Business Vendor Risk Management is the first-line function responsible for business oversight of the critical third parties and outsourced activities that secured lending depends on to originate ...
Business Vendor Risk Management is the first-line function responsible for business oversight of the critical third parties and outsourced activities that secured lending depends on to originate ...
Risk Management Specialist
Villa Park, IL · On-site
$70K - $85K/yr
Administer and maintain vendor risk management systems/platforms. * Prepare monthly and quarterly vendor risk dashboards and reporting. Vendor Inventory Management * Maintain accuracy and ...
Quick apply
Risk Management Specialist
Villa Park, IL · On-site
$70K - $85K/yr
Administer and maintain vendor risk management systems/platforms. * Prepare monthly and quarterly vendor risk dashboards and reporting. Vendor Inventory Management * Maintain accuracy and ...
Vendor Risk Management & Onboarding, SVP - Procurement
Miami, FL · On-site +1
$200K - $225K/yr
Define and manage data gathering, preparation, and execution of third-party risk and onboarding assessments for new vendors and technologies, and guide regular risk reviews for high and critical ...
Vendor Risk Management & Onboarding, SVP - Procurement
Miami, FL · On-site +1
$200K - $225K/yr
Define and manage data gathering, preparation, and execution of third-party risk and onboarding assessments for new vendors and technologies, and guide regular risk reviews for high and critical ...
Vendor Risk Analyst
Quincy, MA · On-site
Manage vendor profile records and ensure information is up-to-date using a GRC platform ... or vendor risk background. Technical Skills: Experience with GRC platforms such as Archer or ...
Vendor Risk Analyst
Quincy, MA · On-site
Manage vendor profile records and ensure information is up-to-date using a GRC platform ... or vendor risk background. Technical Skills: Experience with GRC platforms such as Archer or ...
ABOUT THE ROLE The Information Security Client & Vendor Risk Manager leads the firm's client due ... Develop and maintain the firm's vendorrisk management framework , including riskscoring ...
ABOUT THE ROLE The Information Security Client & Vendor Risk Manager leads the firm's client due ... Develop and maintain the firm's vendorrisk management framework , including riskscoring ...
ABOUT THE ROLE The Information Security Client & Vendor Risk Manager leads the firm's client due ... Develop and maintain the firm's vendorrisk management framework , including riskscoring ...
ABOUT THE ROLE The Information Security Client & Vendor Risk Manager leads the firm's client due ... Develop and maintain the firm's vendorrisk management framework , including riskscoring ...
Vendor Analyst, AI & Technology Risk
Iowa, LA · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Iowa, LA · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Atlanta, GA · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Atlanta, GA · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Chicago, IL · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Chicago, IL · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
New York, NY · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
New York, NY · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Dallas, TX · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Vendor Analyst, AI & Technology Risk
Dallas, TX · Hybrid
$85K - $110K/yr
Support Vendor Management in aligning with third-party risk requirements AI Governance Operations * Support execution of AI intake and governance workflows: * Track AIA Forms and FactSheets * Ensure ...
Evaluate vendor security posture, compliance certifications (SOC 2, ISO 27001, etc.), and contractual obligations. * Creating and enhancing a cybersecurity vendor risk management program, including ...
Evaluate vendor security posture, compliance certifications (SOC 2, ISO 27001, etc.), and contractual obligations. * Creating and enhancing a cybersecurity vendor risk management program, including ...
Program Manager, Third Party Risk Management Summary/Objective Under the direction of the Program ... This role ensures vendor risk activities--including due diligence, ongoing monitoring ...
Quick apply
Program Manager, Third Party Risk Management Summary/Objective Under the direction of the Program ... This role ensures vendor risk activities--including due diligence, ongoing monitoring ...
Program Manager, Third Party Risk Management Summary/Objective Under the direction of the Program ... This role ensures vendor risk activities--including due diligence, ongoing monitoring ...
Quick apply
Program Manager, Third Party Risk Management Summary/Objective Under the direction of the Program ... This role ensures vendor risk activities--including due diligence, ongoing monitoring ...
Program Manager, Third Party Risk Management Summary/Objective Under the direction of the Program ... This role ensures vendor risk activities--including due diligence, ongoing monitoring ...
Quick apply
Program Manager, Third Party Risk Management Summary/Objective Under the direction of the Program ... This role ensures vendor risk activities--including due diligence, ongoing monitoring ...
Position Overview The Senior Manager, Third Party Risk Management leads Asurion's enterprise vendor and supply-chain risk program as a second line of defense. This role owns the end-to-end third ...
Position Overview The Senior Manager, Third Party Risk Management leads Asurion's enterprise vendor and supply-chain risk program as a second line of defense. This role owns the end-to-end third ...
Vendor Risk Assessments: Conduct risk assessments and due diligence for new and existing third ... Tool Management:Useapproved technologyto support automation of TPRM workflows. This includes ...
New
Vendor Risk Assessments: Conduct risk assessments and due diligence for new and existing third ... Tool Management:Useapproved technologyto support automation of TPRM workflows. This includes ...
New
Enterprise Risk Analyst
Denver, CO · On-site
Enterprise Risk Management (ERM) and Third-Party Vendor Risk Management (TPVRM). Reporting to the Senior Enterprise Risk Manager, you will play a hands-on role in executing risk assessments ...
Enterprise Risk Analyst
Denver, CO · On-site
Enterprise Risk Management (ERM) and Third-Party Vendor Risk Management (TPVRM). Reporting to the Senior Enterprise Risk Manager, you will play a hands-on role in executing risk assessments ...
Position Overview The Senior Manager, Third Party Risk Management leads Asurion's enterprise vendor and supply-chain risk program as a second line of defense. This role owns the end-to-end third ...
Position Overview The Senior Manager, Third Party Risk Management leads Asurion's enterprise vendor and supply-chain risk program as a second line of defense. This role owns the end-to-end third ...
Managing the central vendor repository for the Firm and overseeing the automation of vendor on-boarding and off-boarding processes * Ensuring effective vendor risk mitigation plans and providing ...
Managing the central vendor repository for the Firm and overseeing the automation of vendor on-boarding and off-boarding processes * Ensuring effective vendor risk mitigation plans and providing ...
Vendor Risk Management information
See salary details
$43.5K - $54.8K
8% of jobs
$54.8K - $66K
14% of jobs
$71.2K is the 25th percentile. Wages below this are outliers.
$66K - $77.3K
6% of jobs
$77.3K - $88.6K
8% of jobs
$88.6K - $99.9K
11% of jobs
The median wage is $102.2K / yr.
$99.9K - $111.1K
13% of jobs
$111.1K - $122.4K
11% of jobs
$125.8K is the 75th percentile. Wages above this are outliers.
$122.4K - $133.7K
15% of jobs
$133.7K - $145K
8% of jobs
$145K - $156.2K
4% of jobs
$156.2K - $167.5K
2% of jobs
$43.5K
$103.7K
$167.5K
How much do vendor risk management jobs pay per year?
What is the highest paying risk management job?
What is a vendor risk management job description?
What are the key skills and qualifications needed to thrive in the Vendor Risk Management position, and why are they important?
To thrive in Vendor Risk Management, you need a solid background in risk assessment, contract analysis, and supply chain management, often supported by a degree in business, finance, or a related field. Familiarity with risk management software, vendor management systems, and relevant certifications such as Certified Third Party Risk Professional (CTPRP) are highly valued. Strong attention to detail, excellent communication, and negotiation skills help build effective vendor relationships and navigate complex scenarios. These capabilities are crucial for ensuring organizational compliance, minimizing third-party risks, and maintaining strong supplier performance.
How much does a risk manager get paid?
What is vendor risk management?
What is a Vendor Risk Management job?
A Vendor Risk Management (VRM) job involves assessing, monitoring, and mitigating risks associated with third-party vendors and suppliers. Professionals in this role evaluate vendor security, compliance, and operational risks to protect their organization from potential disruptions, data breaches, or regulatory violations. They work closely with procurement, legal, and IT teams to establish risk management frameworks and ensure vendors meet contractual and security standards. Their responsibilities often include conducting risk assessments, reviewing vendor contracts, and developing risk mitigation strategies. Effective VRM helps organizations reduce exposure to risks while maintaining productive vendor relationships.
What are some common challenges faced in a Vendor Risk Management role?
Professionals in Vendor Risk Management often encounter the challenge of assessing and monitoring a wide range of vendors, each with unique risk profiles and compliance requirements. Balancing multiple projects, managing deadlines, and ensuring clear communication between internal stakeholders and vendors can also be demanding. Staying updated on evolving regulatory standards and quickly adapting to new risks is essential in this role. Overcoming these challenges requires strong organizational skills, continual learning, and proactive relationship management.

Full-time
Medical, Dental, Vision, Life, Retirement, PTO
Posted 8 days ago
Job description
At Upstart, we're united by a mission that matters: to radically reduce the cost and complexity of borrowing for all Americans. Every day, we bring creativity, experimentation, and advanced AI to reshape access to credit, helping millions move forward financially with clarity and confidence.
As the leading AI lending marketplace, we partner with banks and credit unions to expand access to affordable credit through technology that's both radically intelligent and deeply human. Our platform runs over one million predictions per borrower using more than 1,800 signals, powering smarter, fairer decisions for millions of customers. But the numbers only hint at the impact. Every idea, every voice, and every contribution moves us closer to a world where credit never stands between people and their financial progress.
We're proudly digital-first, giving most Upstarters the flexibility to do their best work from wherever they thrive, alongside teammates across 80+ cities in the US and Canada. Digital-first doesn't mean distant. We're intentional about in-person connection through team onsites, planning sessions, and moments that spark creativity and trust. And whether you choose to work primarily from home or collaborate in-person from one of our offices in Columbus, Austin, the Bay Area, or New York City (opening Summer 2026), you'll have the support to work in the way that works best for you.
If you're energized by tackling meaningful problems, excited to innovate with purpose, and motivated by work that truly matters, we'd love to hear from you.
The Team:
Upstart's Secured Lending organization is building the first-line risk and control infrastructure that will support the next stage of growth across home equity line of credit, auto direct, and auto indirect dealer products. The team helps ensure secured lending products operate with clear governance, durable controls, high-quality execution, and readiness for bank partner and regulatory review.
Business Vendor Risk Management is the first-line function responsible for business oversight of the critical third parties and outsourced activities that secured lending depends on to originate, close, and service loans. The function works within Upstart's enterprise third-party risk management framework to ensure vendor relationships are properly documented, monitored, escalated, and managed according to their risk and criticality.
As the Senior Manager, Business Vendor Risk Management at Upstart, you will build and lead this function end-to-end, reporting directly to the Head of Secured Lending. You will lead a small team and partner closely with Operations, Compliance, Legal, Technology, Product, Enterprise Risk, and business owners to establish the vendor oversight framework, monitoring cadence, issue management routines, and governance documentation needed to support a durable, exam-ready risk vendor management program.
How you'll make an impact
- Build and lead the secured lending first-line vendor oversight function, including the vendor inventory, risk-tiering approach, monitoring cadence, governance reporting, and escalation routines for critical third-party relationships.
- Own business oversight of critical vendors and outsourced activities across the third-party risk lifecycle, including due diligence support, contract and service-level tracking, performance monitoring, issue management, and termination or exit planning.
- Monitor vendor execution against contractual terms, service standards, data requirements, compliance expectations, and business controls, identifying trends that may create operational, regulatory, consumer impact, or continuity risk.
- Drive remediation of vendor performance issues by identifying root causes, aligning owners on corrective actions, tracking issue closure, and escalating material risks to business leaders, Compliance, Legal, Enterprise Risk, and other stakeholders.
- Maintain contingency, transition, and exit planning for critical third-party relationships, ensuring vendor dependencies are understood and managed before they create unacceptable concentration, continuity, or operational risk.
- Produce clear, inspection-ready vendor oversight documentation, including performance reporting, risk assessments, issue logs, business reviews, evidence packages, and executive summaries for bank partner and regulatory review
Minimum Qualifications
- 7+ years of experience in business line third-party risk management or vendor oversight within a regulated financial services or banking environment
- Experience overseeing critical vendor relationships or outsourced business activities, including risk tiering, due diligence, ongoing performance monitoring, issue management, and contingency or exit planning.
- Experience managing vendor execution against contractual terms, service-level expectations, data requirements, control requirements, or business continuity standards.
- Experience identifying, escalating, and remediating vendor performance deficiencies, compliance findings, operational incidents, consumer impact risks, or fourth-party risks.
- Experience leading analysts, managing a vendor oversight function, or owning cross-functional third-party risk programs within a business line, financial services, or banking environment.,
Preferred Qualifications
- Experience applying OCC, FFIEC, or equivalent bank regulatory expectations for third-party risk management, including risk-based oversight of critical vendors and outsourced activities in a regulated bank or bank-partner environment.
- Experience building or maturing a business line vendor oversight program for a business unit, operating within a 2LOD or enterprise TPRM framework.
- Experience overseeing one or more of the following vendor or partner types in consumer lending: mortgage subservicers, loan origination system or technology platform vendors, dealer networks (including dealer due diligence and conduct monitoring), affiliate or fintech platform relationships, appraisal management companies, title and settlement providers, or credit reporting and data vendors.
- Knowledge of consumer lending operations, servicing controls, complaint or error resolution, credit reporting oversight, data quality, vendor controls, or consumer compliance risk.
- Skilled in producing exam-ready vendor oversight documentation, performance reports, risk assessments, issue tracking, governance materials, policies and procedures, and executive summaries.
Position location This role is available in the following locations: Remote
Time zone requirements The team operates on the East/West coast time zones.
Travel requirements As a digital first company, the majority of your work can be accomplished remotely. The majority of our employees can live and work anywhere in the U.S but are encouraged to to still spend high quality time in-person collaborating via regular onsites. The in-person sessions' cadence varies depending on the team and role; most teams meet once or twice per quarter for 2-4 consecutive days at a time.
#LI-MidSenior
At Upstart, your base pay is one part of your total compensation package. The anticipated base salary for this position is expected to be within the below range. Your actual base pay will depend on your geographic location-with our "digital first" philosophy, Upstart uses compensation regions that vary depending on location. Individual pay is also determined by job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.
In addition, Upstart provides employees with target bonuses, equity compensation, and generous benefits packages (including medical, dental, vision, and 401k).
United States | Remote - Anticipated Base Salary Range
$172,100-$238,300 USD
What you'll love
At Upstart, our benefits are designed to support your health, financial well-being, family, and personal growth. Here's what you can expect:
- Competitive compensation, including base pay, bonus opportunities, and annual equity grants that vest quarterly
- Retirement benefits to help you plan for the future, including a 401(k) or Group Retirement Savings Plan with a company match of $2 for every $1 contributed, up to $15,000 annually (USD in the US, CAD in Canada)
- Employee Stock Purchase Plan (ESPP) with discounted stock purchase options for eligible employees (US only)
- Comprehensive health coverage designed to support you and your family, including medical, dental, vision, and wellness resources for US and supplemental health coverage for Canada.
- Health Savings Account contributions from Upstart for eligible plans (US only)
- Income protection benefits, including life insurance and disability coverage for added financial security
- Paid time off, sick leave, and company holidays, in line with local requirements
- Paid family and parental leave to support caregiving and major life moments (duration varies by country)
- Family-centered benefits to support fertility, parenthood, and caregiving needs
- Employee Assistance Program (EAP) offering mental health support and life-centered resources
- Financial wellness resources, including access to financial planning tools and a financial concierge service (US Only)
- Annual wellness allowance to support your physical and emotional well-being and personal development, based on what matters most to you
- Annual productivity allowance to invest in relevant tools and resources you need to do your best work, no matter where you work from
- Connection and community through team events, all-company updates, and employee resource groups (ERGs)
- Onsite perks, including catered lunches and fully stocked micro-kitchens when working from one of our offices in the Bay Area, Austin, Columbus, and New York City (opening Summer 2026!)
For roles based in Canada, please note that we are not currently able to hire in Quebec.
Upstart is a proud Equal Opportunity Employer. Just as we are dedicated to improving access to affordable credit for all, we are committed to inclusive and fair hiring practices.
If you require reasonable accommodation in completing an application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please email candidate_accommodations@upstart.com
https://www.upstart.com/candidate_privacy_policy