Main Content

Manager, Vendor Risk Management

Position: Manager, Vendor Risk Management
Reports To: Director, Vendor Risk Management
Location: New York, NY

Position Summary:

The Manager, Vendor Risk Management is responsible for ensuring that TCH effectively identifies, assesses, manages, and reports vendor related risks. The role contributes toward the on-going improvement of TCH vendor risk management practices.  The Manager will be responsible for collaborating with internal stakeholders and subject matter experts to evaluate vendor risk at onboarding and periodically during the relationship lifecycle. The Manager must develop strong working relationships with key stakeholders throughout the organization in order to work across all functions - Information Security, Legal, Enterprise Risk Management, Technology and Operations, and other business functions.

Qualifications Required:

  • 5+ years of experience in Third Party Risk Management or other similar function, e.g., operational risk management or internal/external audit in the Banking/Finance industry
  • Hands-on execution of risk assessments 
  • Experienced in the review of vendor related due diligence documentation, e.g. SOC audit reports, SIGs and various industry certifications 
  • Experience with GRC tools (Archer preferred) 
  • Bachelor’s degree or higher
  • Proficient in Microsoft Suite products including Word, Excel, Visio, and PowerPoint
  • Strong critical thinking and analytical skills
  • Strong written and verbal communication skills
  • Able to influence across all levels and experienced at leading meetings
  • Build consensus and resolve conflicts, demonstrate good judgment
  • Ability to work both independently and in a team environment

Qualifications Desired:

  • Robust knowledge of third party risk management principles and practices 
  • Thorough understanding in risk management control frameworks and environments
  • Experience evaluating operational and information security risks and controls, including those related to cloud vendors
  • Experience with project and process enhancement related

Essential Functions and Responsibilities:

  • Lead the ongoing development and execution of vendor risk assessment processes including supplier risk assessment, due diligence, ongoing monitoring, and issue identification 
  • Manage Vendor Risk Lifecycle activities to completion, including Vendor tiering, onboarding SME engagement, ongoing monitoring, and offboarding processes 
  • Support development and implementation of Vendor Risk Management Policy, Processes, Tools, and Resources
  • Manage vendor related data within GRC tool
  • Manage reporting of vendor program related information
  • Maintain Standard Information Gathering (SIG) assessments related to TCH products
  • Develop strong understanding of business processes impacting the vendor risk management function
  • Keep up to date on industry best practices to support continuous process improvement

Physical Demands and Work Environment:

Work is generally sedentary in nature but may require standing and walking. The working environment is generally favorable. Lighting and temperature are adequate, and there are no hazardous or unpleasant conditions caused by noise, dust, etc. Work is generally performed within an office environment, with standard office equipment available. Travel may be required.
TCH places paramount importance on the health and safety of its employees, and, as such, we are taking all necessary steps to protect our workforce. Because this position may require business travel and/or working in close contact with colleagues and other third parties, TCH is requiring that the employee hired into this role present proof that they are fully vaccinated against COVID-19 during their first week of employment.

Apply Below*:

  • A letter of interest describing your experience and interest in the position
  • Your resume
  • Names and contact information of three references, or three letters of reference

* Please submit a single application per position.

Submit Your Resume