This role is responsible for designing and embedding third-party risk management (TPRM) into the end-to-end S2P lifecycle through workflow orchestration, lifecycle triggers, and execution guardrails.
This role is responsible for designing and embedding third-party risk management (TPRM) into the end-to-end S2P lifecycle through workflow orchestration, lifecycle triggers, and execution guardrails.
Technology Risk and Governance
$110K - $315K/yr
Establish clear governance and reporting for senior management and committees on material IT, cyber, third-party, and emerging technology risks, including key risk indicators and metrics. * Design ...
Technology Risk and Governance
$110K - $315K/yr
Establish clear governance and reporting for senior management and committees on material IT, cyber, third-party, and emerging technology risks, including key risk indicators and metrics. * Design ...
Senior Sourcing Consultant (HYBRID MA)
Worcester, MA ยท Hybrid
$151K - $152K/yr
Lead activities through all phases of the sourcing lifecycle (Strategy, Evaluation & Selection, Third-party Risk Management, Contract Management and Performance Management). * Manage business ...
Senior Sourcing Consultant (HYBRID MA)
Worcester, MA ยท Hybrid
$151K - $152K/yr
Lead activities through all phases of the sourcing lifecycle (Strategy, Evaluation & Selection, Third-party Risk Management, Contract Management and Performance Management). * Manage business ...
Senior Sourcing Consultant (HYBRID MA)
Worcester, MA ยท Hybrid
$151K - $152K/yr
Lead activities through all phases of the sourcing lifecycle (Strategy, Evaluation & Selection, Third-party Risk Management, Contract Management and Performance Management). * Manage business ...
Senior Sourcing Consultant (HYBRID MA)
Worcester, MA ยท Hybrid
$151K - $152K/yr
Lead activities through all phases of the sourcing lifecycle (Strategy, Evaluation & Selection, Third-party Risk Management, Contract Management and Performance Management). * Manage business ...
Identify the most important customer problems related to SaaS supply chain risk, third-party access ... Required qualifications * 7+ years of Product Management experience, ideally in B2B SaaS ...
Quick apply
Identify the most important customer problems related to SaaS supply chain risk, third-party access ... Required qualifications * 7+ years of Product Management experience, ideally in B2B SaaS ...
First Line Risk Sr Manager
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
First Line Risk Sr Manager
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
First Line Risk Sr Manager
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
New
First Line Risk Sr Manager
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
New
First Line Risk Sr Manager
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
First Line Risk Sr Manager
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
First Line Risk Sr Manager
Westwood, MA ยท On-site
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
New
First Line Risk Sr Manager
Westwood, MA ยท On-site
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
New
First Line Risk Sr Manager
Johnston, RI ยท On-site
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
First Line Risk Sr Manager
Johnston, RI ยท On-site
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
First Line Risk Sr Manager
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
First Line Risk Sr Manager
$117K - $153K/yr
These initiatives involve technology risk, model risk, third-party risk, and customer impact ... Risk Management Expertise * Analytical and Strategic Thinking * Regulatory and Compliance Knowledge
Senior Risk Manager: Payments
Johnston, RI ยท On-site
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Senior Risk Manager: Payments
Johnston, RI ยท On-site
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Senior Risk Manager: Payments
Boston, MA ยท On-site
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Senior Risk Manager: Payments
Boston, MA ยท On-site
Manage vendor and third-party risk oversight. * Support operational resilience, business continuity, and incident management. * Partner with audit, compliance, and regulators. Core Skills ...
Senior Sourcing Consultant (HYBRID MA)
Worcester, MA ยท On-site
$100K - $130K/yr
Lead activities through all phases of the sourcing lifecycle (Strategy, Evaluation & Selection, Third-party Risk Management, Contract Management and Performance Management). * Manage business ...
Senior Sourcing Consultant (HYBRID MA)
Worcester, MA ยท On-site
$100K - $130K/yr
Lead activities through all phases of the sourcing lifecycle (Strategy, Evaluation & Selection, Third-party Risk Management, Contract Management and Performance Management). * Manage business ...
Senior Consultant - ServiceNow
Boston, MA ยท Remote
... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Supporting functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service ...
Senior Consultant - ServiceNow
Boston, MA ยท Remote
... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Supporting functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service ...
Consultant - ServiceNow
Boston, MA ยท Remote
... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Contributing to functional design and configuration of ServiceNow solutions, including forms, workflows, notifications ...
Consultant - ServiceNow
Boston, MA ยท Remote
... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Contributing to functional design and configuration of ServiceNow solutions, including forms, workflows, notifications ...
Third Party Risk Manager information
See Woonsocket, RI salary details
$49.3K - $59.7K
4% of jobs
$59.7K - $70K
6% of jobs
$70K - $80.3K
11% of jobs
$84.2K is the 25th percentile. Wages below this are outliers.
$80.3K - $90.6K
11% of jobs
The median wage is $98.8K / yr.
$90.6K - $101K
23% of jobs
$101K - $111.3K
13% of jobs
$118.1K is the 75th percentile. Wages above this are outliers.
$111.3K - $121.6K
12% of jobs
$121.6K - $131.9K
8% of jobs
$131.9K - $142.3K
6% of jobs
$142.3K - $152.6K
4% of jobs
$152.6K - $162.9K
2% of jobs
$49.3K
$106.9K
$162.9K
How much do third party risk manager jobs pay per year?
What is the difference between Third Party Risk Manager vs Vendor Risk Analyst?
| Aspect | Third Party Risk Manager | Vendor Risk Analyst |
|---|---|---|
| Credentials | Certifications like CRISC, CTPRP often preferred | Certifications such as CRISC, CTPRP common |
| Work Environment | Oversees multiple vendors and third-party relationships at strategic level | Focuses on assessing specific vendor risks and compliance |
| Employer & Industry Usage | Used in finance, healthcare, and large corporations managing third-party risks | Common in IT, finance, and procurement departments |
| Search & Comparison Intent | Often compared for broader risk management roles | Compared for detailed vendor risk assessments |
The Third Party Risk Manager oversees the overall risk associated with third-party vendors, focusing on strategic risk mitigation. The Vendor Risk Analyst concentrates on evaluating individual vendors' risks and compliance. While both roles require similar certifications and work in related environments, the Risk Manager has a broader scope, whereas the Analyst specializes in detailed assessments.
What are the key skills and qualifications needed to thrive as a Third Party Risk Manager, and why are they important?
What is a Third Party Risk Manager?
How does a Third Party Risk Manager typically collaborate with other departments to manage vendor risks?

Full-time
Medical, Dental, Vision, Retirement, PTO
Posted 14 hours ago
Job description
Company Overview
Vertex is a global biotechnology company that invests in scientific innovation to create transformative medicines for people with serious diseases. Guided by a commitment to patients, scientific excellence, and operational integrity, Vertex brings together deep expertise, collaboration, and innovation to solve some of the most complex challenges in healthcare.
Role Summary
Vertex is seeking a Manager, TPRM Workflow & Risk Orchestration to join the Global Sourcing & Procurement organization within the Source-to-Pay (S2P) Center of Excellence. This role is responsible for designing and embedding third-party risk management (TPRM) into the end-to-end S2P lifecycle through workflow orchestration, lifecycle triggers, and execution guardrails.
The Manager will ensure that supplier risk identification, assessment, and mitigation are seamlessly integrated across intake, sourcing, contracting, supplier onboarding, and ongoing supplier lifecycle processes. This individual will translate enterprise risk frameworks into practical, scalable workflows that support compliant execution while preserving speed, usability, and a strong internal customer experience.
This is a highly cross-functional individual contributor role with significant influence across Sourcing, Legal, Risk, Compliance, Procurement Operations, Analytics, and Digital/IT. The role owns workflow design and execution enablement, while partnering with stakeholders who manage enterprise risk policy and core technology platforms.
Key Responsibilities
TPRM Workflow & Lifecycle Orchestration
- Design, implement, and maintain end-to-end TPRM workflows aligned to key supplier lifecycle events, including onboarding, contract initiation, renewal, and ongoing monitoring
- Embed risk assessment, escalation, review, and remediation steps into S2P workflows to support consistent and audit-ready execution
- Balance strong risk coverage with operational efficiency and a user-friendly experience
Trigger-Based Risk Integration
- Define and operationalize trigger-based models that initiate risk assessments based on supplier criticality, geography, service type, and lifecycle events
- Integrate TPRM requirements into intake, guided buying, and orchestration tools
- Ensure alignment of risk workflows across sourcing, contracting, and supplier management processes
Supplier Onboarding & Master Data Integration
- Embed TPRM workflows into supplier onboarding and vendor master data processes so that complete and accurate supplier information triggers the right risk activities
- Define required supplier data elements, validation rules, approval flows, and controls that support risk classification, segmentation, and monitoring
- Partner with Master Data and Procurement Operations teams to align supplier data processes with TPRM workflow requirements
- Identify and resolve data quality gaps that affect risk visibility, compliance, or workflow execution
System Enablement & Workflow Automation
- Translate TPRM workflow and supplier data requirements into system configurations across onboarding, vendor master, and risk assessment tools
- Ensure supplier master data structures support effective workflow triggers and downstream risk processes
- Support user acceptance testing (UAT), release readiness, and post-go-live stabilization for TPRM-related enhancements
- Drive scalable, standardized workflow designs aligned with broader S2P orchestration objectives
Continuous Improvement & Performance Management
- Monitor workflow performance, cycle times, control effectiveness, and overall risk coverage
- Identify and implement enhancements that reduce process friction and improve compliance
- Partner with Analytics teams to define KPIs, dashboards, and reporting requirements for workflow performance and risk visibility
Operating Model Alignment
- Define clear roles, responsibilities, and handoffs across TPRM, Sourcing, Contracting, Legal, Risk, and Operations teams
- Support issue resolution and escalation for complex or high-risk supplier scenarios
- Ensure alignment with S2P process standards, governance frameworks, and enterprise orchestration strategy
Required Qualifications
- Bachelor's degree required; advanced degree or relevant certifications preferred
- 6-8+ years of experience in procurement, third-party risk management, sourcing, contracting, vendor master, supplier onboarding, or process design roles
- Strong understanding of supplier risk management frameworks and procurement lifecycle processes
- Demonstrated experience designing, improving, or operationalizing cross-functional workflows and business processes
- Experience working in vendor master, supplier onboarding, procurement operations, or other data-driven process environments
- Strong understanding of how supplier data quality and governance impact downstream risk management, compliance, and workflow automation
- Proven ability to collaborate across functions and influence stakeholders without direct authority
- Strong analytical, organizational, and problem-solving skills with attention to detail
Technical Skills
- Third-party risk management (TPRM) workflow design and orchestration
- Source-to-Pay (S2P), Source-to-Contract (S2C), and supplier lifecycle process knowledge
- Supplier onboarding and vendor master data process design
- Risk classification, segmentation, and lifecycle trigger models
- Business process mapping, workflow design, and control integration
- Data governance, validation rules, and approval workflow design
- System enablement and business requirements translation
- User acceptance testing (UAT), release support, and post-go-live stabilization
- KPI development, dashboard requirements, and performance reporting
- Cross-functional process integration across Procurement, Legal, Risk, Compliance, and Digital/IT
Preferred Skills
- Experience operating within a Center of Excellence (COE) or center-led procurement model
- Familiarity with TPRM tools such as ProcessUnity or similar platforms
- Familiarity with contract lifecycle management (CLM) tools such as Icertis
- Experience with orchestration, intake, or guided buying tools
- Experience in highly regulated environments requiring strong controls, auditability, and compliance
- Hands-on experience with supplier master data, onboarding workflows, or vendor management processes in a Procure-to-Pay or shared services environment
- Exposure to workflow automation, lifecycle triggers, and scalable control design
- Experience partnering with Digital/IT teams to translate business needs into system-enabled solutions
Benefits
Vertex offers a competitive and comprehensive rewards package designed to support employees professionally and personally, including:
- Competitive compensation
- Comprehensive health and wellness benefits
- Retirement savings programs
- Paid time off and company holidays
- Professional development and career growth opportunities
- Collaborative, mission-driven culture
- Hybrid work flexibility for eligible roles
#LI-AA1
#LI-Hybrid
Pay Range:
$121,200 - $181,800
Disclosure Statement:
The range provided is based on what we believe is a reasonable estimate for the base salary pay range for this job at the time of posting. This role is eligible for an annual bonus and annual equity awards. Some roles may also be eligible for overtime pay, in accordance with federal and state requirements. Actual base salary pay will be based on a number of factors, including skills, competencies, experience, and other job-related factors permitted by law.
At Vertex, our Total Rewards offerings also include inclusive market-leading benefits to meet our employees wherever they are in their career, financial, family and wellbeing journey while providing flexibility and resources to support their growth and aspirations. From medical, dental and vision benefits to generous paid time off (including a week-long company shutdown in the Summer and the Winter), educational assistance programs including student loan repayment, a generous commuting subsidy, matching charitable donations, 401(k) and so much more.
Flex Designation:
Hybrid-Eligible Or On-Site Eligible
Flex Eligibility Status:
In this Hybrid-Eligible role, you can choose to be designated as:
1. Hybrid: work remotely up to two days per week; or select
2. On-Site: work five days per week on-site with ad hoc flexibility.
Note: The Flex status for this position is subject to Vertex's Policy on Flex @ Vertex Program and may be changed at any time.
#LI-Hybrid
Company Information
Vertex is a global biotechnology company that invests in scientific innovation.
Vertex is committed to equal employment opportunity and non-discrimination for all employees and qualified applicants without regard to a person's race, color, sex, gender identity or expression, age, religion, national origin, ancestry, ethnicity, disability, veteran status, genetic information, sexual orientation, marital status, or any characteristic protected under applicable law. Vertex is an E-Verify Employer in the United States. Vertex will make reasonable accommodations for qualified individuals with known disabilities, in accordance with applicable law.
Any applicant requiring an accommodation in connection with the hiring process and/or to perform the essential functions of the position for which the applicant has applied should make a request to the recruiter or hiring manager, or contact Talent Acquisition at ApplicationAssistance@vrtx.com
About Vertex Pharmaceuticals
Sourced by ZipRecruiter
Industry
Biotechnology research and development
Company size
1,001 - 5,000 Employees
Headquarters location
Boston, MA, US
Year founded
1989