ZipRecruiter

Log In

1

Vendor Risk Management Jobs in Remote, OR (NOW HIRING)

Atos

Head of AI

OR · On-site +1

... vendors; drive co-sell motions where applicable. • Delivery excellence and customer outcomes * * Ensure high-quality delivery across AI engagements, with strong governance, risk management, and ...

Atos

Head of AI

OR · On-site +1

... vendors; drive co-sell motions where applicable. Delivery excellence and customer outcomes * * Ensure high-quality delivery across AI engagements, with strong governance, risk management, and ...

Koerber

Senior Program Manager

OR · On-site +1

$108K - $109K/yr

You will lead risk management efforts by identifying, assessing, and mitigating project-related ... Oversee specification and contract compliance with third-party vendors and suppliers * Provide ...

Koerber

Senior Project Manager

OR

You will lead risk management, issue escalation, and resolution efforts by identifying, assessing, and mitigating project risks across departments * You will oversee procurement and vendor management ...

Körber Group

Senior Project Manager

OR · On-site +1

You will lead risk management, issue escalation, and resolution efforts by identifying, assessing, and mitigating project risks across departments * You will oversee procurement and vendor management ...

Home Depot

Asset Protection Specialist

Roseburg, OR · On-site

$20.25 - $21.75/hr

... the Manager on Duty and carry out job responsibilities in a manner that minimizes the risk of injury to themselves, other associates, vendors, customers, and the Company. They must demonstrate ...

Home Depot

Asset Protection Specialist

Roseburg, OR · On-site

$20.25 - $21.75/hr

... the Manager on Duty and carry out job responsibilities in a manner that minimizes the risk of injury to themselves, other associates, vendors, customers, and the Company. They must demonstrate ...

next page

Showing results 1-20

All JobsVendor Risk Management JobsVendor Risk Management Jobs in Remote, OR

Vendor Risk Management information

See Remote, OR salary details

$43.5K

$103.6K

$167.3K

How much do vendor risk management jobs pay per year?

As of Jun 10, 2026, the average yearly pay for vendor risk management in Remote, OR is $103,602.00, according to ZipRecruiter salary data. Most workers in this role earn between $72,400.00 and $131,900.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Vendor Risk Management position, and why are they important?

To thrive in Vendor Risk Management, you need a solid background in risk assessment, contract analysis, and supply chain management, often supported by a degree in business, finance, or a related field. Familiarity with risk management software, vendor management systems, and relevant certifications such as Certified Third Party Risk Professional (CTPRP) are highly valued. Strong attention to detail, excellent communication, and negotiation skills help build effective vendor relationships and navigate complex scenarios. These capabilities are crucial for ensuring organizational compliance, minimizing third-party risks, and maintaining strong supplier performance.

What is a Vendor Risk Management job?

A Vendor Risk Management (VRM) job involves assessing, monitoring, and mitigating risks associated with third-party vendors and suppliers. Professionals in this role evaluate vendor security, compliance, and operational risks to protect their organization from potential disruptions, data breaches, or regulatory violations. They work closely with procurement, legal, and IT teams to establish risk management frameworks and ensure vendors meet contractual and security standards. Their responsibilities often include conducting risk assessments, reviewing vendor contracts, and developing risk mitigation strategies. Effective VRM helps organizations reduce exposure to risks while maintaining productive vendor relationships.

What are some common challenges faced in a Vendor Risk Management role?

Professionals in Vendor Risk Management often encounter the challenge of assessing and monitoring a wide range of vendors, each with unique risk profiles and compliance requirements. Balancing multiple projects, managing deadlines, and ensuring clear communication between internal stakeholders and vendors can also be demanding. Staying updated on evolving regulatory standards and quickly adapting to new risks is essential in this role. Overcoming these challenges requires strong organizational skills, continual learning, and proactive relationship management.

What are popular job titles related to Vendor Risk Management jobs in Remote, OR? For Vendor Risk Management jobs in Remote, OR, the most frequently searched job titles are:
What job categories do people searching Vendor Risk Management jobs in Remote, OR look for? The top searched job categories for Vendor Risk Management jobs in Remote, OR are:
What cities near Remote, OR are hiring for Vendor Risk Management jobs? Cities near Remote, OR with the most Vendor Risk Management job openings:
Vendor Risk Management jobs near you
Infographic showing various Vendor Risk Management job openings in Remote, OR as of June 2026, with employment types broken down into 91% Full Time, 6% Part Time, and 3% Temporary. Highlights an 83% Physical, 4% Hybrid, and 13% Remote job distribution, with an average salary of $103,602 per year, or $49.8 per hour.

Senior Cybersecurity Compliance Analyst

ASRC Federal Holding

OR • On-site, Remote

$93K - $121K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 2 days ago

ASRC Federal rating

7.7

Company rating: 7.7 out of 10

Based on 27 frontline employees who took The Breakroom Quiz

192nd of 352 rated engineering

Job description

ASRC Federal is a leading government contractor furthering missions in space, public health and defense. As an Alaska Native owned corporation, our work helps secure an enduring future for our shareholders. Join our team and discover why we are a top veteran employer and Certified Great Place to Work™
ASRC Federal is looking for detail-oriented and motivated Senior Cybersecurity Compliance Analyst to join our team in a government contracting (GovCon) environment. This is a full-time remote position with occasional on-site support (Beltsville, MD or Reston, VA).
The Senior Cybersecurity Compliance Analyst is responsible for leading, managing, and executing compliance activities aligned to CMMC Level 2, NIST SP 800-171, NIST SP 800-161, and NIST SP 800-53. This role will support enterprise cybersecurity, audit readiness, risk assessments, POA&M management, continuous monitoring, and the implementation of required security controls across systems, vendors, and business units.
The ideal candidate will bring deep expertise in federal cybersecurity frameworks, strong analytical skills, and the ability to collaborate with technical and non-technical stakeholders to ensure robust compliance.
Key Responsibilities
  • CMMC Level 2 Compliance:
    • Lead the organization's readiness efforts toward achieving and maintaining CMMC Level 2 certification.
    • Perform gap assessments, evidence collection, control validation, and SSP/POA&M development.
    • Coordinate with internal engineering teams and external assessors during CMMC audits.
  • NIST SP 800-171:
    • Oversee compliance with DFARS 252.204-7012 and NIST 800-171 requirements for protecting Controlled Unclassified Information (CUI).
    • Maintain and update System Security Plans (SSPs) and associated security documentation.
    • Manage risk assessments, incident response requirements, and continuous monitoring activities.
  • NIST SP 800-161 (Supply Chain Risk Management):
    • Implement and monitor Cybersecurity Supply Chain Risk Management (C-SCRM) requirements.
    • Assess vendor cybersecurity posture, conduct supplier assessments, and support acquisition security requirements.
    • Develop processes to track, evaluate, and mitigate supply chain-related risks.
  • NIST SP 800-53:
    • Support enterprise-level compliance with NIST 800-53 security and privacy controls.
    • Assist in RMF activities including categorization, control selection, control assessments, and continuous monitoring.
    • Work with system owners to remediate findings and ensure controls are implemented effectively.

General Responsibilities
  • Collaborate with engineering, IT, procurement, legal, and executive teams to ensure compliance alignment across the organization.
  • Prepare compliance reports, dashboards, and metrics for leadership.
  • Lead internal audits and coordinate external audits.
  • Serve as a subject matter expert on cybersecurity compliance frameworks and best practices.
  • Improve and mature enterprise cybersecurity governance processes, policies, and procedures.

Required Qualifications
  • Bachelor's degree in cybersecurity, information systems, or related field (or equivalent experience).
  • 7+ years of relevant cybersecurity compliance or risk management experience. 5+ years of experience with a Master's degree in Cybersecurity.
  • Hands-on experience implementing: CMMC Level 2 controls, NIST SP 800-171, NIST SP 800-161, NIST SP 800-53.
  • Strong understanding of Risk Management Framework (RMF).
  • Experience preparing SSPs, POA&Ms, security documentation, and audit evidence.
  • Ability to work with cross-functional teams and communicate complex requirements clearly.
  • U.S. citizenship required; ability to obtain and maintain a security clearance may be required depending on contract.

Preferred Qualifications
  • Industry certifications (one or more): CISSP, CISM, CRISC, CAP, CCAK, or CMMC Certified Professional/Assessor.
  • Experience supporting DoD, federal agencies, or defense contractors.
  • Familiarity with FedRAMP, DFARS, SCF, or ISO 27001 frameworks.
  • Experience with continuous monitoring technologies and GRC tools (e.g., Archer, ServiceNow, eMASS).

Additional Information
  • Reports to: Cybersecurity Governance, Risk & Compliance Leadership
  • Travel: Minimal (0-10%)
  • Clearance: Secret clearance preferred but not required; may be required based on project needs.

We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law. The salary offered will depend on several factors including, but not limited to, relevant experience, skills, education, geographic location, internal equity, business needs, and other factors permitted by law. Posted pay ranges are a general guideline only and are not a guarantee of compensation or salary.
EEO Statement
ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.

What ASRC Federal employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply