Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Asurion

Senior Manager, Third Party Risk Management

Asurion

Senior Manager leading third-party risk management program at Asurion. Collaborating with cross-functional teams to mitigate vendor risks and enhance supply chain resilience.

Posted 6/29/2026full-timeSterling • Virginia • 🇺🇸 United StatesSeniorWebsite

About the role

Key responsibilities & impact
  • Own strategy, design, and continuous improvement of the Third-Party/Vendor Risk Management (TPRM) program
  • Define and maintain TPRM policy, standards, procedures, and risk-tiering methodology
  • Establish third-party risk appetite and tolerance thresholds with CISO and GRC leadership
  • Embed risk gates within sourcing, onboarding, contracting, renewal, and offboarding
  • Lead the full vendor risk lifecycle: intake, inherent-risk classification, due diligence, residual-risk determination
  • Operationalize inherent-risk tiering to scope assessment depth and cadence
  • Direct security, privacy, and resilience assessments using methodologies such as SIG/Shared Assessments
  • Evaluate fourth-party/Nth-party dependencies, vendor concentration, and systemic risk
  • Establish and lead risk reviews for third-party AI/GenAI tooling
  • Coordinate third-party incident response with SOC/IR
  • Manage the third-party risk register and findings inventory
  • Develop a standardized library of contractual security requirements
  • Define and report outcome-driven metrics and KRIs

Requirements

What you’ll need
  • 8+ years in information security, IT risk, or GRC
  • 4+ years focused on third-party/vendor risk management
  • 2+ years of direct people leadership managing analysts or a risk team
  • Strong working knowledge of NIST CSF 2.0, ISO 27001, SOC 2, PCI DSS
  • Experience reviewing assurance artifacts (SOC 2 Type II, ISO certifications, penetration test reports)
  • Hands-on experience with TPRM/GRC platforms and continuous monitoring/security-rating tools
  • Experience partnering with Procurement and Legal on vendor contracting and security/privacy terms
  • Bachelor’s degree in a related field or equivalent professional experience

Benefits

Comp & perks
  • Health insurance
  • 401(k) matching
  • Flexible work hours
  • Paid time off
  • Professional development opportunities

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Risk AssessmentRisk-Tiering MethodologySecurity AssessmentsContractual Security RequirementsMetrics and KRIs Definition
Soft Skills
LeadershipCollaborationCommunication
Certifications
SOC 2PCI DSS