Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Replit

Third Party Risk Management Lead

Replit

Lead Security Vendor Risk & Contract Reviews at Replit, focusing on independent evaluation and managing legal partnerships. Enhance vendor risk management and build customer trust in hybrid environment.

Posted 7/10/2026full-timeFoster City • California • 🇺🇸 United StatesSenior💰 $210,000 - $270,000 per yearWebsite

About the role

Key responsibilities & impact
  • Run substantive third-party risk management (TPRM), independently evaluating real risk, not just processing questionnaire responses
  • Review SOC 2 reports, pen test findings, and architecture documentation to form an independent view of vendor risk, extending the same rigor to AI/model providers
  • Partner with Legal on vendor and AI contract terms, including DPAs, subprocessor agreements, and AI-specific provisions
  • Review contracts for non-standard security language when flagged by Legal or deal desk, and recommend redlines
  • Maintain the vendor and AI/model risk register, feeding findings into the company's master risk register
  • Enable sales through maturing the customer trust program
  • Build the capability for continuous monitoring of vendor ecosystem

Requirements

What you’ll need
  • 8+ years in third-party/vendor risk management, security risk, or a related GRC role
  • Demonstrated ability to independently assess vendor risk rather than relying on questionnaire responses alone, fluent in reading SOC 2 reports, ISO certificates, pen test summaries, and architecture documentation
  • Experience reviewing or redlining security and data-handling contract language, ideally in partnership with a legal team
  • Working knowledge of data privacy fundamentals (GDPR, CCPA) as they relate to vendor and subprocessor relationships
  • Strong cross-functional collaboration skills — this role touches Legal, Engineering, Product, and Sales regularly
  • Experience building repeatable, scalable vendor review processes rather than inheriting an existing one
  • Bonus Qualifications include direct experience assessing foundation model providers or AI/ML vendors specifically

Benefits

Comp & perks
  • Competitive Salary & Equity
  • 401(k) Program with a 4% match (*US Only*)
  • Health, Dental, Vision and Life Insurance
  • Short Term and Long Term Disability
  • Paid Parental, Medical, Caregiver Leave
  • Flexible Time Off (FTO) + Holidays
  • Commuter Benefits (*In-Office Only*)
  • Monthly Wellness Stipend
  • Autonomous Work Environment
  • In Office Set-Up Reimbursement (*In-Office Only*)
  • Quarterly Team Gatherings
  • In Office Amenities (*In-Office Only*)

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Vendor Risk ManagementSOC 2 Report ReviewISO Certificate EvaluationPen Test Summary AnalysisArchitecture Documentation ReviewSecurity Language RedliningData Privacy ComplianceVendor Review Process DevelopmentAI/ML Vendor AssessmentContinuous Monitoring Capability
Soft Skills
Cross-Functional CollaborationIndependent Assessment