Serve as a trusted technical advisor to executives and architects; embed security into technology roadmaps, M&A due diligence, and vendor risk assessments. People Management Responsibilities * Builds ...
Serve as a trusted technical advisor to executives and architects; embed security into technology roadmaps, M&A due diligence, and vendor risk assessments. People Management Responsibilities * Builds ...
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Quick apply
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Quick apply
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Responsible for independently and proactively managing of assigned Premier in Client Tiers 2 and 3 ... conscious vendors and taking steps to reduce our own environmental footprint - we're working ...
Responsible for independently and proactively managing of assigned Premier in Client Tiers 2 and 3 ... conscious vendors and taking steps to reduce our own environmental footprint - we're working ...
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Issue and manage Certificates of Insurance for customers, vendors, and business partners. * Track ... Associate's or Bachelor's degree in Business, Finance, Risk Management, or related field preferred ...
Ensure compliance with all global and local credit, risk management policies, vendor program agreements, and loss pool/recourse requirements. Stakeholder Communication & Leadership * Develop and ...
Ensure compliance with all global and local credit, risk management policies, vendor program agreements, and loss pool/recourse requirements. Stakeholder Communication & Leadership * Develop and ...
Maintain compliance with purchasing and risk management policies and procedures. * Develop project-specific scopes of work for product vendors and review with SB National Supply Chain team. * Develop ...
Maintain compliance with purchasing and risk management policies and procedures. * Develop project-specific scopes of work for product vendors and review with SB National Supply Chain team. * Develop ...
Maintain compliance with purchasing and risk management policies and procedures. * Develop project-specific scopes of work for product vendors and review with SB National Supply Chain team. * Develop ...
Maintain compliance with purchasing and risk management policies and procedures. * Develop project-specific scopes of work for product vendors and review with SB National Supply Chain team. * Develop ...
Chief Financial Officer
Maquoketa, IA ยท On-site
Compliance and Risk Management * Operational Oversight * Team Management * Strategic Partnerships ... Volunteers, Vendors/Clients, Third-Party Payors/Insurance Companies, Physicians/Medical Office ...
Quick apply
Chief Financial Officer
Maquoketa, IA ยท On-site
Compliance and Risk Management * Operational Oversight * Team Management * Strategic Partnerships ... Volunteers, Vendors/Clients, Third-Party Payors/Insurance Companies, Physicians/Medical Office ...
Chief Financial Officer
Maquoketa, IA ยท On-site
Compliance and Risk Management * Operational Oversight * Team Management * Strategic Partnerships ... Volunteers, Vendors/Clients, Third-Party Payors/Insurance Companies, Physicians/Medical Office ...
Chief Financial Officer
Maquoketa, IA ยท On-site
Compliance and Risk Management * Operational Oversight * Team Management * Strategic Partnerships ... Volunteers, Vendors/Clients, Third-Party Payors/Insurance Companies, Physicians/Medical Office ...
Compliance and Risk Management * Operational Oversight * Team Management * Strategic Partnerships ... Volunteers, Vendors/Clients, Third-Party Payors/Insurance Companies, Physicians/Medical Office ...
Compliance and Risk Management * Operational Oversight * Team Management * Strategic Partnerships ... Volunteers, Vendors/Clients, Third-Party Payors/Insurance Companies, Physicians/Medical Office ...
Treasury Management Officer
Waverly, IA ยท On-site
Coordinate with internal operations and third-party vendors to ensure timely and accurate product ... Risk Management & Compliance * Ensure all cash-management activities comply with bank policies ...
Treasury Management Officer
Waverly, IA ยท On-site
Coordinate with internal operations and third-party vendors to ensure timely and accurate product ... Risk Management & Compliance * Ensure all cash-management activities comply with bank policies ...
Vendor/OEM risk management, SBOM/patch constraints, compensating controls * Security experience in the field environment within the Power, Utilities & Renewables, Oil & Gas, or Industrial Products ...
Vendor/OEM risk management, SBOM/patch constraints, compensating controls * Security experience in the field environment within the Power, Utilities & Renewables, Oil & Gas, or Industrial Products ...
Vendor/OEM risk management, SBOM/patch constraints, compensating controls * Security experience in the field environment within the Power, Utilities & Renewables, Oil & Gas, or Industrial Products ...
Vendor/OEM risk management, SBOM/patch constraints, compensating controls * Security experience in the field environment within the Power, Utilities & Renewables, Oil & Gas, or Industrial Products ...
... risk management, incident management etc. * Excellent organizational and time management skills. * Critical thinker and problem solver. * Experience in performing vendor management. * Detailed ...
... risk management, incident management etc. * Excellent organizational and time management skills. * Critical thinker and problem solver. * Experience in performing vendor management. * Detailed ...
... risk management, incident management etc. * Excellent organizational and time management skills. * Critical thinker and problem solver. * Experience in performing vendor management. * Detailed ...
... risk management, incident management etc. * Excellent organizational and time management skills. * Critical thinker and problem solver. * Experience in performing vendor management. * Detailed ...
Senior Project Manager, Health Care Information Systems at IA
Iowa City, IA ยท On-site
$128K - $128K/yr
... vendor relationships and oversee issue and risk management. Required Skills: * Proven project management experience in healthcare IT. * Strong organizational and leadership capabilities.
Quick apply
Senior Project Manager, Health Care Information Systems at IA
Iowa City, IA ยท On-site
$128K - $128K/yr
... vendor relationships and oversee issue and risk management. Required Skills: * Proven project management experience in healthcare IT. * Strong organizational and leadership capabilities.
Maintain compliance with purchasing and risk management policies and procedures. * Develop project-specific scopes of work for product vendors and review with SB National Supply Chain team. * Develop ...
Maintain compliance with purchasing and risk management policies and procedures. * Develop project-specific scopes of work for product vendors and review with SB National Supply Chain team. * Develop ...
Vendor Risk Management information
See Iowa salary details
$40.9K - $51.4K
8% of jobs
$51.4K - $62K
14% of jobs
$66.9K is the 25th percentile. Wages below this are outliers.
$62K - $72.6K
6% of jobs
$72.6K - $83.2K
8% of jobs
$83.2K - $93.8K
11% of jobs
The median wage is $96K / yr.
$93.8K - $104.4K
13% of jobs
$104.4K - $115K
11% of jobs
$118.2K is the 75th percentile. Wages above this are outliers.
$115K - $125.6K
15% of jobs
$125.6K - $136.2K
8% of jobs
$136.2K - $146.7K
4% of jobs
$146.7K - $157.3K
2% of jobs
$40.9K
$97.4K
$157.3K
How much do vendor risk management jobs pay per year?
As of Jun 11, 2026, the average yearly pay for vendor risk management in Iowa is $97,406.00, according to ZipRecruiter salary data. Most workers in this role earn between $68,100.00 and $124,000.00 per year, depending on experience, location, and employer.
What is the highest paying risk management job?
In risk management, senior roles such as Chief Risk Officer (CRO) or Director of Risk typically have the highest salaries, often exceeding six figures annually. These positions require extensive experience, advanced certifications like FRM or CRM, and strong leadership skills, especially in financial services, insurance, or large corporations.
Do risk managers make good money?
Risk managers, including those in vendor risk management, typically earn competitive salaries that vary by experience, industry, and location. According to industry reports, median annual salaries range from $70,000 to over $120,000, with additional compensation for certifications like CRISC or FRM. The role often requires strong analytical skills and knowledge of compliance and risk assessment tools.
What are the key skills and qualifications needed to thrive in the Vendor Risk Management position, and why are they important?
To thrive in Vendor Risk Management, you need a solid background in risk assessment, contract analysis, and supply chain management, often supported by a degree in business, finance, or a related field. Familiarity with risk management software, vendor management systems, and relevant certifications such as Certified Third Party Risk Professional (CTPRP) are highly valued. Strong attention to detail, excellent communication, and negotiation skills help build effective vendor relationships and navigate complex scenarios. These capabilities are crucial for ensuring organizational compliance, minimizing third-party risks, and maintaining strong supplier performance.
How much does a Risk Manager get paid?
The average salary for a Risk Manager typically ranges from $80,000 to $130,000 annually, depending on experience, industry, and location. Professionals in vendor risk management often require certifications like CRISC or FRM and may work in financial, healthcare, or technology sectors.
What is a Vendor Risk Management job?
A Vendor Risk Management (VRM) job involves assessing, monitoring, and mitigating risks associated with third-party vendors and suppliers. Professionals in this role evaluate vendor security, compliance, and operational risks to protect their organization from potential disruptions, data breaches, or regulatory violations. They work closely with procurement, legal, and IT teams to establish risk management frameworks and ensure vendors meet contractual and security standards. Their responsibilities often include conducting risk assessments, reviewing vendor contracts, and developing risk mitigation strategies. Effective VRM helps organizations reduce exposure to risks while maintaining productive vendor relationships.
What is a vendor Risk Manager?
A Vendor Risk Manager is responsible for assessing and mitigating risks associated with third-party vendors and suppliers. They evaluate vendor security, compliance, and performance, often using risk management tools and frameworks to ensure organizational safety and regulatory adherence.
What are some common challenges faced in a Vendor Risk Management role?
Professionals in Vendor Risk Management often encounter the challenge of assessing and monitoring a wide range of vendors, each with unique risk profiles and compliance requirements. Balancing multiple projects, managing deadlines, and ensuring clear communication between internal stakeholders and vendors can also be demanding. Staying updated on evolving regulatory standards and quickly adapting to new risks is essential in this role. Overcoming these challenges requires strong organizational skills, continual learning, and proactive relationship management.
What are the most commonly searched types of Vendor Risk Management jobs in Iowa? The most popular types of Vendor Risk Management jobs in Iowa are:
What are popular job titles related to Vendor Risk Management jobs in Iowa? For Vendor Risk Management jobs in Iowa, the most frequently searched job titles are:
What job categories do people searching Vendor Risk Management jobs in Iowa look for? The top searched job categories for Vendor Risk Management jobs in Iowa are:
Job description
Posting Type
Hybrid/Remote
Job Overview
The Senior Manager of Enterprise Security is a technical people leader responsible for developing, implementing, operating, and continuously optimizing a multi-layered security ecosystem across corporate, cloud, and product environments. This role drives a defense-in-depth strategy, embeds security into AI-augmented SecDevOps and continuous compliance programs, and leads a living, learning, and adaptive security function that evolves with the threat, regulatory, and business landscape. In partnership with Engineering, IT, Legal, and Governance, Risk, and Compliance, this leader translates security strategy into measurable outcomes that scale with the business.Job Description and Requirements
Defense in Depth & Security Operations
Architect and own thetactical execution ofenterprise defense-in-depthstrategy aligned with security strategic intent: define layered controls across network, endpoints, identity, cloud workloads, and data,witheffective layeredcontrols at every tier and coverage mapped torelevant frameworks.
Design and operate an integrated detection stack (EDR, NDR, CDR, SIEM/SOAR) with AI-enabledUEBA, ML-based alert prioritization, and automated enrichment to reduce MTTD and MTTRand increase defense in depth efficacy.
EnforceadaptiveZero Trust principles (ZTNA, least-privilege micro-segmentation, phishing-resistant MFA/FIDO2, JIT access) and SASE/SSE architecture across all access paths.
Ensure configuration and implementation of hardeningstandards using CIS Benchmarks/DISA STIGs with automated compliance validation, and maintain IR playbooks covering ransomware, supply chain compromise, cloud account takeover, and AI/ML model poisoning.
AIDevSecOps & Secure Development
Build and operate an AI-augmentedDevSecOps program: embed SAST, DAST, SCA, secret scanning, IaC analysis, and container image securityinto CI/CD pipelines with AI-generated fix recommendations surfaced in PR workflows.
Deploy AI-assisted threat modeling, exposure analysis and exploit validation methodsand establishgenerative and agentic AI security &governancemethodologies.
Run a security champions program embedding technical advocates in engineering teams to own secure coding standards, security debt backlog management, and threat model participation.
Cloud, Vulnerability & Threat Intelligence
Lead, implement and optimize cloud securityprograms across multi-cloud environments with automated drift detection, policy-as-code enforcement, and runtime workload protection.
Run a risk-basedexposuremanagement programwiththreat intelligencecontext to prioritize remediation SLAs; operate continuous ASM.
Integrate threat intelligence (OSINT, commercial feeds, ISAC) intopurple teaming efforts andconduct or overseepurple team engagements mapped toevolving threat landscape.
Governance, Strategy & Collaboration
Define and track security KPIs grounded in technical outcomes: patch SLA compliance, control coverage heat maps, mean dwell time, lateral movement detection rates, and pipeline gate trends.
Work with the information security GRC function to adapt and evolvesecurity policies, technical standards, and control baselines aligned toSOX,SOC 2, ISO 27001, HIPAA, GDPR, and CCPA;to hedge risk associated with evolving regulatory landscape.
Partner with Compliance and Legal on audits, certifications, e-discovery, and forensic integrity requirements; translate technical risk into quantitative business impact using frameworks such as FAIR.
Serve as a trusted technical advisor to executives and architects; embed security into technology roadmaps, M&A due diligence, and vendor risk assessments.
People Management Responsibilities
- Builds, coaches, and retains a high-performing, technically elite security team. Creates an environment of psychological safety, accountability, and engineering excellence with clear career paths spanning technical specialization and leadership. Drives structured performance management, proactive talent development, and inclusive leadership practices to keep the team motivated and equipped to deliver exceptional outcomes.
Minimum Qualifications:
Bachelor's degree in Computer Science, Information Security,a related field,orequivalent hands-on experience considered.
10+ years in enterprise or product security with 4+ years in a senior technical leadership role owning multi-domain programs.
Hands-on technical depth:network security, detection engineering, incident response, endpoint management, custom scripting and telemetry engineering
Proven defense-in-depth/ layered defensedesign experience: evaluating and improving layered control effectiveness across network, endpoint, identity, cloud, and application domains.
Practical experience with AI-augmented security: ML-based detection, SOAR automation, or AI-integrated DevSecOps pipelines.
Mastery of NIST CSF, MITRE ATT&CK, CIS Controls, Zero Trust (NIST SP 800-207), and cloud security frameworks (AWS, Azure, or GCP).
Demonstrated ability to communicate technical security risk and architectural trade-offs to both technical peers and executive audiences.
Hybrid (2+ days in office) or remote based on company policy.
Preferred Qualifications:
Experience securing SaaS, cloud-native, or globally distributed regulated environments.
Familiarity with legal technology, e-discovery, litigation holds, and digital forensics chain-of-custody requirements.
Experience with LLM/AI security: prompt injection, model poisoning, AI output validation, and governance for AI-assisted code generation.
Scripting and automation skills (Python, Bash, PowerShell) applied to detection engineering, tooling integration, or compliance automation.
Certifications such as CISSP, CISM, OSCP, GCIH, GCFA, CCSP, or AWS Security Specialty.
Relativity is committed to competitive, fair, and equitable compensation practices.
This position is eligible for total compensation which includes a competitive base salary, an annual performance bonus, and long-term incentives.
The expected salary range for this role is between following values:
$185,000 and $277,000The final offered salary will be based on several factors, including but not limited to the candidate's depth of experience, skill set, qualifications, and internal pay equity. Hiring at the top end of the range would not be typical, to allow for future meaningful salary growth in this position.
Required Skills:
Access Management, Defense in Depth, Network Security, Project Management, Risk Management, Security Architecture Design, Security Audit, Security Awareness, Security Engineering, Security Operations, Vulnerability Management