Third Party Risk Management Jobs
Third Party Risk Management jobs are open across banking, insurance, healthcare, and technology, from analyst to director level, with specializations in vendor due diligence, contract compliance, and fourth-party risk oversight. Find a role that fits from the openings below and apply directly.
Find JobsOverview
Showing 5 of 26+ Third Party Risk Management jobs
Job Description and Requirements
The Third-Party Risk Management (TPRM) Senior Risk Analyst will assist in the execution of the vendor contract management process at RBFCU. The TPRM Senior Risk Analyst will be responsible for monitoring workflows and managing assignments within the Governance, Risk & Compliance (GRC) tool, communicating with other business units regarding contracts, completing contract review checklists & reviews, coordinating with the Legal Department as needed, ensuring proper contractual signatures are obtained & retained, and processing contract terminations.
Essential Functions and Responsibilities:
- Manages contract analyst workflow queue within Governance, Risk and Compliance (GRC) software.
- Prioritizes contract workflow depending on urgency of contract request.
- Reviews contracts and completes contract checklist to prevent potential disputes, financial risk, and Information Security Risk.
- Ensures appropriate New Vendor Analysis and or vendor Due Diligence is linked to contract review.
- Identifies key risks associated with vendor service/product to ensure appropriate contractual protections are in place.
- Performs contract review by comparing Renewal/Statement of Work (SOW) contracts against master contract terms and conditions for any possible changes or new risks.
- Manages Pending Fully Executed Contract workflow queue by obtaining countersigned contract and upload to the contract record within the GRC software.
- Manages termination requests by preparing termination letters to terminate vendor/service & collaborating with vendor relationship owners.
- Manages multiple tasks simultaneously, uses critical thinking, analytical, and problem-solving skills to perform daily tasks.
- Collaborates and trains business units / relationship owners using strong communication and interpersonal skills.
- Protects the credit union from vendor risks using strong attention to detail when reviewing contracts.
- Cross trains and learns other areas of TPRM to serve as backup, if needed.
- All other duties as assigned (note: essential functions and responsibilities may change or new ones may be assigned at any time with or without notice).
Requirements
- High School Diploma or G.E.D.
- Minimum of five years of Third-Party Risk Management, contract or vendor process experience
- Experience reviewing contracts and understand contract laws and terms
- Must be able to work independently
- Open to obtaining certifications
- Able to work in fast-paced environment with heavy contract volume
- Possess strong analytical skills and develop creative solutions to support business needs
- Excellent organizational, communication and interpersonal skills
- Meticulous attention to detail
- Proficient knowledge of Microsoft Excel, Outlook, and Teams
Preferred:
- Degree
- Knowledge/experience with GRC Software: Quantivate
All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.
Job Description and Requirements
The Third-Party Risk Management (TPRM) Senior Risk Analyst will assist in the execution of the vendor contract management process at RBFCU. The TPRM Senior Risk Analyst will be responsible for monitoring workflows and managing assignments within the Governance, Risk & Compliance (GRC) tool, communicating with other business units regarding contracts, completing contract review checklists & reviews, coordinating with the Legal Department as needed, ensuring proper contractual signatures are obtained & retained, and processing contract terminations.
Essential Functions and Responsibilities:
- Manages contract analyst workflow queue within Governance, Risk and Compliance (GRC) software.
- Prioritizes contract workflow depending on urgency of contract request.
- Reviews contracts and completes contract checklist to prevent potential disputes, financial risk, and Information Security Risk.
- Ensures appropriate New Vendor Analysis and or vendor Due Diligence is linked to contract review.
- Identifies key risks associated with vendor service/product to ensure appropriate contractual protections are in place.
- Performs contract review by comparing Renewal/Statement of Work (SOW) contracts against master contract terms and conditions for any possible changes or new risks.
- Manages Pending Fully Executed Contract workflow queue by obtaining countersigned contract and upload to the contract record within the GRC software.
- Manages termination requests by preparing termination letters to terminate vendor/service & collaborating with vendor relationship owners.
- Manages multiple tasks simultaneously, uses critical thinking, analytical, and problem-solving skills to perform daily tasks.
- Collaborates and trains business units / relationship owners using strong communication and interpersonal skills.
- Protects the credit union from vendor risks using strong attention to detail when reviewing contracts.
- Cross trains and learns other areas of TPRM to serve as backup, if needed.
- All other duties as assigned (note: essential functions and responsibilities may change or new ones may be assigned at any time with or without notice).
Requirements
- High School Diploma or G.E.D.
- Minimum of five years of Third-Party Risk Management, contract or vendor process experience
- Experience reviewing contracts and understand contract laws and terms
- Must be able to work independently
- Open to obtaining certifications
- Able to work in fast-paced environment with heavy contract volume
- Possess strong analytical skills and develop creative solutions to support business needs
- Excellent organizational, communication and interpersonal skills
- Meticulous attention to detail
- Proficient knowledge of Microsoft Excel, Outlook, and Teams
Preferred:
- Degree
- Knowledge/experience with GRC Software: Quantivate
All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.
See All Third Party Risk Management Jobs
Jump back to the full list of openings and apply to any third party risk management role that fits.
Find JobsThird Party Risk Management Job Market
A snapshot from current openings nationwide, updated as new roles post.
Who's Hiring
- Bank of China USA3
- AgFirst Farm Credit Bank2
- Amerihome Mortgage Company2
- Vanta2
- Bain Capital, LP1
Top Industries Hiring
- Banking & Financial Services12
- Technology & Software4
- Investment & Asset Management3
- Agriculture & Farming2
- Consulting & Professional Services2
What Employers Look For
The qualifications that appear most often in third party risk management jobs.
- Experience conducting vendor risk assessments and due diligence reviews
- Familiarity with risk frameworks such as NIST, ISO 27001, or SOC 2
- Ability to analyze contracts and service agreements for compliance gaps
- Proficiency with GRC platforms such as Archer, ServiceNow, or OneTrust
- Relevant certification such as CTPRP, CISA, or CRISC preferred
- Bachelor's degree in business, information security, finance, or a related field
Tips for Your Third Party Risk Management Job Search
Tailor your resume to framework language
Hiring managers in this field scan for specific frameworks like NIST, ISO 27001, and SOC 2. Mirror the exact language from each job posting in your resume's experience bullets so your background maps directly to what the role requires.
Quantify your vendor portfolio scope
Vague claims about managing vendors won't differentiate you. State the number of third-party relationships you assessed, the risk tiers involved, and any reduction in critical findings you drove. Concrete scope signals hands-on operational experience.
Target roles by industry vertical carefully
Third party risk management requirements differ sharply between financial services, healthcare, and tech. A banking role often demands OCC or Fed guidance familiarity, while a healthtech role prioritizes HIPAA vendor compliance. Filter openings by vertical before applying.
Apply early to roles that fit
Migrate Mate lists third party risk management openings from across the United States in one place, so you can find roles that match and apply directly to each listing.
Prepare a risk scenario for interviews
Most third party risk management interviews include a case question about a vendor that fails a control assessment mid-contract. Walk through your decision framework out loud: escalation path, remediation timeline, and when to recommend offboarding. Rehearse this before every round.
Negotiate scope before accepting an offer
Before signing, clarify whether the role owns policy-writing, tooling decisions, and executive reporting, or just conducts assessments. Scope ambiguity is common in this function. Asking upfront signals maturity and helps you avoid a role narrower than the title suggests.
Third Party Risk Management Jobs: Frequently Asked Questions
Which companies are hiring the most third party risk managements?
The companies hiring the most third party risk managements right now include Bank of China USA, AgFirst Farm Credit Bank, and Amerihome Mortgage Company, with the largest share of openings in New York, Massachusetts, and South Carolina, based on current listings on Migrate Mate as of June 2026. Financial services and large health systems consistently post the highest volume of these roles.
How many third party risk management jobs are remote?
About 42% of third party risk management openings are fully remote or hybrid as of June 2026, reflecting strong demand for this function across distributed organizations. Vendor assessment and policy work tend to be the most remote-friendly sub-areas, while roles with board or executive reporting responsibilities are more often hybrid or on-site.
How do you become a third party risk management?
Start with a degree in business, information security, finance, or a related field, then build foundational experience in compliance, audit, or procurement where you interact with external vendors. Pursue a certification such as CTPRP or CISA to validate your risk assessment skills. From there, move into a junior third party risk analyst role and progress by taking ownership of end-to-end vendor lifecycle management.
How do you get hired in third party risk management with little experience?
Entry points typically come through adjacent roles in internal audit, IT compliance, or procurement, where you already interact with third-party vendors. Demonstrating familiarity with a GRC tool, even through self-study or a certification program, makes a meaningful difference. Emphasize any project where you evaluated an external supplier, contractor, or software vendor against defined criteria, even if the title wasn't explicitly risk-focused.
What does the third party risk management interview process look like?
Expect a recruiter screen focused on your framework knowledge and vendor portfolio experience, followed by a technical round with a risk or compliance manager that often includes a case scenario about a vendor that fails an assessment. Later rounds typically involve a hiring manager discussion about risk appetite, escalation processes, and cross-functional collaboration with legal, IT, and procurement teams.
Where can I find and apply to third party risk management jobs?
You can find and apply to third party risk management jobs on Migrate Mate, which lists current openings from across the United States. Search the listings to find roles that match your experience and specialization, then apply directly to each one that fits.
See All Third Party Risk Management Jobs
Jump back to the full list of openings and apply to any third party risk management role that fits.
Find Jobs