... Oversee vendor relationships related to risk management, compliance tooling, and architectural services. • Ensure responsible financial stewardship and alignment with strategic priorities.
... Oversee vendor relationships related to risk management, compliance tooling, and architectural services. • Ensure responsible financial stewardship and alignment with strategic priorities.
What You'll Contribute The Director of Vendor Quality Assurance will be responsible for leading end-to-end governance, risk management, and performance oversight of third-party vendor relationships.
What You'll Contribute The Director of Vendor Quality Assurance will be responsible for leading end-to-end governance, risk management, and performance oversight of third-party vendor relationships.
What You'll Contribute The Director of Vendor Quality Assurance will be responsible for leading end-to-end governance, risk management, and performance oversight of third-party vendor relationships.
What You'll Contribute The Director of Vendor Quality Assurance will be responsible for leading end-to-end governance, risk management, and performance oversight of third-party vendor relationships.
BAS Project Manager NC
New Castle, DE · On-site
Review and approve of all subcontractor and vendor billings pertaining to the assigned projects. * Complete control of claims file, delays, insurance, and legal matters (Risk Management) related to ...
Quick apply
BAS Project Manager NC
New Castle, DE · On-site
Review and approve of all subcontractor and vendor billings pertaining to the assigned projects. * Complete control of claims file, delays, insurance, and legal matters (Risk Management) related to ...
BAS Project Manager NC
New Castle, DE · On-site
Review and approve of all subcontractor and vendor billings pertaining to the assigned projects. * Complete control of claims file, delays, insurance, and legal matters (Risk Management) related to ...
BAS Project Manager NC
New Castle, DE · On-site
Review and approve of all subcontractor and vendor billings pertaining to the assigned projects. * Complete control of claims file, delays, insurance, and legal matters (Risk Management) related to ...
Perform regularly scheduled Risk Management and Health & Safety quality checks at all company ... Seek vendor assistance when unable to complete the required repair. * Maintain contacts list for ...
Perform regularly scheduled Risk Management and Health & Safety quality checks at all company ... Seek vendor assistance when unable to complete the required repair. * Maintain contacts list for ...
Manager - Facilities
New Castle, DE · On-site
Perform regularly scheduled Risk Management and Health & Safety quality checks at all company ... Seek vendor assistance when unable to complete the required repair. * Maintain contacts list for ...
Manager - Facilities
New Castle, DE · On-site
Perform regularly scheduled Risk Management and Health & Safety quality checks at all company ... Seek vendor assistance when unable to complete the required repair. * Maintain contacts list for ...
Manager - Facilities
New Castle, DE · On-site
Perform regularly scheduled Risk Management and Health & Safety quality checks at all company ... Seek vendor assistance when unable to complete the required repair. * Maintain contacts list for ...
Manager - Facilities
New Castle, DE · On-site
Perform regularly scheduled Risk Management and Health & Safety quality checks at all company ... Seek vendor assistance when unable to complete the required repair. * Maintain contacts list for ...
IT Audit Manager
Wilmington, DE · Remote
Assess vendor due diligence, monitoring, and risk management processes. * Evaluate risks associated with critical vendors and fintech partnerships. * Serve as primary IT Audit liaison with IT ...
IT Audit Manager
Wilmington, DE · Remote
Assess vendor due diligence, monitoring, and risk management processes. * Evaluate risks associated with critical vendors and fintech partnerships. * Serve as primary IT Audit liaison with IT ...
IT Audit Manager
Wilmington, DE · Remote
Assess vendor due diligence, monitoring, and risk management processes. * Evaluate risks associated with critical vendors and fintech partnerships. * Serve as primary IT Audit liaison with IT ...
IT Audit Manager
Wilmington, DE · Remote
Assess vendor due diligence, monitoring, and risk management processes. * Evaluate risks associated with critical vendors and fintech partnerships. * Serve as primary IT Audit liaison with IT ...
BAS Project Manager NC
New Castle, DE · On-site
$85K - $135K/yr
Review and approve of all subcontractor and vendor billings pertaining to the assigned projects. * Complete control of claims file, delays, insurance, and legal matters (Risk Management) related to ...
BAS Project Manager NC
New Castle, DE · On-site
$85K - $135K/yr
Review and approve of all subcontractor and vendor billings pertaining to the assigned projects. * Complete control of claims file, delays, insurance, and legal matters (Risk Management) related to ...
Guide business and support units through the Third-Party Risk Management Program in conjunction with the Third-Party Risk Management team to ensure selected vendors are properly risk-tiered, vetted ...
Guide business and support units through the Third-Party Risk Management Program in conjunction with the Third-Party Risk Management team to ensure selected vendors are properly risk-tiered, vetted ...
HR Risk & Compliance
Wilmington, DE · On-site
$32 - $33/hr
Title: HR Risk & Compliance Location: 6 Months Duration: Wilmington, DE Duties: Help client to ... Vendor Governance. Skills: We're looking for a contingent worker to support our team with managing ...
Quick apply
HR Risk & Compliance
Wilmington, DE · On-site
$32 - $33/hr
Title: HR Risk & Compliance Location: 6 Months Duration: Wilmington, DE Duties: Help client to ... Vendor Governance. Skills: We're looking for a contingent worker to support our team with managing ...
Director, Engineering
Wilmington, DE · On-site
Financial and vendor management. Stakeholder partnership and executive communication. Risk management, security awareness, and operational excellence. Minimum Education * Bachelor's Degree in ...
Director, Engineering
Wilmington, DE · On-site
Financial and vendor management. Stakeholder partnership and executive communication. Risk management, security awareness, and operational excellence. Minimum Education * Bachelor's Degree in ...
Ensure strong risk management and compliance posture across all auto activities; maintain policies ... CoE or multisite leadership/vendor management leadership strongly preferred. Proven success driving ...
Ensure strong risk management and compliance posture across all auto activities; maintain policies ... CoE or multisite leadership/vendor management leadership strongly preferred. Proven success driving ...
Working knowledge of vendor management and third-party oversight expectations, including risk and control practices * Bachelor's degree or equivalent experience Preferred qualifications, capabilities ...
Working knowledge of vendor management and third-party oversight expectations, including risk and control practices * Bachelor's degree or equivalent experience Preferred qualifications, capabilities ...
Senior Product Delivery Associate - Card Acquisitions
Wilmington, DE · On-site
$91K - $140K/yr
Working knowledge of vendor management and third-party oversight expectations, including risk and control practices * Bachelor's degree or equivalent experience Preferred qualifications, capabilities ...
Senior Product Delivery Associate - Card Acquisitions
Wilmington, DE · On-site
$91K - $140K/yr
Working knowledge of vendor management and third-party oversight expectations, including risk and control practices * Bachelor's degree or equivalent experience Preferred qualifications, capabilities ...
Working knowledge of vendor management and third-party oversight expectations, including risk and control practices * Bachelor's degree or equivalent experience Preferred qualifications, capabilities ...
Working knowledge of vendor management and third-party oversight expectations, including risk and control practices * Bachelor's degree or equivalent experience Preferred qualifications, capabilities ...
... risk, improving efficiency, maximizing asset value, and delivering best-in-class customer and ... CoE or multi-site leadership/vendor management leadership strongly preferred. • Proven success ...
... risk, improving efficiency, maximizing asset value, and delivering best-in-class customer and ... CoE or multi-site leadership/vendor management leadership strongly preferred. • Proven success ...
Maintenance Technician
$40K - $47K/yr
Safety & Risk Management Conduct regular inspections of facilities and grounds to identify hazards ... Build and maintain positive relationships with community partners, vendors, and repeat day-use and ...
Maintenance Technician
$40K - $47K/yr
Safety & Risk Management Conduct regular inspections of facilities and grounds to identify hazards ... Build and maintain positive relationships with community partners, vendors, and repeat day-use and ...
Vendor Risk Management information
See Delaware salary details
$43.5K - $54.8K
8% of jobs
$54.8K - $66.1K
14% of jobs
$71.3K is the 25th percentile. Wages below this are outliers.
$66.1K - $77.4K
6% of jobs
$77.4K - $88.7K
8% of jobs
$88.7K - $99.9K
11% of jobs
The median wage is $102.3K / yr.
$99.9K - $111.2K
13% of jobs
$111.2K - $122.5K
11% of jobs
$125.9K is the 75th percentile. Wages above this are outliers.
$122.5K - $133.8K
15% of jobs
$133.8K - $145.1K
8% of jobs
$145.1K - $156.4K
4% of jobs
$156.4K - $167.6K
2% of jobs
$43.5K
$103.8K
$167.6K
How much do vendor risk management jobs pay per year?
What is the highest paying risk management job?
What is a vendor risk management job description?
What are the key skills and qualifications needed to thrive in the Vendor Risk Management position, and why are they important?
To thrive in Vendor Risk Management, you need a solid background in risk assessment, contract analysis, and supply chain management, often supported by a degree in business, finance, or a related field. Familiarity with risk management software, vendor management systems, and relevant certifications such as Certified Third Party Risk Professional (CTPRP) are highly valued. Strong attention to detail, excellent communication, and negotiation skills help build effective vendor relationships and navigate complex scenarios. These capabilities are crucial for ensuring organizational compliance, minimizing third-party risks, and maintaining strong supplier performance.
How much does a risk manager get paid?
What is vendor risk management?
What is a Vendor Risk Management job?
A Vendor Risk Management (VRM) job involves assessing, monitoring, and mitigating risks associated with third-party vendors and suppliers. Professionals in this role evaluate vendor security, compliance, and operational risks to protect their organization from potential disruptions, data breaches, or regulatory violations. They work closely with procurement, legal, and IT teams to establish risk management frameworks and ensure vendors meet contractual and security standards. Their responsibilities often include conducting risk assessments, reviewing vendor contracts, and developing risk mitigation strategies. Effective VRM helps organizations reduce exposure to risks while maintaining productive vendor relationships.
What are some common challenges faced in a Vendor Risk Management role?
Professionals in Vendor Risk Management often encounter the challenge of assessing and monitoring a wide range of vendors, each with unique risk profiles and compliance requirements. Balancing multiple projects, managing deadlines, and ensuring clear communication between internal stakeholders and vendors can also be demanding. Staying updated on evolving regulatory standards and quickly adapting to new risks is essential in this role. Overcoming these challenges requires strong organizational skills, continual learning, and proactive relationship management.

Full-time
Re-posted 18 days ago
University Of Delaware rating
5.7
Based on 21 frontline employees who took The Breakroom Quiz
520th of 553 rated colleges and universities
Job description
The University of Delaware is seeking a Director of GRC and Security Architecture to lead the organization's information security risk, compliance, and architectural security posture. This senior leadership role involves overseeing the enterprise-wide governance, risk management, and security architecture, ensuring compliance with regulations such as HIPAA while partnering with various teams to implement effective security controls.
Responsibilities:
• Lead the enterprise Information Security Governance, Risk, and Compliance (GRC) program.
• Establish and maintain security policies, standards, procedures, and control frameworks aligned with NIST, HITRUST, ISO 27001, and other applicable frameworks.
• Oversee enterprise risk assessments, third-party risk management, and control effectiveness evaluations.
• Translate regulatory, legal, and contractual requirements into actionable security controls and architectural standards.
• Ensure ongoing compliance with applicable regulations and standards, including HIPAA, PCI DSS, FERPA, SOC 2, and FIPS-140, as applicable
• Serve as the organization’s designated HIPAA Security Officer.
• Oversee administrative, technical, and physical safeguards required under the HIPAA Security Rule.
• Partner with Privacy, Legal, Compliance, and Health IT leadership on risk analyses, remediation plans, and regulatory inquiries.
• Support audits, investigations, and compliance reviews related to protected health information (PHI).
• Ensure appropriate security awareness and HIPAA training programs are developed and delivered across the organization.
• Own and lead the security architecture function, defining enterprise security architecture principles, reference architectures, and design standards.
• Review and approve security architecture for new systems, applications, cloud services, and major technology initiatives.
• Ensure security is embedded early in system lifecycle activities through secure-by-design and defense-in-depth principles.
• Partner with infrastructure, cloud, application, and DevOps teams to integrate security requirements into platforms and solutions.
• Guide architectural decisions related to identity, network segmentation, encryption, key management, logging, and data protection.
• Contribute to and lead multi-year security strategy and roadmap development in alignment with organizational objectives.
• Actively participate in enterprise security and risk governance forums, advising executive leadership on risk posture and architectural trade-offs.
• Balance risk reduction with operational efficiency, usability, and institutional mission requirements.
• Serve as a trusted advisor to schools, departments, and business units on risk and architectural security decisions.
• Provide governance and oversight for security technologies supporting risk management, compliance, and architectural controls.
• Ensure alignment between security architecture standards and operational security tooling.
• Evaluate new security technologies and frameworks to address evolving regulatory and threat landscapes.
• Develop and report meaningful risk and compliance metrics to senior leadership and governance committees.
• Communicate complex security and compliance topics clearly to technical and non-technical stakeholders.
• Provide executive-level reporting on risk trends, compliance posture, and architectural maturity.
• Lead and develop GRC and security architecture professionals.
• Establish clear role definitions, performance expectations, and professional development pathways.
• Foster a culture of accountability, continuous improvement, and collaboration across security and IT teams.
• Manage budgets associated with GRC, compliance, and security architecture programs.
• Oversee vendor relationships related to risk management, compliance tooling, and architectural services.
• Ensure responsible financial stewardship and alignment with strategic priorities.
Qualifications:
Required:
• Bachelor’s degree in Information Security, Computer Science, Information Systems, or a related field
• Seven years of progressive experience in information security, risk management, or IT, including leadership roles
• Demonstrated experience leading GRC programs, regulatory compliance efforts, and enterprise risk management
• Strong knowledge of HIPAA Security Rule, PCI DSS, and related regulatory frameworks
• Proven experience defining and governing security architecture across enterprise and cloud environments
• Excellent written and verbal communication skills, including executive-level presentations
Preferred:
• Master’s degree in Information Security, Computer Science, Information Systems, or a related field
• Experience supporting healthcare, higher education, or regulated enterprise environments
• Hands-on experience with NIST, HITRUST CSF, ISO 27001, SOC 2, and third-party risk frameworks
• Professional certifications such as CISSP, CISM, CRISC, or equivalent
• Experience partnering closely with SOC, IR, Privacy, and Legal teams
• Demonstrated success leading organizational change and maturing security governance programs
Company:
The University of Delaware - a state assisted, privately chartered institution - is a Land Grant, Sea Grant, Space Grant and Carnegie Research University (very high research activity). Founded in 1743, the company is headquartered in Newark, DE, US, , with a team of 1001-5000 employees. The company is currently Late Stage.
What University Of Delaware employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About University of Delaware
Sourced by ZipRecruiter
Industry
Colleges, universities, and professional schools
Company size
1,001 - 5,000 Employees
Headquarters location
Newark, DE, US
Year founded
1743