Senior Consultant, Vendor Risk Management

Senior Consultant, Vendor Risk Management

• Location: Remote, United States (East Coast Preferred)
• United States Citizenship Required

Position Overview:

The Senior Consultant of Vendor Risk Management will spearhead the strategic delivery of comprehensive Vendor Risk Management Services. This role is pivotal in safeguarding our clients' supply chains by developing innovative frameworks and processes to mitigate cybersecurity risks. The Senior Consultant will engage closely with clients, offering expert guidance and tailored solutions to address complex supply chain challenges. The Senior Consultant will drive the development and refinement of third-party risk management programs, ensuring they align with evolving industry standards. This role demands exceptional initiative, a deep understanding of cybersecurity risks and information security, third party risk management, and the ability to communicate effectively with stakeholders at all levels. The Senior Consultant will also be instrumental in identifying business development opportunities, fostering strong client relationships, and creating scalable frameworks to streamline future implementations.

Key Responsibilities:

• Strategic Leadership: Develop and implement strategic initiatives to enhance vendor risk management frameworks and processes.
• Client Engagement: Collaborate with clients to assess and address supply chain and cybersecurity risks, offering expert guidance on best practices.
• Program Development: Lead the creation and refinement of third-party risk management programs, ensuring alignment with industry standards and client needs.
• Risk Assessment: Oversee vendor identification, on-boarding, monitoring, and remediation processes, including development of cybersecurity risk questionnaires.
• Communication & Reporting: Present findings and strategic recommendations to senior management and client stakeholders, facilitating informed decision-making.
• Process Optimization: Standardize operating procedures to optimize service delivery and maximize client utilization of vendor risk management solutions.
• Business Development: Identify opportunities for service expansion, including renewals, cross-sells, and up-sells, while maintaining strong client relationships.
• Framework Creation: Develop scalable processes and frameworks applicable across various industries to streamline future implementations.

Qualifications:

• Experience: 
  • 5+ years as a consultant in Vendor Risk Management.
  • 5+ years in a Vendor Risk Management role.
  • 3-5 years in information security or a related role.
• Certifications: CISSP or equivalent preferred.
• Education: Bachelor's degree in computer science, information technology, or a related field.
• Technical Skills: 
  • In-depth knowledge of vendor risk management practices and tools, including risk assessment methodologies and compliance standards. Proficiency in developing and implementing risk management frameworks.
  • Strong understanding of network and information security, security protocols, and security tools.
• Communication: Excellent verbal and written communication skills.
• Client Relations: Proven ability to build trusted relationships and conduct deep client discovery.
• Problem Solving: Demonstrated ability to design programs and solutions independently.
• Attributes: 
  • Entrepreneurial mindset with a drive for results.
  • Experience in a cybersecurity or technology-focused organization.
  • Strong project and process management skills.

About BlueVoyant

At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability!

Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies.

Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America.

All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.

Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting.

BlueVoyant Candidate Privacy Notice

To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice