Manager, Third Party Risk Management (Cybersecurity)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Manager, Third Party Risk Management (Cybersecurity): Leading a team to assess and manage risks within the third-party vendor ecosystem with an accent on GRC program scaling and automation. Focus on integrating AI-driven capabilities into risk scoring, optimizing ServiceNow TPRM workflows, and enforcing cybersecurity policies.
Location: Remote (USA)
Salary: $125,000 - $180,000
Company
Global leader in cybersecurity providing an AI-native platform designed to stop breaches across all industries.
What you will do
- Lead, mentor, and develop a team of 4 TPRM professionals, fostering accountability and operational excellence.
- Oversee the full vendor risk lifecycle, including inherent risk tiering, due diligence, and residual risk determinations.
- Drive the implementation of automation and AI-driven capabilities within ServiceNow TPRM to enhance risk scoring and workflow efficiency.
- Develop and maintain TPRM policies and standards in alignment with industry frameworks like NIST, ISO 27001, and SOC 2.
- Partner with Procurement, Legal, and IT stakeholders to embed risk considerations into the vendor engagement process.
- Define and track KPIs and metrics to demonstrate program maturity to senior leadership.
Requirements
- 10+ years of experience in Third Party Risk Management, GRC, or information security risk.
- 3+ years of people management experience with a proven ability to lead teams.
- Hands-on expertise with the ServiceNow Third Party Risk Management (TPRM) module.
- Deep understanding of security frameworks including NIST CSF, ISO 27001, SOC 2, and NIST 800-53.
- Must be based in the USA.
- Strong communication skills to translate technical risk concepts for business audiences.
Nice to have
- Experience with cloud environments and CrowdStrike products or services.
- Practical experience in Software Development and Secure Coding best practices.
- Experience performing integration risk assessments and threat modeling for third-party software.
- Proficiency with other leading GRC products.
Culture & Benefits
- Market-leading compensation and equity awards.
- Comprehensive physical and mental wellness programs.
- Competitive vacation and holiday packages for recharge.
- Paid parental and adoption leaves.
- Professional development opportunities available for all employees.
- Remote-first culture with flexibility and autonomy.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →