1

Vendor Risk Manager Jobs (NOW HIRING)

WM Vendor Risk Associate

New York, NY · On-site

$58K - $115K/yr

The Wealth Management (WM) Chief Data Office (CDO) sits within the WM Risk organization and strives ... The Vendor Risk Team within WM CDO works to ensure third-party relationships supporting WM are ...

The Wealth Management (WM) Chief Data Office (CDO) sits within the WM Risk organization and strives ... The Vendor Risk Team within WM CDO works to ensure third-party relationships supporting WM are ...

Position Overview The Senior Manager, Third Party Risk Management leads Asurion's enterprise vendor and supply-chain risk program as a second line of defense. This role owns the end-to-end third ...

Risk Analyst

South Jordan, UT · On-site

$57K - $85K/yr

Knowledge and experience in the areas of Enterprise Risk Management and/or Stress Testing and/or Vendor Risk Management and/or Model Risk Management preferred. Knowledge and experience in all aspects ...

Certified Vendor Risk Management Professional (CVRMP) * Shared Assessments or other vendor risk management certification * CISM * CRISC * Familiarity with information security and regulatory ...

Risk Analyst

Spanish Fork, UT · On-site

$57K - $85K/yr

Knowledge and experience in the areas of Enterprise Risk Management and/or Stress Testing and/or Vendor Risk Management and/or Model Risk Management preferred. Knowledge and experience in all aspects ...

Job Summary The Technology Risk Assessor is responsible for managing and assessing a portfolio of technology vendors, with a focus on vendor risk, performance, and overall value delivery. This role ...

next page

Showing results 1-20

Vendor Risk Manager information

See salary details

$51.5K

$111.6K

$170K

How much do vendor risk manager jobs pay per year?

As of Jul 7, 2026, the average yearly pay for vendor risk manager in the United States is $111,556.00, according to ZipRecruiter salary data. Most workers in this role earn between $90,000.00 and $129,000.00 per year, depending on experience, location, and employer.

What is the difference between Vendor Risk Manager vs Vendor Compliance Analyst?

AspectVendor Risk ManagerVendor Compliance Analyst
CertificationsCertified Third Party Risk Professional (CTPRP), Certified Information Systems Auditor (CISA)Certified Compliance & Ethics Professional (CCEP), Certified Regulatory Compliance Manager (CRCM)
Work EnvironmentRisk management teams, procurement, legal departmentsCompliance departments, audit teams, legal units
Industry UsageFinance, healthcare, technology, retailFinance, healthcare, manufacturing, technology
Primary FocusIdentifying, assessing, and mitigating vendor risksEnsuring vendor adherence to compliance standards and policies

The Vendor Risk Manager focuses on evaluating and mitigating risks associated with vendors, while the Vendor Compliance Analyst concentrates on ensuring vendors meet regulatory and internal compliance standards. Both roles are essential in managing vendor relationships but differ in their core responsibilities and focus areas.

How does a Vendor Risk Manager typically collaborate with other departments within an organization?

A Vendor Risk Manager works closely with departments like procurement, legal, IT, and compliance to ensure that vendors meet the organization's security and regulatory standards. This collaboration often involves reviewing contracts, assessing potential risks, and implementing mitigation strategies. Regular communication with stakeholders is essential to keep everyone informed about vendor performance and risk status, making cross-functional teamwork a key aspect of the role. Effective collaboration helps streamline risk assessments and supports informed decision-making across the business.

What are the key skills and qualifications needed to thrive as a Vendor Risk Manager, and why are they important?

To thrive as a Vendor Risk Manager, you need expertise in risk assessment, third-party management, and compliance, often backed by a degree in business, finance, or a related field. Familiarity with risk management platforms, contract management tools, and certifications like Certified Third Party Risk Professional (CTPRP) are highly valuable. Strong analytical thinking, negotiation, and clear communication skills help you collaborate with vendors and internal stakeholders effectively. These skills ensure organizations can identify, mitigate, and manage risks arising from third-party relationships, safeguarding business continuity and compliance.

What are Vendor Risk Managers?

Vendor Risk Managers are professionals responsible for identifying, assessing, and mitigating risks associated with third-party vendors that provide goods or services to an organization. They evaluate vendors’ security, compliance, and operational practices to ensure they meet the company’s standards and regulatory requirements. These managers implement frameworks to monitor vendor performance, manage contracts, and respond to potential risks or incidents. Their role is crucial in protecting the organization from financial, reputational, and regulatory harm that can arise from third-party relationships.
More about Vendor Risk Manager jobs
What cities are hiring for Vendor Risk Manager jobs? Cities with the most Vendor Risk Manager job openings:
What states have the most Vendor Risk Manager jobs? States with the most job openings for Vendor Risk Manager jobs include:
Infographic showing various Vendor Risk Manager job openings in the United States as of July 2026, with employment types broken down into 85% Full Time, 13% Part Time, 1% Temporary, and 1% Contract. Highlights an 86% Physical, 1% Hybrid, and 13% Remote job distribution, with an average salary of $111,556 per year, or $53.6 per hour.

Vendor Analyst, AI & Technology Risk

The Mutual Group

Atlanta, GA • Hybrid

$85K - $110K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Re-posted 18 days ago


Job description

Department:

Information Technology

Job Description:

Execute day-to-day operations of AI and Technology Risk Governance, with primary responsibility for vendor AI governance and detection across The Mutual Group and its member insurance carriers.

This is a fully hands-on individual contributor role responsible for ensuring vendor AI usage is identified, tracked, and routed through the AIS Program governance process. The role also supports broader governance activities across AI Systems, Cyber Security, Data Privacy (IT lens), and IT Controls.

Work Arrangement:

  • Employees who live within 30 miles of the TMG home office are expected to follow a hybrid or in-office schedule. The initial training period may require additional inoffice days.

Accountabilities:

Vendor AI Governance (Primary Focus)

  • Execute the vendor-wide AI detection process across the full vendor portfolio:

    • Conduct periodic vendor attestations

    • Track vendor disclosures, updates, and AI usage changes

  • Ensure vendors using AI are:

    • Identified promptly

    • Routed through the AIS Program review framework

  • Maintain and track:

    • Vendor AI inventory

    • FactSheet submissions and updates

  • Support Vendor Management in aligning with third-party risk requirements

AI Governance Operations

  • Support execution of AI intake and governance workflows:

    • Track AIA Forms and FactSheets

    • Ensure completeness and follow-ups

  • Perform initial triage for low-risk AI use cases

  • Support activities of the AIS / Security Governance Team, including documentation and workflow tracking

Monitoring & Validation Support

  • Support twice-annual AI system and vendor review cycles

  • Track:

    • Vendor AI changes

    • Model updates requiring re-review

  • Assist in ensuring monitoring outputs are captured and documented

Documentation & Controls

  • Maintain:

    • AI system inventory

    • Vendor AI tracking logs

    • Governance documentation and audit trails

  • Support:

    • Evidence collection for audits and regulatory reviews

    • Control documentation for IT and security governance

Broader Technology Risk Support (Secondary)

  • Support tracking and documentation for:

    • Cyber security governance activities (NIST CSF, NYDFS)

    • Data privacy controls (CCPA, IT lens)

    • IT general controls and risk register inputs

Reporting & Coordination

  • Assist with preparation of:

    • AIS Committee materials

    • Governance and vendor risk reports

  • Coordinate with:

    • Vendor Management

    • AI / Technology teams

    • Risk and Compliance teams


Qualifications:

  • 3+ years in risk, compliance, IT, security, or vendor risk management

  • Experience with TPRM and GRC tools (like Archer, ServiceNow, OneTrust, Upguard)

  • Experience supporting third-party risk or audit processes preferred

  • Familiarity with:

    • Vendor risk management practices

    • AI governance concepts (preferred)

    • NIST CSF, SOC 2, or similar frameworks

    • Data privacy concepts (CCPA preferred)

  • Strong attention to detail and process discipline

  • Ability to manage multiple workflows and follow-ups

Pay Range:

Anticipated Hiring Range:

  • $85,000 - $110,000 annual base salary depending on experience, qualifications, and geographic location

Benefits:

We are proud to offer our full-time regular employees a robust benefits suite that includes:

  • Competitive base salary plus incentive plans for eligible team members

  • 401(K) retirement plan that includes a company match of up to 6% of your eligible salary

  • Free basic life and AD&D, long-term disability and short-term disability insurance

  • Medical, dental and vision plans to meet your unique healthcare needs

  • Wellness incentives

  • Generous time off program that includes personal, holiday and volunteer paid time off

  • Flexible work schedules and hybrid/remote options for eligible positions

  • Educational assistance

Equal Opportunity Employer

The Mutual Groupis an Equal Opportunity Employer. It is our policy to recruit, hire, train and promote individuals in all job classifications without regard to race, color, religion, sex, national origin, age, veteran status, disability, sexual orientation, gender identity or any other characteristic protected by law.

  • Know Your Rights: Workplace Discrimination is Illegal

  • Your Rights Under USERRA

Applicants requiring a reasonable accommodation due to a disability at any stage of the employment application process should contactTalent@themutualgroup.com.

Employment Verification

The Mutual Group participates in theE-Verifyprogram and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. You are protected fromemployment discriminationbased on your citizenship status and national origin.

E-Verify Program Overview

E-Verify Participation Poster

All offers of employment are contingent upon the successful completion of a background check.

#TMG