TPRM Technical Program Manager (Cybersecurity)

TL;DR

TPRM Technical Program Manager (Cybersecurity): Building and maturing Third-Party Risk Management (TPRM) programs across all phases of the vendor lifecycle with an accent on security risk assessments, compliance documentation, and defining TPRM methodologies. Focus on automating technical risk assessment methodologies, specifically for cloud security, data processing/privacy, and secure SDLC.

Location: Hybrid in Livingston, NJ, New York, NY, Sunnyvale, CA, or Bellevue, WA. Remote work may be considered for candidates located more than 30 miles from an office. Must be a U.S. person (U.S. citizen/national, U.S. lawful permanent resident, refugee, or asylee) to comply with export control regulations.

Salary: $143,000–$210,000

Company

hirify.global is The Essential Cloud for AI™ and a publicly traded company, delivering a platform for building and scaling AI with superior infrastructure performance.

What you will do

• Contribute to the Third-Party Risk Management (TPRM) strategy and roadmap, aligning with security and privacy objectives.
• Execute third-party security risk assessments, including analyzing security controls and compliance.
• Define TPRM methodologies and operational workflows, driving cross-functional consensus.
• Act as the SME for technical TPRM risks, communicating complex concepts to diverse audiences.
• Develop, implement, and automate technical risk assessment methodologies for cloud security, data processing/privacy, and secure SDLC.

Requirements

• 4+ years of hands-on experience in Third Party Risk Management, building or maturing a TPRM program in a fast-paced or cloud-native environment.
• Bachelor’s degree in Information Security, Computer Science, or equivalent job experience.
• Adept understanding of procurement, vendor lifecycle management, and security concepts (e.g., CISSP, Security+).
• Familiarity with industry-standard control frameworks and regulations (e.g., SOC 2, ISO 27001, NIST CSF, PCI DSS, GDPR, CCPA).
• Strong project and program management skills.
• Exceptional written and verbal communication skills, able to articulate technical risks to technical and executive audiences.
• Must be a U.S. person (U.S. citizen/national, U.S. lawful permanent resident, refugee, or asylee) to comply with export control regulations.

Nice to have

• Experience working with CSPs/Hyperscalers and cloud security certifications (e.g., CCSK, AWS/Azure Security).
• Experience integrating TPRM with CI/CD pipelines or DevSecOps practices for vendors.
• Expertise in data flow mapping and Data Protection Impact Assessments (DPIA/PIA).

Culture & Benefits

• Competitive base salary, discretionary bonus, and equity awards.
• Comprehensive benefits: medical, dental, vision (100% paid), life insurance, FSA, HSA.
• Tuition Reimbursement, ESPP, Mental Wellness, Family-Forming support, Paid Parental Leave.
• Flexible, full-service childcare support with Kinside and 401(k) with employer match.
• Flexible PTO, catered lunch in office/data center locations, and a casual work environment.
• Work culture focused on innovation, collaboration, and continuous learning in a hyper-growth stage.