Manager, Third Party Risk
About the role
The Manager, Third Party Risk Management (TPRM) oversees a customized third-party risk program and a skilled team of analysts. This individual leads, coaches, develops, and oversees day-to-day activities of the TPRM team; provides clear vision, strategic direction, and career development support. They manage TPRM processes supporting specialized compliance obligations including CCPA, Critical Infrastructure/National Security requirements, SEC/SOX, and emerging regulatory frameworks. They establish and maintain strong relationships with key stakeholders (Procurement, Legal, DSO, Privacy, Product & Technology) and deliver TPRM training and awareness programs.
Responsibilities
- Lead, coach, develop, and oversee day-to-day activities of the TPRM team; provide clear vision, strategic direction, and career development support
- Review completed vendor assessment reports for quality and consistency; ensure TPRM procedures are followed and drive program maturity
- Manage TPRM processes supporting specialized compliance obligations including CCPA, Critical Infrastructure/National Security requirements, SEC/SOX, and emerging regulatory frameworks
- Establish and maintain strong relationships with key stakeholders (Procurement, Legal, DSO, Privacy, Product & Technology); deliver TPRM training and awareness programs
- Oversee special project initiatives that enhance TPRM capabilities, including tooling, process automation, and AI-assisted risk workflows
Requirements
Required:
- Bachelor's Degree plus 3 years of related work experience
- OR advanced degree with 1 year of related work experience
- OR combination of education and experience deemed equivalent
- 4-7 years Professional experience in a large corporate environment in operations, finance, legal, audit or risk management
Preferred:
- Acceptable areas of study include Business, Accounting, Finance, or related field
- 2-4 years Leading cross-functional initiatives, projects, and/or program experience
- 2+ years Managing direct reports
- Experience working with GRC or TPRM platforms (e.g., ServiceNow, Prevalent, Archer, OneTrust, or similar)
- Experience using AI-powered tools or analytics platforms (e.g., HiredScore, Copilot, ChatGPT Enterprise, or similar) to improve risk workflows, reporting, or decision-making
Qualifications
Required:
- Third Party Risk Management - Demonstrated ability to design, manage, and mature a TPRM program including vendor tiering, risk assessments, and remediation tracking
- Risk Management - Ability to identify, assess, and prioritize vendor and operational risks across the enterprise
- People Management - Experience setting goals, providing feedback, conducting performance reviews, and developing talent on a direct-report team
- Leadership - Ability to motivate and guide team members, drive accountability, and model T-Mobile values
- Communication - Strong written and verbal skills; ability to translate complex risk findings into clear, actionable guidance for non-technical stakeholders
- Analytical Thinking - Ability to synthesize data from multiple sources to draw conclusions and prioritize risk mitigation efforts
- Stakeholder Management - Proven ability to build trusted relationships with Procurement, Legal, DSO, Privacy, and Business Owners
- Project Management - Ability to manage multiple concurrent initiatives with defined timelines, owners, and deliverables
- AI Tool Proficiency - Practical experience using AI-assisted tools (e.g., AI scoring platforms, generative AI, or workflow automation) to improve program efficiency, surface insights, or accelerate assessment cycles
- Business Acumen - Understanding of how third-party risk decisions connect to business strategy, cost, and operational continuity
Preferred:
- Regulatory & Compliance Knowledge - Familiarity with CCPA, SOX, SEC cyber disclosure rules, NIST frameworks, or critical infrastructure security requirements
- Quality Reporting - Experience producing executive-level reporting, dashboards, or risk scorecards
- Training Delivery - Ability to design and deliver TPRM awareness training for cross-functional audiences
- New Program Development - Experience building or significantly expanding a risk program, including policy development and process documentation
Skills and Abilities
Required:
- Third Party Risk Management - Demonstrated ability to design, manage, and mature a TPRM program including vendor tiering, risk assessments, and remediation tracking
- Risk Management - Ability to identify, assess, and prioritize vendor and operational risks across the enterprise
- People Management - Experience setting goals, providing feedback, conducting performance reviews, and developing talent on a direct-report team
- Leadership - Ability to motivate and guide team members, drive accountability, and model T-Mobile values
- Communication - Strong written and verbal skills; ability to translate complex risk findings into clear, actionable guidance for non-technical stakeholders
- Analytical Thinking - Ability to synthesize data from multiple sources to draw conclusions and prioritize risk mitigation efforts
- Stakeholder Management - Proven ability to build trusted relationships with Procurement, Legal, DSO, Privacy, and Business Owners
- Project Management - Ability to manage multiple concurrent initiatives with defined timelines, owners, and deliverables
- AI Tool Proficiency - Practical experience using AI-assisted tools (e.g., AI scoring platforms, generative AI, or workflow automation) to improve program efficiency, surface insights, or accelerate assessment cycles
- Business Acumen - Understanding of how third-party risk decisions connect to business strategy, cost, and operational continuity
Preferred:
- Regulatory & Compliance Knowledge - Familiarity with CCPA, SOX, SEC cyber disclosure rules, NIST frameworks, or critical infrastructure security requirements
- Quality Reporting - Experience producing executive-level reporting, dashboards, or risk scorecards
- Training Delivery - Ability to design and deliver TPRM awareness training for cross-functional audiences
- New Program Development - Experience building or significantly expanding a risk program, including policy development and process documentation
Benefits
At T-Mobile, employees in regular, non-temporary roles are eligible for an annual bonus or periodic sales incentive or bonus, based on their role. Most Corporate employees are eligible for a year-end bonus based on company and/or individual performance and which is set at a percentage of the employee’s eligible earnings in the prior year. Certain positions in Customer Care are eligible for monthly bonuses based on individual and/or team performance. To find the pay range for this role based on hiring location, click here.
Pay
The pay range above is the general base pay range for a successful candidate in the role. The successful candidate’s actual pay will be based on various factors, such as work location, qualifications, and experience, so the actual starting pay will vary within this range.
Schedule
T-Mobile USA, Inc. does not specify a standard schedule for this role.