Vendor Risk Management Jobs (NOW HIRING)

Eastern Time Zone preferred

Role Description

POSITION SUMMARY

Lead a newly created Technology Risk Management function responsible for providing strategic guidance and insights on risk mitigation, escalation, and business resilience across our Third Party Risk Management (TPRM), IT Escalation, and our IT Business Continuity and Disaster Recovery processes. This leader will chair our Technology Governance & Risk Management SteerCo ensuring visibility to potential and accepted risk including recommended actions. This role ensures the enterprise maintains risk transparency and operational resilience across the technology landscape, reporting regularly to executive leadership.

POSITION RESPONSIBILITIES

Technology Risk Oversight and Strategy:

• Establish process, KPIs and management reporting to govern and proactively manage accepted technology risk.
• Constantly review existing policies and tooling, driving improvements and leverage automation / AI wherever possible.
• Chair the Technology Governance & Risk Management SteerCo.

Third-Party Risk Management:

• Direct the execution of third-party risk management activities, including vendor risk assessments, ongoing monitoring, escalations, and remediation.
• Proactively manage, communicate and escalate issues to senior leadership as needed.
• Review and approval of Risks/Findings, escalating risk recommendations to management as needed.
• Assist the Legal and Procurement teams with periodic updates to the Third-Party Minimum-Security Baseline contract addendum and provide ZTD review and monitoring of controls therein.
• Define and manage TPRM Training and Communication strategy for ZTD and Business.
• Establish KPIs and management reporting, proactively provide insights to accepted risk.
• Proactively optimize the process, tools and support structure with advancements with automation and AI.

IT Escalation Management:

• Owns, governs the IT Escalation Management Process, constantly evaluating how to optimize.
• Serves as escalation point for technology risk events and deviations, ensuring incidents are properly recorded, investigated, escalated, and closed.
• Accountable for proactively managing accepted risk and providing management reporting.
• Refines and implements KRIs (Key Risk Indicators) embedded in daily operations.

Disaster Recovery & Business Continuity:

• Oversees the planning, execution, and escalation of IT disaster recovery and business continuity efforts, ensuring proper business resilience across all divisions.
• Ensures resiliency is built for the IT environment and applications.
• Develops and executes IT resiliency procedure and plans working with ZTD and business as applicable.
• Establish KPIs and management reporting providing view of overall health of ZTD Infrastructure & IT Resiliency (DR).
• Oversee tabletop reviews and recovery testing for Edge Sites.

Stakeholder Engagement and Reporting:

• Act as strategic partner with IT, business units, and leadership to mature risk management capabilities.
• Foster a collaborative culture focused on continuous improvement and learning

EDUCATION AND EXPERIENCE

• Bachelor's degree required; advanced degree preferred.
• 8+ years in technology risk management and leadership.
• Hands-on in IT risk frameworks, disaster recovery, and vendor risk.
• Proven leadership in technology risk management, IT disaster recovery, and third-party/vendor risk programs.
• Strong understanding of risk frameworks, incident response, and regulatory requirements.
• Demonstrated leadership in large, complex, multi-divisional global settings.
• Strong communication and broad influence skills; ability to develop strong relationships with internal and external stakeholders.
• Well-developed interpersonal skills that combine both IQ and EQ.
• Strong problem-solving ability with a focus on managing to business outcomes through collaboration with multiple internal and external parties
• Executive presence and comfort interacting across all levels of the organization including senior leadership
• Hands on leader with desire to dig into the details, build new practices, work across the organization to build buy-in, but also has the ability to work on strategy and interact with executive level discussions.
• Leads and motivates others, generating commitment and a shared sense of purpose.
• Demonstrates and models Zoetis Core Beliefs in all interactions
• Accountable for delivery of measurable results with significant positive impact to ZTD

TECHNICAL SKILLS REQUIREMENTS

• Risk frameworks (e.g. ISO 27001, NIST, SOX, PCI-DSS)
• Extensive experience with Third Party Vendor Management risk and audit management tools
• IT business continuity and disaster recovery planning
• Incident response, risk reporting, and control testing
• Communication of complex risk concepts to technical and executive audiences

The US base salary range for this full-time position is $164,000-$266,000. Our salary ranges are

determined by role, level, and location. The range displayed on each job posting reflects the base pay target range

for new hire salaries for the position. Within the range, individual pay is determined by work location and additional

factors, including job-related skills, experience, and relevant education or training.

This position is also eligible for short-term incentive compensation

This position is also eligible for long-term incentive

In addition to compensation, Zoetis offers a comprehensive benefits package that supports the physical, emotional

and financial wellbeing of our colleagues and their families includinghealthcare and insurance benefits beginning

on day one, a 401K plan with a match and profit-sharing contribution from Zoetis, and 4 weeks of vacation.

Visit zoetisbenefits.com to learn more.

Full timeRegularColleague

Any unsolicited resumes sent to Zoetis from a third party, such as an Agency recruiter, including unsolicited resumes sent to a Zoetis mailing address, fax machine or email address, directly to Zoetis employees, or to Zoetis resume database will be considered Zoetis property. Zoetis will NOT pay a fee for any placement resulting from the receipt of an unsolicited resume.

Zoetis will consider any candidate for whom an Agency has submitted an unsolicited resume to have been referred by the Agency free of any charges or fees. This includes any Agency that is an approved/engaged vendor but does not have the appropriate approvals to be engaged on a search.

Notice: Zoetis Recruiters will contact candidates via email from an address ending in @zoetis.com and may also initially connect with candidates through LinkedIn, including LinkedIn InMail. Zoetis does not use Gmail, Outlook, Yahoo, or other web-based/generic email domains to communicate about job opportunities, interviews, or offers of employment. If you receive a recruitment-related email message claiming to be from Zoetis that does not come from @zoetis.com, please treat it as suspicious. For your security, do not reply, click links, open attachments, share personal or financial information, or send money in response to unexpected or questionable recruitment communications.

Zoetis is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status or any other protected classification. Disabled individuals are given an equal opportunity to use our online application system. We offer reasonable accommodations as an alternative if requested by an individual with a disability. Please contact Zoetis Colleague Services at zoetiscolleagueservices@zoetis.com to request an accommodation. Zoetis also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as employment eligibility verification requirements of the Immigration and Nationality Act. All applicants must possess or obtain authorization to work in the US for Zoetis. Zoetis retains sole and exclusive discretion to pursue sponsorship for the acquisition or maintenance of nonimmigrant status and employment eligibility, considering factors such as availability of qualified US workers. Individuals requiring sponsorship must disclose this fact. Please note that Zoetis seeks information related to job applications from candidates for jobs in the U.S. solely via the following: (1) our company website at www.Zoetis.com/careers site, or (2) via email to/from addresses using only the Zoetis domain of "@zoetis.com". In addition, Zoetis does not use Google Hangout for any recruitment related activities. Any solicitation or request for information related to job applications with Zoetis via any other means and/or utilizing email addresses with any other domain should be disregarded. In addition, Zoetis will never ask candidates to make any type of personal financial investment related to gaining employment with Zoetis.