing enhanced facilitation for critical and GLBAโ€‘High risk vendors.


  • Track vendors review progress, outstanding action items, and remediation activities, maintaining visibility into reviews, documentation gaps, and issue resolution. Proactively escalate aging, overdue, or atโ€‘risk items to the Program Manager to support timely awareness, decisionโ€‘making, and risk mitigation.


  • Prepare, maintain, and organize comprehensive vendor review documentation, including executive summaries, evidence inventories, and issue tracking materials, with enhanced rigor applied to files associated with critical and GLBAโ€‘High risk vendors. Ensure that vendor risk conclusions and assigned risk ratings are clearly, consistently, and defensibly supported by documented evidence prior to Program Manager review and signโ€‘off.


  • Assist in documenting risk acceptance decisions and remediation status under the direction of the Program Manager, ensuring alignment with TPRM program standards, internal governance expectations, and applicable regulatory requirements.


  • Identify procedural gaps, workflow inefficiencies, and documentation issues encountered during thirdโ€‘party risk management execution, particularly those impacting oversight of critical and GLBAโ€‘High risk vendors. Escalate observations and improvement opportunities to the Program Manager for programโ€‘level evaluation and continuous improvement.


  • Support ad hoc projects, process enhancements, and targeted initiatives led by the Program Manager to strengthen thirdโ€‘party risk governance, operational effectiveness, and overall program maturity.


Other Duties

  • Contract and Procurement Support

Support the Program Manager by tracking vendorโ€‘related review milestones (including onboarding, renewals, and amendments). Ensure required vendor review documentation is complete, accurate, and available to support informed contractual decisions prior to execution.


  • Governance, Metrics, and Reporting Support

Compile and maintain program metrics, status reports, and supporting materials used to measure and monitor Thirdโ€‘Party Risk Management (TPRM) program performance. Assist, as directed by the Program Manager, in preparing materials for internal governance forums, audits, and regulatory examinations.


  • Audit and Examination Readiness

Support internal and external audits and regulatory examinations by organizing vendor files, maintaining evidence mappings, and assembling response documentation under Program Manager guidance. Maintain vendor records in an examโ€‘ready state to support Program Manager interactions with auditors, regulators, and risk committees.

Skills/Abilities

  • Working knowledge of third-party risk management practices and regulatory expectations within a regulated financial services environment.
  • Strong analytical skills with the ability to assess risk data, identify trends, and support informed decision-making.
  • Excellent organizational and documentation skills with high attention to detail.
  • Ability to collaborate effectively with crossโ€‘functional stakeholders while operating under Program Manager direction.
  • Strong written and verbal communication skills to support clear documentation, issue analysis, and timely escalation.
  • Proficiency with Microsoft Office (Excel, Word, PowerPoint) and risk management or workflow tracking tools.

Supervisory Responsibility

This position does not have supervisory responsibilities.


Work Environment

This job operates in an office setting, the opportunity to telework is not available. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. Office environment with job duties conducted via telephone, face to face meetings, and on the computer.


Physical Demands

This position requires manual dexterity, the ability to lift files and open cabinets. This position requires bending, stooping, or standing, as necessary.


Travel

Limited local travel may be required for this position.

Education and Experience

Education

  • Requires a bachelorโ€™s degree in business, Finance, Risk Management, Information Systems, Compliance, or a related field or equivalent professional experience supporting risk management functions in a regulated environment.

Experience

  • Requires a minimum of 1 year of experience supporting thirdโ€‘party vendor management, operational risk, compliance, information security, or a related risk discipline within a regulated industry.
  • Requires handsโ€‘on experience supporting vendor due diligence, ongoing monitoring, documentation, and issue tracking activities.
  • Experience coordinating with crossโ€‘functional stakeholders (e.g., Information Security, IT, Compliance, Finance) to collect and organize risk assessment inputs.
  • Experience producing or maintaining clear, wellโ€‘organized, and evidenceโ€‘based documentation to support management review, audit, or regulatory examination.



Equal Employment Opportunity/M/F/disability/protected veteran status.



Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.