Managesthird-party/vendor cybersecurity risk anddrivesecurity awareness strategies to reduce human risk. * Leadsintegration of IT and OT cybersecurity governance frameworks, ensuring alignment with ...
Managesthird-party/vendor cybersecurity risk anddrivesecurity awareness strategies to reduce human risk. * Leadsintegration of IT and OT cybersecurity governance frameworks, ensuring alignment with ...
Technology Compliance & Vendor Management Analyst
Brookfield, WI · On-site
$88K - $88K/yr
Technology Risk Assessment * Own and maintain the enterprise IT risk assessment program, producing ... Vendor Management * Administer the vendor management program, owning the end-to-end vendor ...
Technology Compliance & Vendor Management Analyst
Brookfield, WI · On-site
$88K - $88K/yr
Technology Risk Assessment * Own and maintain the enterprise IT risk assessment program, producing ... Vendor Management * Administer the vendor management program, owning the end-to-end vendor ...
Technology Compliance & Vendor Management Analyst
Brookfield, WI · On-site
$88K - $88K/yr
Technology Risk Assessment * Own and maintain the enterprise IT risk assessment program, producing ... Vendor Management * Administer the vendor management program, owning the end-to-end vendor ...
Technology Compliance & Vendor Management Analyst
Brookfield, WI · On-site
$88K - $88K/yr
Technology Risk Assessment * Own and maintain the enterprise IT risk assessment program, producing ... Vendor Management * Administer the vendor management program, owning the end-to-end vendor ...
Manages third-party/vendor cybersecurity risk and drive security awareness strategies to reduce human risk. * Leads integration of IT and OT cybersecurity governance frameworks, ensuring alignment ...
Manages third-party/vendor cybersecurity risk and drive security awareness strategies to reduce human risk. * Leads integration of IT and OT cybersecurity governance frameworks, ensuring alignment ...
Manages third-party/vendor cybersecurity risk and drive security awareness strategies to reduce human risk. * Leads integration of IT and OT cybersecurity governance frameworks, ensuring alignment ...
Manages third-party/vendor cybersecurity risk and drive security awareness strategies to reduce human risk. * Leads integration of IT and OT cybersecurity governance frameworks, ensuring alignment ...
Sr. Procurement Consultant
Milwaukee, WI · On-site
$40 - $45/hr
Manage vendor risk management processes, ensuring appropriate due diligence is performed by engaging Legal, Compliance, Data Privacy, Cybersecurity, Audit, and other stakeholders. * Collaborate with ...
Quick apply
Sr. Procurement Consultant
Milwaukee, WI · On-site
$40 - $45/hr
Manage vendor risk management processes, ensuring appropriate due diligence is performed by engaging Legal, Compliance, Data Privacy, Cybersecurity, Audit, and other stakeholders. * Collaborate with ...
IT Vendor Financials & Contract Manager
Milwaukee, WI · On-site +1
You will oversee key technology vendor relationships to drive performance, financial optimization, risk alignment, and governance maturity across the vendor portfolio. This role combines strategic ...
IT Vendor Financials & Contract Manager
Milwaukee, WI · On-site +1
You will oversee key technology vendor relationships to drive performance, financial optimization, risk alignment, and governance maturity across the vendor portfolio. This role combines strategic ...
Director, Business Applications (Milwaukee)
Milwaukee, WI · On-site
$224K/yr
Partner with Security, Legal, and Compliance teams to implement and maintain enterprise standards for identity and access management, data governance, vendor risk management, regulatory compliance ...
Director, Business Applications (Milwaukee)
Milwaukee, WI · On-site
$224K/yr
Partner with Security, Legal, and Compliance teams to implement and maintain enterprise standards for identity and access management, data governance, vendor risk management, regulatory compliance ...
Risk Support Specialist
Marathon, WI · On-site
$92K/yr
Operate and maintain risk tracking systems, vendor databases, and documentation tools to ensure accuracy and audit readiness. * Follow all safety procedures, regulatory requirements, and internal ...
Risk Support Specialist
Marathon, WI · On-site
$92K/yr
Operate and maintain risk tracking systems, vendor databases, and documentation tools to ensure accuracy and audit readiness. * Follow all safety procedures, regulatory requirements, and internal ...
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
This position plays a critical role in managing banking applications, electronic banking services, operational risk, and vendor relationships while fostering a collaborative, high-performing team.
This position plays a critical role in managing banking applications, electronic banking services, operational risk, and vendor relationships while fostering a collaborative, high-performing team.
Procurement Specialist
Neenah, WI · On-site
Coordinate vendor onboarding and due diligence with Risk, Information Security, and Compliance before contract execution. * Monitor vendor performance against SLAs and contract obligations; escalate ...
Procurement Specialist
Neenah, WI · On-site
Coordinate vendor onboarding and due diligence with Risk, Information Security, and Compliance before contract execution. * Monitor vendor performance against SLAs and contract obligations; escalate ...
Procurement Specialist
Neenah, WI · On-site
Coordinate vendor onboarding and due diligence with Risk, Information Security, and Compliance before contract execution. * Monitor vendor performance against SLAs and contract obligations; escalate ...
Procurement Specialist
Neenah, WI · On-site
Coordinate vendor onboarding and due diligence with Risk, Information Security, and Compliance before contract execution. * Monitor vendor performance against SLAs and contract obligations; escalate ...
Risk Manager
Arcadia, WI · On-site
Respond professionally to situations involving difficult employee, vendor, or consumer issues ... Risk Management Information Systems (RMIS) * Business Continuity principles * Casualty claims ...
Risk Manager
Arcadia, WI · On-site
Respond professionally to situations involving difficult employee, vendor, or consumer issues ... Risk Management Information Systems (RMIS) * Business Continuity principles * Casualty claims ...
Risk Manager
Arcadia, WI · On-site
Respond professionally to situations involving difficult employee, vendor, or consumer issues ... Risk Management Information Systems (RMIS) * Business Continuity principles * Casualty claims ...
Risk Manager
Arcadia, WI · On-site
Respond professionally to situations involving difficult employee, vendor, or consumer issues ... Risk Management Information Systems (RMIS) * Business Continuity principles * Casualty claims ...
RISK MANAGER
La Crosse, WI · On-site
$83K - $111K/yr
Lead a brand new, countywide Risk Management program. La Crosse County is launching a modern ... vendor relationships • Manage insurance procurement and renewals • Oversee open claims ...
RISK MANAGER
La Crosse, WI · On-site
$83K - $111K/yr
Lead a brand new, countywide Risk Management program. La Crosse County is launching a modern ... vendor relationships • Manage insurance procurement and renewals • Oversee open claims ...
Lead vendor risk management and issue resolution * Build consensus across stakeholders through transparent and effective communication * Build, mentor, and lead a high-performing, service-oriented ...
New
Lead vendor risk management and issue resolution * Build consensus across stakeholders through transparent and effective communication * Build, mentor, and lead a high-performing, service-oriented ...
New
$112K - $113K/yr
Identifyopportunities for license optimization, consolidation, cost avoidance, and vendor risk mitigation. Demand Intake & Portfolio Governance * Own the single-backlog intake framework, triaging ...
$112K - $113K/yr
Identifyopportunities for license optimization, consolidation, cost avoidance, and vendor risk mitigation. Demand Intake & Portfolio Governance * Own the single-backlog intake framework, triaging ...
$124K - $124K/yr
Identifyopportunities for license optimization, consolidation, cost avoidance, and vendor risk mitigation. Demand Intake & Portfolio Governance * Own the single-backlog intake framework, triaging ...
$124K - $124K/yr
Identifyopportunities for license optimization, consolidation, cost avoidance, and vendor risk mitigation. Demand Intake & Portfolio Governance * Own the single-backlog intake framework, triaging ...
$115K - $115K/yr
Identifyopportunities for license optimization, consolidation, cost avoidance, and vendor risk mitigation. Demand Intake & Portfolio Governance * Own the single-backlog intake framework, triaging ...
$115K - $115K/yr
Identifyopportunities for license optimization, consolidation, cost avoidance, and vendor risk mitigation. Demand Intake & Portfolio Governance * Own the single-backlog intake framework, triaging ...
Vendor Risk information
What is the difference between Vendor Risk vs Vendor Compliance?
| Aspect | Vendor Risk | Vendor Compliance |
|---|---|---|
| Focus | Identifying and mitigating risks associated with vendors | Ensuring vendors meet regulatory and contractual requirements |
| Certifications | Risk management certifications (e.g., CRISC, FAIR) | Compliance certifications (e.g., ISO 27001, SOC 2) |
| Work Environment | Risk assessment teams, procurement, security departments | Legal, compliance, audit teams |
| Industry Usage | Financial, healthcare, technology sectors | Financial services, healthcare, regulated industries |
Vendor Risk and Vendor Compliance roles often overlap but serve different purposes. Vendor Risk focuses on identifying and mitigating potential risks posed by vendors, while Vendor Compliance ensures vendors adhere to legal and contractual standards. Both are essential for managing vendor relationships effectively and maintaining organizational security and compliance.
Full-time
Medical, Retirement, PTO
Re-posted 14 days ago
Job description
Bring YOUR energy to Alliant Energy!
At Alliant Energy, our purpose is to serve customers and build stronger communities. We are passionate about powering beyond the market challenges of today, while powering what's next in energy. When our employees say "I am energy", it means they take pride in the work we do when disaster strikes, as well as all the days in between. We want you to be safe, happy and healthy. That's why we prioritize safety, offer volunteer opportunities and provide competitive pay, comprehensive health and retirement benefits, tuition reimbursement and paid time off.
Job Summary
Senior Manager Cyber Risk & Governance leads Alliant Energy's cybersecurity governance, cyber risk management, vendor cyber risk, and security awareness programs, while representing the cyber component of the enterprise privacy program. This role contributes to the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) 2.0 'Govern' function, driving outcomes and metrics that strengthen organizational resilience. The position chairs cybersecurity councils and ensures alignment with enterprise risk management strategies and regulatory requirements. It is accountable for policy and standards development, cyber risk quantification, financial impact modeling, and leading governance initiatives and internal change management. This role partners closely with business leaders to embed cybersecurity governance into strategic decision-making and fosters a culture of risk awareness across the enterprise.
What you will do
Performs all leadership duties including, but not limited to, hiring and rewarding talent, fostering an inclusive and safe workplace, partnering with employees to set clear goals and expectations, providing timely and specific feedback on performance, developing improvement plans to address performance gaps, addressing conflict with care and respect, identifying opportunities for growth and development, embracing and modeling a mindset of lifelong learning, ensuring employees report to work fit for duty, adhering to our Code of Conduct and modeling Alliant Energy's Core Values at all times.
Developsandmaintainscybersecurity policies, standards, and governance frameworks, ensuring compliance with regulatory frameworks and internal governance requirements.
Responsible for overseeinggovernance, risk, and compliance processes, includingmaintainingthe cybersecurity risk register and influencing system design to meet programobjectives.
Definesand monitorsKRIs and KPIs for cyber governance and risk programs.
Representscybersecurity in enterprise privacy initiatives to ensure alignment with governance and regulatory requirements.
Managesthird-party/vendor cybersecurity risk anddrivesecurity awareness strategies to reduce human risk.
Leadsintegration of IT and OT cybersecurity governance frameworks, ensuring alignment with operational technology risk management and regulatory standards.
Collaborateswith Finance and ERM to quantify financial impacts of cyber risks and integrate cost modeling into risk scoring and executive reporting.
Establishesgovernance for emerging technologies, including AI/ML, ensuring compliance with enterprise risk appetite and regulatory guidance.
Leadscollaboration with the Cyber Transformation Office to support change management strategies, stakeholder engagement, and adoption of governance frameworks.
Engagesin other duties as needed that support Alliant Energy's Values and helps deliver on our Purpose to serve customers and build stronger communities.
Education Requirements
Master's or Advanced Degree Computer Science, Engineering, Information Technology, STEM or related field Preferred.
Required Experience
10 year's experience in cyber security governance, risk management, or related field. .
4 years of supervisory experience.
Experience with GRC Platforms, vendor risk tools, and privacy management systems.
Certifications
CISSP, CISM, or CIPP/US Preferred.
Knowledge, Skills, and Abilities
Demonstrates leadership and strategic planning skills, leveraging stakeholder influence, executive communication, and management expertise to drive alignment and foster adoption of governance frameworks.
Ability to develop and implement cybersecurity policies, standards, and governance frameworks, ensuring compliance with enterprise risk, privacy, and regulatory requirements.
Understands risk quantification methods and demonstrates ability to design and monitor key risk and performance indicators.
Ability to apply financial modeling and cost-benefit analysis to inform risk-based decisions.
Ability to work effectively in a collaborative and inclusive work environment.
Key Skills
Access Control Management Application Security Cybersecurity Risk Management Identity Access Management Incident Management Information Security Risk Management IT Security Management Network Security Management NIST Cyber Security Framework (CSF) Security Governance Threat Modeling Vulnerability Management
Our people are passionate about what they do, the product they sell, and the customers they serve. If you're looking for an opportunity to be a part of a work family that values collaboration, innovation and dedication, we're the right company for you.
Alliant Energy offers a comprehensive total rewards package including competitive compensation and benefit programs. Information on these benefit programs is available on our Careers site.
Pay Range:
$146,000-$200,000This position is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.
It's not just what we do; it's how we do it.
Live Safety. Everyone. Always | Make Things Better | Care For Others | Do The Right Thing | Act For Tomorrow | Think Beyond. Be Bold
Alliant Energy and its subsidiaries are committed to creating a culture of belonging and is proud to be an Equal Opportunity Employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity, or any other basis prohibited by law.
All candidates selected for employment with Alliant Energy will be required to successfully complete a background check, and a drug screen where applicable.
Disclaimer:
The above information on this description has been crafted to indicate the general nature and level of work performed by employees within this classification. It is not crafted to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.
Applicants in need of a reasonable accommodation for any part of the hiring process, please email talent@alliantenergy.com.