Jobs · Finance

Sr. Third Party Risk Specialist

PayNearMe · United States · 3 wk ago
RemoteRemoteFinance$115k–$130k/yrFull-time

About the role

The Sr. Third Party Risk Specialist will own and evolve PNM's third-party risk program across vendor governance, risk assessment, due diligence, and continuous monitoring. This role requires a strategic thinker with a builder’s mindset, someone who can assess complex vendor risk, improve scalable processes, and influence alignment across various teams.

Responsibilities

  • Own and evolve enterprise-wide third-party security risk strategy, including automation, continuous monitoring, and emerging risk domains (e.g., AI/ML vendors)
  • Liaise with cross-functional teams and leadership to ensure consistent, thorough operationalization of third party security risk controls
  • Communicate complex vendor risk landscapes and prioritization decisions clearly to senior leadership
  • Drive alignment on third party risk tolerance, vendor management decisions, and mitigation strategies
  • Execute completion of and innovate efficiency strategies for incoming due diligence requests from partners and clients
  • Administer in-scope tech stack (e.g. BlackKite, Responsive, Serval, N8N)
  • Coach and develop team members, leading large-scale, cross-functional initiatives to mature TPRM capabilities and improve operational efficiency
  • Contribute to evolution of TPRM best practices across the organization
  • Maintain and improve third-party security risk framework artifacts, including risk assessment methodology, vendor tiering, control expectations, procedures, and reporting
  • Partner with Legal, Procurement, and business owners to ensure third-party security risks are appropriately documented, accepted, mitigated, or escalated
  • Monitor critical and high-risk vendors for control changes, risk signals, remediation progress, and ongoing compliance concerns

Qualifications

  • 7+ years in risk management, including ownership of program-level strategy, cross-functional influence, and transformation initiatives
  • Bachelor’s degree in Computer Science, Risk Management, or related field (or equivalent experience); advanced certifications preferred (e.g., CRISC, CISM, FAIR, or relevant emerging risk training)
  • Proven track record of spearheading third party risk program improvements with measurable impact
  • Hands-on experience managing third party AI risk
  • Excellent communication and stakeholder management skills—especially with senior engineering, product, and business leaders
  • Comfortable operating independently, managing ambiguity, and taking ownership at both strategic and tactical levels
  • Experience developing and managing comprehensive third party program plans, roadmaps, and status updates to keep stakeholders aligned and informed
  • Fluency in cyber risk methodologies – ability to communicate complex risk considerations and proposals to leadership and peers
  • Expertise in qualitative and quantitative third-party risk analysis, including the ability to translate risk into business impact
  • Substantial experience with AI/automation tools, as well as GRC, TPRM, security ratings, questionnaire automation, or workflow orchestration platforms
  • Working knowledge of relevant security and risk frameworks such as SIG, CSA STAR for AI, ISO 27001, SOC 2, PCI DSS, or NIST AI RMF

Preferred

  • Experience in payments, fintech, or regulated industries
  • Experience with third-party security risk management, client due diligence, and vendor governance in a regulated environment
  • Exposure to automation, continuous monitoring, security ratings, questionnaire platforms, or GRC workflow tools
  • Deep understanding of AI/ML vendor risk, including how AI-enabled services are assessed, monitored, and governed responsibly

Pay & Benefits

Annual Salary Range: $115,000 - $130,000 USD
Benefits: Competitive salary and benefits with growth-company options grant, fast-paced and professional work culture, stock options with standard startup vesting, $50 monthly communication expense stipend, $250 stipend to enhance your WFH setup, reimbursement for peripheral equipment, premium medical benefits including vision and dental (100% coverage for employees), company-sponsored life and disability insurance, paid parental bonding leave, paid sick leave, jury duty, bereavement, 401k plan, flexible time off, volunteer time off, 13 scheduled holidays

Equal Opportunity Employer

We are committed to creating a workplace where all employees thrive. We strive to cultivate a diverse workforce that enhances our products and services for the communities we serve. Applicants who represent all backgrounds are strongly encouraged to apply.

Similar jobs

Sr. Risk Specialist

Capital OneRichmond, VA· 1 wk ago
Finance$97k–$110k/yrapply on dsp.prng.co