1

Vendor Risk Management Jobs in Iowa (NOW HIRING)

Maintains productive relationships with all internal stakeholders including Fraud Operations, Risk Management, Product, Retail, Finance as well as external vendors * Advise internal contacts on ...

IT Vendor Manager - Des Moines, IA/HYBRID

Des Moines, IA · On-site

$92K - $113K/yr

The ideal candidate will have a strong background in IT vendor management, contract oversight, and risk mitigation. Minimum Qualification: Graduation from an accredited four-year college or ...

IT Vendor Manager

Des Moines, IA · On-site

$92K - $113K/yr

Conduct regular vendor performance and business reviews and oversee change and issue management ... Minimum 3 years tracking SLAs, KPIs, and risk metrics and driving corrective actions for ...

... and vendors for development of effective model management, analytics, and reporting Own ... Previous experience with card risk management systems preferred, with Visa and Visa DPS risk tools ...

New

next page

Showing results 1-20

Vendor Risk Management information

See Iowa salary details

$40.9K

$97.4K

$157.3K

How much do vendor risk management jobs pay per year?

As of Jul 9, 2026, the average yearly pay for vendor risk management in Iowa is $97,406.00, according to ZipRecruiter salary data. Most workers in this role earn between $68,100.00 and $124,000.00 per year, depending on experience, location, and employer.

What is the highest paying risk management job?

In risk management, senior roles such as Chief Risk Officer (CRO) or Director of Risk Management tend to have the highest salaries, often exceeding six figures annually. These positions require extensive experience, advanced certifications like FRM or CRM, and strong leadership skills, especially in financial services, insurance, or large corporations.

What is a vendor risk management job description?

A vendor risk management job involves assessing and monitoring the risks associated with third-party vendors to ensure compliance with security, legal, and operational standards. Responsibilities include conducting risk assessments, developing mitigation strategies, and maintaining vendor relationships, often using tools like risk management software. Strong analytical skills and knowledge of regulatory requirements are essential for this role.

What are the key skills and qualifications needed to thrive in the Vendor Risk Management position, and why are they important?

To thrive in Vendor Risk Management, you need a solid background in risk assessment, contract analysis, and supply chain management, often supported by a degree in business, finance, or a related field. Familiarity with risk management software, vendor management systems, and relevant certifications such as Certified Third Party Risk Professional (CTPRP) are highly valued. Strong attention to detail, excellent communication, and negotiation skills help build effective vendor relationships and navigate complex scenarios. These capabilities are crucial for ensuring organizational compliance, minimizing third-party risks, and maintaining strong supplier performance.

How much does a risk manager get paid?

A risk manager's salary typically ranges from $70,000 to $130,000 annually, depending on experience, industry, and location. Professionals with certifications like CRM or FRM and strong analytical skills tend to earn higher salaries, especially in financial services and corporate sectors.

What is vendor risk management?

Vendor risk management is a process used by organizations to identify, assess, and mitigate risks associated with third-party vendors. It involves evaluating vendors' security, compliance, and operational practices to ensure they do not pose threats to the organization’s data, reputation, or operations, often supported by tools like risk assessment frameworks and requiring ongoing monitoring.

What is a Vendor Risk Management job?

A Vendor Risk Management (VRM) job involves assessing, monitoring, and mitigating risks associated with third-party vendors and suppliers. Professionals in this role evaluate vendor security, compliance, and operational risks to protect their organization from potential disruptions, data breaches, or regulatory violations. They work closely with procurement, legal, and IT teams to establish risk management frameworks and ensure vendors meet contractual and security standards. Their responsibilities often include conducting risk assessments, reviewing vendor contracts, and developing risk mitigation strategies. Effective VRM helps organizations reduce exposure to risks while maintaining productive vendor relationships.

What are some common challenges faced in a Vendor Risk Management role?

Professionals in Vendor Risk Management often encounter the challenge of assessing and monitoring a wide range of vendors, each with unique risk profiles and compliance requirements. Balancing multiple projects, managing deadlines, and ensuring clear communication between internal stakeholders and vendors can also be demanding. Staying updated on evolving regulatory standards and quickly adapting to new risks is essential in this role. Overcoming these challenges requires strong organizational skills, continual learning, and proactive relationship management.

What are popular job titles related to Vendor Risk Management jobs in Iowa? For Vendor Risk Management jobs in Iowa, the most frequently searched job titles are:
Infographic showing various Vendor Risk Management job openings in Iowa as of July 2026, with employment types broken down into 100% Full Time. Highlights an 100% In-person job distribution, with an average salary of $97,406 per year, or $46.8 per hour.

Senior Manager Cyber Risk & Governance

Alliantenergy

Cedar Rapids, IA

Full-time

Medical, Retirement, PTO

Posted 16 days ago


Job description

Bring YOUR energy to Alliant Energy!

At Alliant Energy, our purpose is to serve customers and build stronger communities. We are passionate about powering beyond the market challenges of today, while powering what's next in energy. When our employees say "I am energy", it means they take pride in the work we do when disaster strikes, as well as all the days in between. We want you to be safe, happy and healthy. That's why we prioritize safety, offer volunteer opportunities and provide competitive pay, comprehensive health and retirement benefits, tuition reimbursement and paid time off.

Job Summary

Senior Manager Cyber Risk & Governance leads Alliant Energy's cybersecurity governance, cyber risk management, vendor cyber risk, and security awareness programs, while representing the cyber component of the enterprise privacy program. This role contributes to the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) 2.0 'Govern' function, driving outcomes and metrics that strengthen organizational resilience. The position chairs cybersecurity councils and ensures alignment with enterprise risk management strategies and regulatory requirements. It is accountable for policy and standards development, cyber risk quantification, financial impact modeling, and leading governance initiatives and internal change management. This role partners closely with business leaders to embed cybersecurity governance into strategic decision-making and fosters a culture of risk awareness across the enterprise.

What you will do

  • Performs all leadership duties including, but not limited to, hiring and rewarding talent, fostering an inclusive and safe workplace, partnering with employees to set clear goals and expectations, providing timely and specific feedback on performance, developing improvement plans to address performance gaps, addressing conflict with care and respect, identifying opportunities for growth and development, embracing and modeling a mindset of lifelong learning, ensuring employees report to work fit for duty, adhering to our Code of Conduct and modeling Alliant Energy's Core Values at all times.

  • Developsandmaintainscybersecurity policies, standards, and governance frameworks, ensuring compliance with regulatory frameworks and internal governance requirements.

  • Responsible for overseeinggovernance, risk, and compliance processes, includingmaintainingthe cybersecurity risk register and influencing system design to meet programobjectives.

  • Definesand monitorsKRIs and KPIs for cyber governance and risk programs.

  • Representscybersecurity in enterprise privacy initiatives to ensure alignment with governance and regulatory requirements.

  • Managesthird-party/vendor cybersecurity risk anddrivesecurity awareness strategies to reduce human risk.

  • Leadsintegration of IT and OT cybersecurity governance frameworks, ensuring alignment with operational technology risk management and regulatory standards.

  • Collaborateswith Finance and ERM to quantify financial impacts of cyber risks and integrate cost modeling into risk scoring and executive reporting.

  • Establishesgovernance for emerging technologies, including AI/ML, ensuring compliance with enterprise risk appetite and regulatory guidance.

  • Leadscollaboration with the Cyber Transformation Office to support change management strategies, stakeholder engagement, and adoption of governance frameworks.

  • Engagesin other duties as needed that support Alliant Energy's Values and helps deliver on our Purpose to serve customers and build stronger communities.

Education Requirements

  • Master's or Advanced Degree Computer Science, Engineering, Information Technology, STEM or related field Preferred.

Required Experience

  • 10 year's experience in cyber security governance, risk management, or related field. .

  • 4 years of supervisory experience.

  • Experience with GRC Platforms, vendor risk tools, and privacy management systems.

Certifications

  • CISSP, CISM, or CIPP/US Preferred.

Knowledge, Skills, and Abilities

  • Demonstrates leadership and strategic planning skills, leveraging stakeholder influence, executive communication, and management expertise to drive alignment and foster adoption of governance frameworks.

  • Ability to develop and implement cybersecurity policies, standards, and governance frameworks, ensuring compliance with enterprise risk, privacy, and regulatory requirements.

  • Understands risk quantification methods and demonstrates ability to design and monitor key risk and performance indicators.

  • Ability to apply financial modeling and cost-benefit analysis to inform risk-based decisions.

  • Ability to work effectively in a collaborative and inclusive work environment.

Key Skills

  • Access Control Management Application Security Cybersecurity Risk Management Identity Access Management Incident Management Information Security Risk Management IT Security Management Network Security Management NIST Cyber Security Framework (CSF) Security Governance Threat Modeling Vulnerability Management


Our people are passionate about what they do, the product they sell, and the customers they serve. If you're looking for an opportunity to be a part of a work family that values collaboration, innovation and dedication, we're the right company for you.

Alliant Energy offers a comprehensive total rewards package including competitive compensation and benefit programs. Information on these benefit programs is available on our Careers site.

Pay Range:

$146,000-$200,000

This position is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.

It's not just what we do; it's how we do it.

Live Safety. Everyone. Always | Make Things Better | Care For Others | Do The Right Thing | Act For Tomorrow | Think Beyond. Be Bold

Alliant Energy and its subsidiaries are committed to creating a culture of belonging and is proud to be an Equal Opportunity Employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity, or any other basis prohibited by law.

All candidates selected for employment with Alliant Energy will be required to successfully complete a background check, and a drug screen where applicable.

Disclaimer:
The above information on this description has been crafted to indicate the general nature and level of work performed by employees within this classification. It is not crafted to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.

Applicants in need of a reasonable accommodation for any part of the hiring process, please email talent@alliantenergy.com.