Certified Vendor Risk Management Professional (CVRMP) * Shared Assessments or other vendor risk management certification * CISM * CRISC * Familiarity with information security and regulatory ...
Certified Vendor Risk Management Professional (CVRMP) * Shared Assessments or other vendor risk management certification * CISM * CRISC * Familiarity with information security and regulatory ...
Certified Vendor Risk Management Professional (CVRMP) * Shared Assessments or other vendor risk management certification * CISM * CRISC * Familiarity with information security and regulatory ...
Certified Vendor Risk Management Professional (CVRMP) * Shared Assessments or other vendor risk management certification * CISM * CRISC * Familiarity with information security and regulatory ...
Certified Vendor Risk Management Professional (CVRMP) * Shared Assessments or other vendor risk management certification * CISM * CRISC * Familiarity with information security and regulatory ...
Certified Vendor Risk Management Professional (CVRMP) * Shared Assessments or other vendor risk management certification * CISM * CRISC * Familiarity with information security and regulatory ...
About This Opportunity The Vendor Risk Management (VRM) team partners with business units to assess and manage risks across the supplier portfolio, ensuring consistency, quality, and transparency.
About This Opportunity The Vendor Risk Management (VRM) team partners with business units to assess and manage risks across the supplier portfolio, ensuring consistency, quality, and transparency.
About This Opportunity The Vendor Risk Management (VRM) team partners with business units to assess and manage risks across the supplier portfolio, ensuring consistency, quality, and transparency.
About This Opportunity The Vendor Risk Management (VRM) team partners with business units to assess and manage risks across the supplier portfolio, ensuring consistency, quality, and transparency.
About This Opportunity The Vendor Risk Management (VRM) team partners with business units to assess and manage risks across the supplier portfolio, ensuring consistency, quality, and transparency.
About This Opportunity The Vendor Risk Management (VRM) team partners with business units to assess and manage risks across the supplier portfolio, ensuring consistency, quality, and transparency.
Risk Analyst I
Atlanta, GA · On-site
About This Opportunity The Vendor Risk Management (VRM) team partners with business units to assess and manage risks across the supplier portfolio, ensuring consistency, quality, and transparency.
Risk Analyst I
Atlanta, GA · On-site
About This Opportunity The Vendor Risk Management (VRM) team partners with business units to assess and manage risks across the supplier portfolio, ensuring consistency, quality, and transparency.
Risk Operations Manager
Smithfield, RI · On-site
Experience with vendor management or vendor risk management is a plus * Familiarity with Fidelity's businesses and risk programs is a plus * Your ability to learn quickly, uphold high performance ...
New
Risk Operations Manager
Smithfield, RI · On-site
Experience with vendor management or vendor risk management is a plus * Familiarity with Fidelity's businesses and risk programs is a plus * Your ability to learn quickly, uphold high performance ...
New
Risk Operations Manager
Westlake, TX · On-site
Experience with vendor management or vendor risk management is a plus * Familiarity with Fidelity's businesses and risk programs is a plus * Your ability to learn quickly, uphold high performance ...
New
Risk Operations Manager
Westlake, TX · On-site
Experience with vendor management or vendor risk management is a plus * Familiarity with Fidelity's businesses and risk programs is a plus * Your ability to learn quickly, uphold high performance ...
New
Risk Operations Manager
Westlake, TX · On-site
Experience with vendor management or vendor risk management is a plus * Familiarity with Fidelity's businesses and risk programs is a plus * Your ability to learn quickly, uphold high performance ...
New
Risk Operations Manager
Westlake, TX · On-site
Experience with vendor management or vendor risk management is a plus * Familiarity with Fidelity's businesses and risk programs is a plus * Your ability to learn quickly, uphold high performance ...
New
Governance & Risk Analyst
Chicago, IL · On-site
$85K - $95K/yr
Key Responsibilities Third-Party Risk Management (TPRM) & Vendor Risk Assessments (VRA) * Conduct end-to-end Vendor Risk Assessments (VRA) including initiation, analysis, follow-ups, and final ...
Governance & Risk Analyst
Chicago, IL · On-site
$85K - $95K/yr
Key Responsibilities Third-Party Risk Management (TPRM) & Vendor Risk Assessments (VRA) * Conduct end-to-end Vendor Risk Assessments (VRA) including initiation, analysis, follow-ups, and final ...
Our supply chain spans hundreds of vendors - from avionics hardware suppliers to cloud ... Archer is seeking a Senior Third Party Risk Management (TPRM) Engineer to execute our vendor cyber ...
Our supply chain spans hundreds of vendors - from avionics hardware suppliers to cloud ... Archer is seeking a Senior Third Party Risk Management (TPRM) Engineer to execute our vendor cyber ...
Summary The Cybersecurity Program & Risk Manager is accountable for owning, integrating, and ... Coordinate vendor risk assessments and remediation activities with Procurement and Legal. * Ensure ...
Summary The Cybersecurity Program & Risk Manager is accountable for owning, integrating, and ... Coordinate vendor risk assessments and remediation activities with Procurement and Legal. * Ensure ...
Summary The Cybersecurity Program & Risk Manager is accountable for owning, integrating, and ... Coordinate vendor risk assessments and remediation activities with Procurement and Legal. * Ensure ...
Summary The Cybersecurity Program & Risk Manager is accountable for owning, integrating, and ... Coordinate vendor risk assessments and remediation activities with Procurement and Legal. * Ensure ...
Vendor Governance Analyst
Malvern, PA · On-site
Vendor Governance Analyst The Vendor Governance Analyst supports The Institutes' vendor governance and third-party risk management (TPRM) program day to day. This role handles vendor lifecycle ...
Vendor Governance Analyst
Malvern, PA · On-site
Vendor Governance Analyst The Vendor Governance Analyst supports The Institutes' vendor governance and third-party risk management (TPRM) program day to day. This role handles vendor lifecycle ...
Vendor Governance & Risk Analyst The Vendor Governance & Risk Analyst supports The Institutes' vendor governance and third-party risk management (TPRM) program day to day. This role handles vendor ...
Quick apply
Vendor Governance & Risk Analyst The Vendor Governance & Risk Analyst supports The Institutes' vendor governance and third-party risk management (TPRM) program day to day. This role handles vendor ...
Demonstrates ability to influence strategic decisions and drive improvements to vendor governance, risk management and oversight frameworks in complex, regulated environments * Drives continuous ...
Demonstrates ability to influence strategic decisions and drive improvements to vendor governance, risk management and oversight frameworks in complex, regulated environments * Drives continuous ...
Demonstrates ability to influence strategic decisions and drive improvements to vendor governance, risk management and oversight frameworks in complex, regulated environments * Drives continuous ...
Demonstrates ability to influence strategic decisions and drive improvements to vendor governance, risk management and oversight frameworks in complex, regulated environments * Drives continuous ...
Review vendor-provided security evidence and identify control gaps and areas of risk. Candidate will also assist in managing relationship with Service Providers who are responsible for the actual ...
Review vendor-provided security evidence and identify control gaps and areas of risk. Candidate will also assist in managing relationship with Service Providers who are responsible for the actual ...
Demonstrates ability to influence strategic decisions and drive improvements to vendor governance, risk management and oversight frameworks in complex, regulated environments * Drives continuous ...
Demonstrates ability to influence strategic decisions and drive improvements to vendor governance, risk management and oversight frameworks in complex, regulated environments * Drives continuous ...
Vendor Risk Manager information
See salary details
$51.5K - $62.3K
4% of jobs
$62.3K - $73K
6% of jobs
$73K - $83.8K
11% of jobs
$87.9K is the 25th percentile. Wages below this are outliers.
$83.8K - $94.6K
11% of jobs
The median wage is $103.2K / yr.
$94.6K - $105.4K
23% of jobs
$105.4K - $116.1K
13% of jobs
$123.2K is the 75th percentile. Wages above this are outliers.
$116.1K - $126.9K
12% of jobs
$126.9K - $137.7K
8% of jobs
$137.7K - $148.5K
6% of jobs
$148.5K - $159.2K
4% of jobs
$159.2K - $170K
2% of jobs
$51.5K
$111.6K
$170K
How much do vendor risk manager jobs pay per year?
What is the difference between Vendor Risk Manager vs Vendor Compliance Analyst?
| Aspect | Vendor Risk Manager | Vendor Compliance Analyst |
|---|---|---|
| Certifications | Certified Third Party Risk Professional (CTPRP), Certified Information Systems Auditor (CISA) | Certified Compliance & Ethics Professional (CCEP), Certified Regulatory Compliance Manager (CRCM) |
| Work Environment | Risk management teams, procurement, legal departments | Compliance departments, audit teams, legal units |
| Industry Usage | Finance, healthcare, technology, retail | Finance, healthcare, manufacturing, technology |
| Primary Focus | Identifying, assessing, and mitigating vendor risks | Ensuring vendor adherence to compliance standards and policies |
The Vendor Risk Manager focuses on evaluating and mitigating risks associated with vendors, while the Vendor Compliance Analyst concentrates on ensuring vendors meet regulatory and internal compliance standards. Both roles are essential in managing vendor relationships but differ in their core responsibilities and focus areas.
How does a Vendor Risk Manager typically collaborate with other departments within an organization?
What are the key skills and qualifications needed to thrive as a Vendor Risk Manager, and why are they important?
What are Vendor Risk Managers?

Job description
Your Journey at Crowe Starts Here:
At Crowe, you can build a meaningful and rewarding career. With real flexibility to balance work with life moments, you're trusted to deliver results and make an impact. We embrace you for who you are, care for your well-being, and nurture your career. Everyone has equitable access to opportunities for career growth and leadership. Over our 80-year history, delivering excellent service through innovation has been a core part of our DNA across our audit, tax, and consulting groups. That's why we continuously invest in innovative ideas, such as AI-enabled insights and technology-powered solutions, to enhance our services. Join us at Crowe and embark on a career where you can help shape the future of our industry.
Job Description:
Manager - Third Party Risk
The position will be primarily responsible for managing and leading Third Party Risk Management (TPRM) engagements, including oversight of third-party assessments, client delivery, team management, and broader TPRM advisory initiatives as needed. This role will oversee the execution, quality, and delivery of engagements focused on evaluating third-party risk across areas such as information security, compliance, operational risk, privacy, and broader TPRM practices.
The position will work within a Crowe team at a client or third-party site and be responsible for leading teams in identifying key risks, process gaps, and remediation strategies. This role will serve as both a trusted advisor to client leadership and a people manager responsible for coaching, mentoring, performance management, and development of consultants and senior consultants within the practice.
Projects would be performed through interacting with client Information Security, Procurement, Compliance, Privacy, Legal, and Business Unit leadership, as well as the client's vendors, service providers, and partners.
Specific projects and responsibilities may include:
- Leading Third Party Risk Management engagements, including third-party assessments, ongoing monitoring activities, and risk evaluation efforts
- Managing and overseeing assessment teams, project timelines, and client deliverables across multiple engagements
- Supporting TPRM program enhancement initiatives, including governance, policy, process, workflow, and operating model improvements, as client needs arise
- Evaluating third-party controls, documentation, and questionnaire responses in accordance with client standards and regulatory expectations
- Identifying third-party risks, gaps, and remediation considerations across information security, compliance, operational, and vendor management domains
- Delivering executive-level reporting, presentations, and recommendations to client leadership
- Managing, mentoring, coaching, and developing consultants and senior consultants across engagements
- Providing performance feedback, engagement oversight, and career development support for team members
- Supporting hiring, onboarding, staffing, and resource planning activities within the practice
- Supporting business development initiatives, client relationship management, and practice growth efforts
Our clients operate in and our team members work across the following industries:
- Financial Services
- Pharmaceutical
- Life Sciences
- Biotechnology
- Healthcare
- Manufacturing
- Technology, Media and Telecommunications
Basic Qualifications
- Bachelor's Degree
- 5-8+ years of experience in Third Party Risk Management, vendor risk management, operational risk, compliance, risk advisory, or related consulting functions
- One or more of the following certifications required
- Certified Third-Party Risk Professional (CTPRP)
- Certified Vendor Risk Management Professional (CVRMP)
- Shared Assessments or other vendor risk management certification
- CISM
- CRISC
- Familiarity with information security and regulatory frameworks such as the Interagency Guidance, NIST, ISO 27001, SOC 2, HIPAA, PCI DSS, HITRUST, or similar standards
- Experience managing teams and personnel within a consulting, advisory, or professional services environment
- Experience managing multiple client engagements and stakeholders in a fast-paced environment
- Strong understanding of third-party risk lifecycle management, including due diligence, risk assessments, ongoing monitoring, issue management, and remediation tracking
- Experience managing multiple projects and teams in a fast-paced consulting environment
- Demonstrated leadership experience overseeing project execution, client relationships, and team performance
- Proven ability to learn new technologies and systems, especially through independent research and self-study
- Strong verbal and written communication skills with the ability to present technical information to both technical and executive audiences
- Ability to manage project schedules, budgets, staffing, and client expectations
- Ability to travel domestically an average of 20%-50% per year
Desired Qualifications
- Experience working within a third party program at a financial institution or consulting on third party programs at financial institutions
- Experience with Archer, ProcessUnity, ServiceNow, OneTrust, or other GRC/VRM platforms
- Experience with security ratings platforms and continuous monitoring solutions
- Experience leading teams and mentoring junior professionals in a consulting or advisory environment
- Bilingual capabilities preferred
- Open to remote work arrangements
We expect the candidate to uphold Crowe's values of Care, Trust, Courage, and Stewardship. These values define who we are. We expect all of our people to act ethically and with integrity at all times.
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire. Crowe is not sponsoring for work authorization at this time.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Crowe, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $104,500.00 - $213,800.00 per year.Our Benefits:
Your exceptional people experience starts here. At Crowe, we know that great peopleare what makes a great firm. We care about our people and offer employees a comprehensive total rewards package. Learn more about what working at Crowe can mean for you!
How You Can Grow:
We will nurture your talent in an inclusive culture that values diversity. You will have the chance to meet on a consistent basis with your Career Coach that will guide you in your career goals and aspirations. Learn more about where talent can prosper!
More about Crowe:
Crowe (www.crowe.com) is one of the largest public accounting, consulting and technology firms in the United States. Crowe uses its deep industry expertise to provide audit services to public and private entities while also helping clients reach their goals with tax, advisory, risk and performance services. Crowe is recognized by many organizations as one of the country's best places to work. Crowe serves clients worldwide as an independent member of Crowe Global, one of the largest global accounting networks in the world. The network consists of more than 200 independent accounting and advisory services firms in more than 130 countries around the world.
Crowe LLP provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, sexual orientation, gender identity or expression, genetics, national origin, disability or protected veteran status, or any other characteristic protected by federal, state or local laws.
Crowe LLP does not accept unsolicited candidates, referrals or resumes from any staffing agency, recruiting service, sourcing entity or any other third-party paid service at any time. Any referrals, resumes or candidates submitted to Crowe, or any employee or owner of Crowe without a pre-existing agreement signed by both parties covering the submission will be considered the property of Crowe, and free of charge.
Crowe will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws.Please visit our webpage to see notices of the various state and local Ban-the-Box laws and Fair Chance Ordinances, where applicable.
We are committed to a merit-based hiring process, evaluating all candidates consistently using objective, job-related criteria such as relevant experience, demonstrated skills, measurable impact, and alignment with the role's responsibilities, and making employment decisions in a fair and inclusive manner free from discrimination.
If you are interested in applying for employment with Crowe and are in need of an accommodation or require special assistance to navigate our website or to complete your application, please visit our Applicant Assistance and Accommodations page for more information: https://careers.crowe.com/crowe-applicant-assistance-and-accommodation
About Crowe
Sourced by ZipRecruiter
Crowe (www.crowe.com) is one of the largest public accounting, consulting and technology firms in the United States. Crowe uses its deep industry expertise to provide audit services to public and private entities while also helping clients reach their goals with tax, advisory, risk and performance services. Crowe is recognized by many organizations as one of the country's best places to work. Crowe serves clients worldwide as an independent member of Crowe Global, one of the largest global accounting networks in the world. The network consists of more than 200 independent accounting and advisory services firms in more than 130 countries around the world.
Industry
Accounting services
Company size
1,001 - 5,000 Employees
Headquarters location
Chicago, IL, US