×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Vendor Infrastructure IT Risk Manager - Chief Risk Office

Job in New York City, Richmond County, New York, 10261, USA
Listing for: Selby Jennings
Full Time position
Listed on 2025-12-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Salary/Wage Range or Industry Benchmark: 45 - 65 USD Hourly USD 45.00 65.00 HOUR
Job Description & How to Apply Below

Base pay range

$45.00/hr - $65.00/hr

Role

Senior Vice President (Cloud, Infrastructure & Software Development - EMEA & USA - Contracts) - Specialising in Financial Services

What  The Role?

We are looking for a Vendor Risk Manager with a strong background in Information Security, Operational Resilience, Technology Audit and/or Risk Management. You will work with our clients departments and subsidiaries to perform the inherent risk assessment of their vendor engagements, create and maintain the risk profile of vendors and vendor products / services, and drive control assessment and risk remediation activities across our vendor population while contributing to strategic initiatives to enhance the overall Vendor Risk program in line with our transformation roadmap.

Your work will add value to my clients departments and subsidiaries that use third parties to achieve their goals, by helping them appropriately manage vendor risk throughout the vendor lifecycle.

Responsibilities
  • Liaise with business and technology teams to understand their use of vendor services and products and appropriately assess the inherent risks related to information security, privacy, resiliency, concentration, regulatory compliance, subcontracting, location / geography, among others.
  • Maintain the vendor and vendor engagement inventory and risk profiles
  • Conduct due diligence control assessments, continuously monitor and report on Vendor and vendor engagement risks
  • Coordinate risk mitigation activities with vendors and client departments and subsidiaries
  • Interpret, train and enforce compliance with clients Vendor Risk Management Policy
  • Cultivate and leverage relationships with CISO, Legal, Compliance, Enterprise Risk Management (ERM) and other control functions to accomplish objectives
  • Lead key VRM activities and demonstrate understanding of the top and material risks affecting the client, our supply chains, and our clients
  • Act as subject matter expert on VRM matters supporting client departments for which you are responsible
  • Provide advisory support to client departments on risk
  • Provide and coordinate input to key compliance, legal and regulatory initiatives
  • Demonstrate existing or develop targeted material to deliver actionable risk reporting to client departments as needed
  • Participate in select risk committees / working groups
Qualifications
  • Bachelor  or master  degree in Computer Science, Information Security, Business Management or equivalent industry experience
  • 5+ years of experience working in the field of Risk Assurance, Risk Management, Internal Audit or other Compliance-related experience
  • An understanding of Cloud Computing and how to assess cloud-related risks
  • Familiarity with international regulations regarding third-party service providers
  • Knowledge of international regulations governing third-party service providers
  • Experience with industry frameworks and standards such as NIST 800-53, COBIT 5, ISO/IEC 27001/2, HITRUST, PCI DSS, CSA CAIQ/CCM, CIS CSC, and NIST 800-171
  • Understanding of global data privacy laws and regulations, including GDPR, Schrems II, CCPA, and HIPAA
  • Familiarity with emerging regulatory requirements, such as the Digital Operational Resilience Act (DORA) and the EU Artificial Intelligence Act
  • Experience working with vendor risk assessment frameworks and tools (e.g., SIG, VSAQ)
  • Technical knowledge in multiple risk domain areas such as application, architecture, system and network security, identity/access management, etc.
  • Knowledge of current Information Security threats, trends, and mitigations
  • Skilled in risk management, technical risk analysis, and making complex business/risk trade-off recommendations and decisions
  • Understanding of impact of financial, technology and privacy regulations on Fintech products and services
  • Demonstrated ability to lead and influence others
  • Senior level written and verbal communication skills
  • Demonstrated leadership, teamwork and collaboration skills
Nice to Have
  • An understanding of supplier agreements, contractual terms and service level agreements
  • Experience in developing and deploying operational performance metrics to measure IT security effectiveness and operational resilience
  • Experience with Cloud-based IT architectures and security
Seniority level
  • Mid-Senior level
Employment type
  • Contract
Job function
  • Information Technology
#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search