The Third Party Risk Management (TPRM) Capability Lead is a senior individual contributor responsible for governing and overseeing Pacific Life's enterprise TPRM program within the 2nd line of ...
The Third Party Risk Management (TPRM) Capability Lead is a senior individual contributor responsible for governing and overseeing Pacific Life's enterprise TPRM program within the 2nd line of ...
The Third Party Risk Management (TPRM) Capability Lead is a senior individual contributor responsible for governing and overseeing Pacific Life's enterprise TPRM program within the 2nd line of ...
The Third Party Risk Management (TPRM) Capability Lead is a senior individual contributor responsible for governing and overseeing Pacific Life's enterprise TPRM program within the 2nd line of ...
The Third Party Risk Management (TPRM) Capability Lead is a senior individual contributor responsible for governing and overseeing Pacific Life's enterprise TPRM program within the 2nd line of ...
The Third Party Risk Management (TPRM) Capability Lead is a senior individual contributor responsible for governing and overseeing Pacific Life's enterprise TPRM program within the 2nd line of ...
Third Party Risk Analyst
San Jose, CA · On-site
$116K - $135K/yr
The incumbent oversees vendor management, third-party risk, and related governance activities ... Occasional extended early morning or late evening hours, and weekends, typically with advance ...
Third Party Risk Analyst
San Jose, CA · On-site
$116K - $135K/yr
The incumbent oversees vendor management, third-party risk, and related governance activities ... Occasional extended early morning or late evening hours, and weekends, typically with advance ...
Product Mgr, Third-Party Risk Management
Santa Clara, CA · On-site +1
$108K - $148K/yr
... third-party risk management processes. This role serves as the bridge between Procurement, Risk Functions, and Technology teams, translating program requirements into effective workflows, reporting ...
Product Mgr, Third-Party Risk Management
Santa Clara, CA · On-site +1
$108K - $148K/yr
... third-party risk management processes. This role serves as the bridge between Procurement, Risk Functions, and Technology teams, translating program requirements into effective workflows, reporting ...
Client is seeking an experienced professional to join our Third-Party/ Vendor Risk Assessment team. This team focuses on analyzing and managing risks associated with our vendors, service providers ...
Quick apply
Client is seeking an experienced professional to join our Third-Party/ Vendor Risk Assessment team. This team focuses on analyzing and managing risks associated with our vendors, service providers ...
Third Party Risk Management and Customer Trust Lead
Foster City, CA · On-site
$210K - $270K/yr
Run substantive third-party risk management (TPRM), independently evaluating real risk, not just processing questionnaire responses * Review SOC 2 reports, pen test findings, and architecture ...
Third Party Risk Management and Customer Trust Lead
Foster City, CA · On-site
$210K - $270K/yr
Run substantive third-party risk management (TPRM), independently evaluating real risk, not just processing questionnaire responses * Review SOC 2 reports, pen test findings, and architecture ...
Senior Cybersecurity Third-Party Risk Analyst
Huntington Beach, CA · Remote
$105K - $136K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Huntington Beach, CA · Remote
$105K - $136K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Risk Analyst
Los Angeles, CA · On-site
Third-Party Risk Analyst I (IT/Technology Department) Location/Map 📍 : Los Angeles, CA (90071 ... Experience in third party vendor management process. * Experience in contract and compliance ...
Risk Analyst
Los Angeles, CA · On-site
Third-Party Risk Analyst I (IT/Technology Department) Location/Map 📍 : Los Angeles, CA (90071 ... Experience in third party vendor management process. * Experience in contract and compliance ...
Senior Cybersecurity Third-Party Risk Analyst
Long Beach, CA · Remote
$105K - $135K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Long Beach, CA · Remote
$105K - $135K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Long Beach, CA · Remote
$105K - $135K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Long Beach, CA · Remote
$105K - $135K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Huntington Beach, CA · Remote
$105K - $136K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Senior Cybersecurity Third-Party Risk Analyst
Huntington Beach, CA · Remote
$105K - $136K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly ... Maintain strong documentation & processes to support change management of automation logic, AI ...
Enterprise Risk Management (ERM) Analyst
Folsom, CA · On-site
$110K - $120K/yr
Vendor Risk Management * Assist with third-party risk assessments and due diligence reviews for new and existing vendors, including evaluation of financial, operational, cybersecurity, compliance ...
Enterprise Risk Management (ERM) Analyst
Folsom, CA · On-site
$110K - $120K/yr
Vendor Risk Management * Assist with third-party risk assessments and due diligence reviews for new and existing vendors, including evaluation of financial, operational, cybersecurity, compliance ...
Enterprise Risk Management (ERM) Analyst
Folsom, CA · Hybrid
$110K - $120K/yr
Vendor Risk Management * Assist with third-party risk assessments and due diligence reviews for new and existing vendors, including evaluation of financial, operational, cybersecurity, compliance ...
Enterprise Risk Management (ERM) Analyst
Folsom, CA · Hybrid
$110K - $120K/yr
Vendor Risk Management * Assist with third-party risk assessments and due diligence reviews for new and existing vendors, including evaluation of financial, operational, cybersecurity, compliance ...
Enterprise Risk Management (ERM) Analyst
Folsom, CA · Hybrid
$110K - $120K/yr
Vendor Risk Management * Assist with third-party risk assessments and due diligence reviews for new and existing vendors, including evaluation of financial, operational, cybersecurity, compliance ...
Enterprise Risk Management (ERM) Analyst
Folsom, CA · Hybrid
$110K - $120K/yr
Vendor Risk Management * Assist with third-party risk assessments and due diligence reviews for new and existing vendors, including evaluation of financial, operational, cybersecurity, compliance ...
Vendor Risk Management * Assist with third-party risk assessments and due diligence reviews for new and existing vendors, including evaluation of financial, operational, cybersecurity, compliance ...
Quick apply
Vendor Risk Management * Assist with third-party risk assessments and due diligence reviews for new and existing vendors, including evaluation of financial, operational, cybersecurity, compliance ...
Third-Party / Vendor Risk Management (Primary Focus) * Design, implement, operate, and continuously mature the Third-Party Risk Management program, evolving it from a reactive, compliance driven ...
Third-Party / Vendor Risk Management (Primary Focus) * Design, implement, operate, and continuously mature the Third-Party Risk Management program, evolving it from a reactive, compliance driven ...
Risk Management Analyst
Sacramento, CA · On-site
Experience with audit processes and disciplines including third party risk management. * Working knowledge of industry leading GRC practices * 5+ years of experience in an IT Security/IT Risk ...
Risk Management Analyst
Sacramento, CA · On-site
Experience with audit processes and disciplines including third party risk management. * Working knowledge of industry leading GRC practices * 5+ years of experience in an IT Security/IT Risk ...
Security Risk Manager
San Francisco, CA · On-site
Specifically, the company wants someone with adept experience in security risk management (not just third-party risk management or compliance or vulnerability management). * Consulting with Big 4 * ...
Security Risk Manager
San Francisco, CA · On-site
Specifically, the company wants someone with adept experience in security risk management (not just third-party risk management or compliance or vulnerability management). * Consulting with Big 4 * ...
Senior Manager, Financial Risk Management
San Francisco, CA · On-site
$216K - $240K/yr
About the Team The Internal Controls function sits within the broader Finance Risk Management (FRM ... third-party dependencies, systems, and other high-risk workflows. We work closely with ...
Senior Manager, Financial Risk Management
San Francisco, CA · On-site
$216K - $240K/yr
About the Team The Internal Controls function sits within the broader Finance Risk Management (FRM ... third-party dependencies, systems, and other high-risk workflows. We work closely with ...
Weekend Third Party Risk Management information
What is the difference between Weekend Third Party Risk Management vs Weekend Vendor Compliance Specialist?
| Aspect | Weekend Third Party Risk Management | Weekend Vendor Compliance Specialist |
|---|---|---|
| Primary Focus | Assessing and mitigating risks associated with third-party vendors during weekends | Ensuring vendor compliance with policies and regulations during weekends |
| Certifications | Risk management, compliance, or industry-specific certifications | Vendor management, compliance, or industry-specific certifications |
| Work Environment | Financial institutions, healthcare, or corporate sectors with weekend operations | Retail, banking, or service industries with weekend vendor interactions |
Weekend Third Party Risk Management focuses on identifying and reducing risks posed by third-party vendors during weekend hours, ensuring operational security. In contrast, Weekend Vendor Compliance Specialists primarily verify that vendors adhere to company policies and regulations during weekends. While both roles require compliance knowledge and industry certifications, their core responsibilities differ: risk mitigation versus compliance enforcement.
Third Party Risk Management Capability Lead
Newport Beach, CA • On-site
Full-time
Medical, Dental, Vision, Life, Retirement, PTO
Posted 17 days ago
Pacific Life rating
6.8
Based on 6 frontline employees who took The Breakroom Quiz
245th of 281 rated insurance
Job description
The Third Party Risk Management (TPRM) Capability Lead is a senior individual contributor responsible for governing and overseeing Pacific Life's enterprise TPRM program within the 2nd line of defense, with clear accountability for the design, maintenance, and enforcement of policies, standards, and control frameworks. This role ensures robust cybersecurity, resilience, and third party due diligence practices are consistently applied and aligned with regulatory expectations, while driving continuous enhancement of governance structures supporting third party outsourcing risk. This is a hybrid role (4 days per week onsite) in our Newport Beach, CA office.
Operating with a high degree of autonomy, the TPRM Lead leverages deep subject matter expertise to oversee risk assessment, due diligence, and ongoing monitoring activities, with particular emphasis on cybersecurity controls, data protection, and critical vendor dependencies. The role partners closely with procurement, legal, information security, and business leaders to ensure risks across third and fourth party relationships are appropriately identified, governed, and mitigated.
As a trusted advisor, this role provides independent challenge and oversight to the first line of defense, ensuring adherence to established policies and control expectations while managing complex deliverables end-to-end. The position operates with minimal supervision within a team of approximately 35 professionals in Operational Risk & Resilience, part of Enterprise Risk Management, and collaborates closely with Service Owners, Service Managers, Service Leads, Capability Leads, and OR&R liaisons supporting effective first line execution.
How you will make an impact:
- Govern and enforce adherence to TPRM policies, standards, and control frameworks across the enterprise
- Ensure alignment with applicable regulatory expectations (e.g., NAIC, state DOI) and industry standards (e.g., NIST, ISO, Shared Assessments)
- Oversee and challenge third party due diligence reviews that span cybersecurity, data privacy, business continuity, financial, and operational risk elements
- Partner with the 1st line of defense to identify control gaps, assess residual risk, and ensure timely development and execution of risk treatment plans
- Escalate material risks, control deficiencies, and vendor issues through established governance and risk committee structures
- Develop and deliver executive and committee level reporting on third party risk exposure, trends, and emerging third party risks
- Serve as a trusted advisor to the business while providing effective 2nd line challenge to ensure appropriate risk based decisions
- Leverage industry best practices and external insights to strengthen governance, oversight, and program maturity
The experience you will bring:
- Bachelor's degree or equivalent professional experience
- Minimum 5+ years of experience in third-party risk management, operational risk, information security risk, or related GRC disciplines
- In-depth knowledge of TPRM frameworks, lifecycle practices, and regulatory expectations
- Strong understanding of interconnected risk domains (cybersecurity, privacy, business continuity, and vendor operational risk)
- Proven ability to solve complex problems using both conceptual and practical approaches
- Demonstrated ability to operate independently with minimal guidance and sound judgment
- Experience in financial services, preferably life insurance or annuities
- Familiarity with industry frameworks and standards (e.g., NIST CSF, ISO 27001/22301, Shared Assessments SIG/VRMMM)
- Relevant professional certifications (e.g., CRVPM, CISA, CRISC, CISSP, CTPRP) and experience with TPRM platforms/continuous monitoring tools
- Strong competencies in analytical thinking, stakeholder influence, communication, and driving continuous improvement5+ years of relevant experience in business resilience, business continuity, or operational resilience
What will make you stand out:
- Demonstrated governance mindset, with proven ownership of TPRM policies, standards, and control frameworks, and ability to enforce consistent adherence across the enterprise
- Bring deep expertise in cybersecurity due diligence and third party risk domains, with the ability to independently challenge assessments and drive risk informed decisions
- Operate as a highly credible second line advisor, effectively balancing partnership with the business while delivering objective challenge and oversight
- Proven track record of enhancing program maturity, including implementing scalable monitoring, improving control effectiveness, and aligning to evolving regulatory expectations
- Excel at translating complex risk insights into clear, executive-level reporting and actionable recommendations for senior leadership and risk committees
#LI-SD
Base Pay Range:
The base pay range noted represents the company's good faith minimum and maximum range for this role at the time of posting. The actual compensation offered to a candidate will be dependent upon several factors, including but not limited to experience, qualifications and geographic location. Also, most employees are eligible for additional incentive pay.
$113,490.00 - $138,710.00
Your Benefits Start Day 1
Your wellbeing is important to Pacific Life, and we're committed to providing you with flexible benefits that you can tailor to meet your needs. Whether you are focusing on your physical, financial, emotional, or social wellbeing, we've got you covered.
- Prioritization of your health and well-being including Medical, Dental, Vision, and Wellbeing Reimbursement Account that can be used on yourself or your eligible dependents
- Generous paid time off options including: Paid Time Off, Holiday Schedules, and Financial Planning Time Off
- Paid Parental Leave as well as an Adoption Assistance Program
- Competitive 401k savings plan with company match and an additional contribution regardless of participation
You Can Be Who You Are
We are committed to a culture of diversity and inclusion that embraces the authenticity of all employees, partners and communities. We support all employees to thrive and achieve their fullest potential.
What's life like at Pacific Life? Visit Instagram.com/lifeatpacificlife
EEO Statement:
Pacific Life Insurance Company is an Equal Opportunity /Affirmative Action Employer, M/F/D/V. If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access our career center as a result of your disability. To request an accommodation, contact a Human Resources Representative at Pacific Life Insurance Company.
What Pacific Life employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Pacific Life
Sourced by ZipRecruiter
When you purchase life insurance and retirement solutions, you're buying a promise. A promise that today, tomorrow or ten years from now, we'll be there. For more than 150 years, our clients have trusted Pacific Life to protect what matters most to them - their families, their businesses, their futures.
Industry
Finance and insurance
Company size
1,001 - 5,000 Employees
Headquarters location
Newport Beach, CA, US
Year founded
1868