1

Vendor Risk Manager Jobs in Boston, MA (NOW HIRING)

You will help manage third-party vendor risk reviews, and operational requests, in cross-functional security compliance workflows. Success in this role requires strong attention to detail ...

New

You will help manage third-party vendor risk reviews, and operational requests, in cross-functional security compliance workflows. Success in this role requires strong attention to detail ...

New

Administer and maintain the Riskonnect Resilience platform including monitoring platform updates, attending vendor training, and managing the vendor relationship Security & Risk Management * Monitor ...

Administer and maintain the Riskonnect Resilience platform including monitoring platform updates, attending vendor training, and managing the vendor relationship Security & Risk Management * Monitor ...

Administer and maintain the Riskonnect Resilience platform including monitoring platform updates, attending vendor training, and managing the vendor relationship Security & Risk Management * Monitor ...

Lead Risk Manager, Payment Fraud Toronto Onsite | Full-Time | Hybrid after onboarding | Reports to ... vendors. Key Responsibilities • Define the rules, don't just follow them -- Lead end-to-end ...

next page

Showing results 1-20

Vendor Risk Manager information

See Boston, MA salary details

$56K

$121.2K

$184.7K

How much do vendor risk manager jobs pay per year?

As of Jul 8, 2026, the average yearly pay for vendor risk manager in Boston, MA is $121,195.00, according to ZipRecruiter salary data. Most workers in this role earn between $97,800.00 and $140,100.00 per year, depending on experience, location, and employer.

What is the difference between Vendor Risk Manager vs Vendor Compliance Analyst?

AspectVendor Risk ManagerVendor Compliance Analyst
CertificationsCertified Third Party Risk Professional (CTPRP), Certified Information Systems Auditor (CISA)Certified Compliance & Ethics Professional (CCEP), Certified Regulatory Compliance Manager (CRCM)
Work EnvironmentRisk management teams, procurement, legal departmentsCompliance departments, audit teams, legal units
Industry UsageFinance, healthcare, technology, retailFinance, healthcare, manufacturing, technology
Primary FocusIdentifying, assessing, and mitigating vendor risksEnsuring vendor adherence to compliance standards and policies

The Vendor Risk Manager focuses on evaluating and mitigating risks associated with vendors, while the Vendor Compliance Analyst concentrates on ensuring vendors meet regulatory and internal compliance standards. Both roles are essential in managing vendor relationships but differ in their core responsibilities and focus areas.

How does a Vendor Risk Manager typically collaborate with other departments within an organization?

A Vendor Risk Manager works closely with departments like procurement, legal, IT, and compliance to ensure that vendors meet the organization's security and regulatory standards. This collaboration often involves reviewing contracts, assessing potential risks, and implementing mitigation strategies. Regular communication with stakeholders is essential to keep everyone informed about vendor performance and risk status, making cross-functional teamwork a key aspect of the role. Effective collaboration helps streamline risk assessments and supports informed decision-making across the business.

What are the key skills and qualifications needed to thrive as a Vendor Risk Manager, and why are they important?

To thrive as a Vendor Risk Manager, you need expertise in risk assessment, third-party management, and compliance, often backed by a degree in business, finance, or a related field. Familiarity with risk management platforms, contract management tools, and certifications like Certified Third Party Risk Professional (CTPRP) are highly valuable. Strong analytical thinking, negotiation, and clear communication skills help you collaborate with vendors and internal stakeholders effectively. These skills ensure organizations can identify, mitigate, and manage risks arising from third-party relationships, safeguarding business continuity and compliance.

What are Vendor Risk Managers?

Vendor Risk Managers are professionals responsible for identifying, assessing, and mitigating risks associated with third-party vendors that provide goods or services to an organization. They evaluate vendors’ security, compliance, and operational practices to ensure they meet the company’s standards and regulatory requirements. These managers implement frameworks to monitor vendor performance, manage contracts, and respond to potential risks or incidents. Their role is crucial in protecting the organization from financial, reputational, and regulatory harm that can arise from third-party relationships.
Infographic showing various Vendor Risk Manager job openings in Boston, MA as of July 2026, with employment types broken down into 100% Full Time. Highlights an 37% In-person, 25% Hybrid, and 38% Remote job distribution, with an average salary of $121,195 per year, or $58.3 per hour.

Full-time

Posted 27 days ago


Job description

Key responsibilities

The primary responsibility of this position will be as the central contact, from a Bain perspective, in coordinating activities around the development of Business Continuity Plans and an assessment of the Disaster Recovery program, reporting to the Director of Technology Risk.

Disaster recovery tests are conducted on a quarterly basis. Working with the Project Manager, Business Users and Infrastructure team you will have a hands on role in the coordination and documentation of the tests. This will include reaching out to our third parties to understand their test strategies.

For Business Continuity planning, you will be involved in the process to create/update the Business Impact Analysis (BIA) and the Business Continuity Plans. This role will be a member of the team, working with the business, to define and document their needs.

This will also require technical knowledge to work with the BC in the Cloud application to enhance and update based on user requirements. As part of these enhancements, you will need to document the requirements, coordinate the updates with the vendor, or in many cases perform them yourself and then validate the enhancements are successful.

Your secondary responsibility within the Technology Risk Group, will be to assist the Vendor Risk Manager in supporting the Third Party Risk Assessment process.

In this role, you will review the preliminary risk assessment, interface with vendor to obtain necessary diligence details, interface with third party risk assessor, document defined risks and develop communication to the business to accept risks or create plan to mitigate risk as well as track in our risk register.

As a team member, you will support the Vendor Risk Manager in tracking the assessment of new 3rd party vendor, updating assessments for our critical vendors, provide regular reporting and update the Vendor Risk system.

As part of your responsibility, not only will you be interacting with third party vendors, you will also interface with the IT Organizations and Business counterparts.

Qualifications
  • Experience with documentation and Microsoft tools, specifically Excel and Word
  • HTML skills a plus
  • Strong analytical ability, judgment and problem analysis techniques
  • Beneficial for candidate to have experience or coursework in any of the following topics: Risk Assessments, Emergency Preparedness, Business Continuity, Business, Information Technology, and/or Information Security
  • Experience with project and/or program management, whether business experience or in group/classwork activities
  • Proven ability to be self-starter with strong communication skills, written and verbal and keen attention to detail and thoroughness