ZipRecruiter

Log In

1

Vendor Risk Analyst Jobs in Washington (NOW HIRING)

Pae

Foreign Investment Risk Analyst

Washington, DC

The Telecommunications Risk Analyst will coordinate with internal DoD stakeholders and DOJ/DHS counterparts to conduct timely technical reviews and develop risk-based analyses in support of DoD CIO's ...

Amentum

Foreign Investment Risk Analyst

Washington, DC ยท On-site

The Telecommunications Risk Analyst will coordinate with internal DoD stakeholders and DOJ/DHS counterparts to conduct timely technical reviews and develop risk-based analyses in support of DoD CIO's ...

Technomics

Cyber Risk Analyst SME

Arlington, VA ยท On-site +1

We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on-site and remote cyber risk assessments, developing mitigation strategies, and enabling proactive enterprise risk ...

next page

Showing results 1-20

All JobsVendor Risk Analyst JobsVendor Risk Analyst Jobs in Washington

Vendor Risk Analyst information

See Washington salary details

$17

$45

$74

How much do vendor risk analyst jobs pay per hour?

As of Jun 11, 2026, the average hourly pay for vendor risk analyst in Washington is $45.85, according to ZipRecruiter salary data. Most workers in this role earn between $33.75 and $55.82 per hour, depending on experience, location, and employer.

Is risk analyst a good career?

A risk analyst, including vendor risk analysts, plays a key role in identifying and mitigating potential threats to an organization, often requiring skills in data analysis, risk assessment, and familiarity with compliance standards. The profession offers steady demand, competitive salaries, and opportunities for advancement, especially with relevant certifications like CRCM or CRISC. It can be a rewarding career for those interested in security, compliance, and strategic decision-making.

How much do risk analysts make in the US?

Risk analysts in the US typically earn a median annual salary of around $70,000 to $90,000, depending on experience, industry, and location. Senior risk analysts or those with specialized skills and certifications can earn higher salaries, often exceeding $100,000 annually.

What is a vendor risk analyst?

A vendor risk analyst is a professional responsible for assessing and managing risks associated with third-party vendors and suppliers. They evaluate vendor security, compliance, and operational risks, often using risk management tools and frameworks to ensure organizational safety and regulatory adherence.

How does a Vendor Risk Analyst typically collaborate with other departments within an organization?

Vendor Risk Analysts work closely with various departments such as procurement, legal, IT security, and compliance to assess and manage risks associated with third-party vendors. They facilitate communication between teams to ensure vendor contracts meet security and regulatory requirements. Regularly, they coordinate risk assessments, share findings, and help develop mitigation strategies, ensuring that vendor relationships support the organization's risk tolerance and business goals.

What are the key skills and qualifications needed to thrive as a Vendor Risk Analyst, and why are they important?

To thrive as a Vendor Risk Analyst, you need strong analytical skills, knowledge of risk management frameworks, and a relevant degree in business, finance, or a related field. Familiarity with third-party risk management platforms, regulatory compliance tools, and certifications like Certified Third Party Risk Professional (CTPRP) are often required. Excellent communication, attention to detail, and problem-solving abilities help you effectively assess vendor risks and collaborate with cross-functional teams. These competencies ensure your organization can identify, mitigate, and manage risks associated with external vendors, protecting both operational integrity and regulatory compliance.

What does a vendor analyst do?

A vendor risk analyst evaluates third-party vendors to ensure they meet security, compliance, and performance standards. They review contracts, conduct risk assessments, and monitor vendor activities using tools like risk management software to mitigate potential threats to the organization.
What are the most commonly searched types of Vendor Risk Analyst jobs in Washington? The most popular types of Vendor Risk Analyst jobs in Washington are:
What are popular job titles related to Vendor Risk Analyst jobs in Washington? For Vendor Risk Analyst jobs in Washington, the most frequently searched job titles are:
What job categories do people searching Vendor Risk Analyst jobs in Washington look for? The top searched job categories for Vendor Risk Analyst jobs in Washington are:
Vendor Risk Analyst jobs near you
Infographic showing various Vendor Risk Analyst job openings in Washington as of June 2026, with employment types broken down into 97% Full Time, 1% Part Time, and 2% Contract. Highlights an 83% Physical, 4% Hybrid, and 13% Remote job distribution, with an average salary of $95,375 per year, or $45.9 per hour.

Cyber Solutions Architect (Hybrid)

Ibis Public Sector

Arlington, VA โ€ข On-site

$90/hr

Contractor

Posted 15 days ago

Job description

Ibis Public Sector is seeking a Cyber Solutions Architect with an active DHS TS Clearance to work in a hybrid schedule in Arlington, VA.
The Cyber Solutions Architect provides enterprise-level technical expertise to support federal cyber supply chain risk management and interagency collaboration. This role translates executive intent, policy direction, and vendor risk analysis into scalable, secure technical solutions and informs government decisions. The position is intended for a seasoned, certified cybersecurity professional with demonstrated experience supporting federal agencies in information assurance and cyber supply chain risk management.
Job Responsibilities
  • Serve as the senior technical advisor for collaboration platforms and cross-enterprise solutions that support vendor risk assessment and cyber supply chain mission outcomes.
  • Lead modernization and architectural redesign of collaboration platforms to enable structured vendor risk analysis, information sharing, and decision workflows.
  • Translate vendor risk findings, policy requirements, and mission needs into enterprise technical architectures, workflows, and automation-enabled processes.
  • Provide enterprise IT and systems ecosystem advisory to senior leadership, ensuring technical solutions align with federal authorities, acquisition security requirements, and cyber supply chain policy.
  • Support incident response coordination involving third-party vendors and supply chain compromises, ensuring alignment across technical, operational, and governance functions.
  • Development executive-level documentation, dashboards, and decision packages that communicate vendor risk posture and support governance, investment, and acquisition decisions.
  • Ensure technical solutions support long-term mission resilience, interoperability, and compliance with federal cybersecurity and supply chain risk management requirements.

Qualifications
  • Technical expertise operating at the intersection of cybersecurity, enterprise systems, vendor risk management, and federal mission execution.
  • Substantial experience supporting federal information communication technology and cyber supply chain risk management initiatives.
  • Demonstrated ability to convert complex vendor risk analysis into executive-ready technical solutions and governance artifacts.
  • Trusted advisor with the ability to influence decisions across organizational and interagency boundaries.

Required:
  • US citizenship with an ability to obtain and maintain DHS Suitability (EOD)
  • Bachelor's degree with 7+ years working within government organizations supporting cybersecurity risk management related policy - ideally with a focus on Supply Chain Risk Management (SCRM)
  • Experience communicating with and coordinating across multiple stakeholders and teams to align to and execute unified goals and plans
  • Advanced cybersecurity credentials indicative of enterprise-level practice-such as CISSP
  • Possess a TS security clearance and be SCI eligible at time of proposal submission
Desired
  • Degree in cybersecurity or related field
  • DHS Entry on Duty (EOD) clearance
  • Experience with or supporting the Federal Acquisition Security Council (FASC)

Who We Are
Ibis Public Sector, formerly known as Isobar Public Sector, is a trusted digital navigator delivering customer-centric solutions to the US Government, Public Sector, and Educational Institutions. We utilize human-centered design, emerging technology, and data-driven transformation to formulate digital solutions to deliver on our client's modernization goals and improve mission performance.
The anticipated hourly rate for this position is $90.00. Hourly rate is based on a range of factors that include relevant experience, knowledge, skills, and other job-related qualifications.
Ibis Public Sector is committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.

Apply