Director – Third Party Risk Management
Job Summary / Introduction
A senior role responsible for leading an enterprise Third Party Risk Management program. This position ensures vendors meet security, compliance, and risk standards while protecting the organization through effective oversight of third-party relationships.
Detailed Job Description
Lead and evolve the third-party risk framework, including policies, governance, and controls. Oversee vendor due diligence, risk assessments, and ongoing monitoring across the full lifecycle from onboarding to offboarding.
Manage and develop a small team, ensuring consistent delivery and a strong risk-focused culture.
Skills & Experience
Core Requirements:
- Hands-on experience owning or overseeing a third-party or vendor risk function
- Solid grasp of the full vendor lifecycle, including assessment, onboarding, oversight, and exit processes
- Strong foundation in information security, enterprise risk, and regulatory compliance
- Track record of partnering with cross-functional groups such as Technology, Legal, Compliance, and Procurement
- Experience creating and implementing risk frameworks, controls, and governance structures
- Proven ability to lead, coach, and develop teams
- Skilled in risk reporting, metrics development, and monitoring key risk indicators
Desirable Background:
- Industry certifications such as CISM, CISA, CRISC, or equivalent
- Experience operating in regulated environments (e.g., financial services, insurance, healthcare)
- Background in building or enhancing third-party risk programs
- Exposure to GRC systems or risk management platforms (e.g., ServiceNow)
- Strong analytical mindset with the ability to translate data into insights
If interested, please apply to this job advert or reach out to [email protected]!
Please note: At this time, we are unable to offer visa sponsorship or H-1B transfers. Applicants must be authorized to work in the United States without the need for current or future sponsorship.
