Senior Consultant, Vendor Risk Management
United States - Remote
BlueVoyant
Senior Consultant, Vendor Risk Management
The Senior Consultant of Vendor Risk Management will spearhead the strategic delivery of comprehensive Vendor Risk Management Services. This role is pivotal in safeguarding our clients' supply chains by developing innovative frameworks and processes to mitigate cybersecurity risks. The Senior Consultant will engage closely with clients, offering expert guidance and tailored solutions to address complex supply chain challenges. The Senior Consultant will drive the development and refinement of third-party risk management programs, ensuring they align with evolving industry standards. This role demands exceptional initiative, a deep understanding of cybersecurity risks and information security, third party risk management, and the ability to communicate effectively with stakeholders at all levels. The Senior Consultant will also be instrumental in identifying business development opportunities, fostering strong client relationships, and creating scalable frameworks to streamline future implementations.
Key Responsibilities:
At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability!
Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies.
Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America.
All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.
Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting.
- Location: Remote, United States (East Coast Preferred)
- United States Citizenship Required
The Senior Consultant of Vendor Risk Management will spearhead the strategic delivery of comprehensive Vendor Risk Management Services. This role is pivotal in safeguarding our clients' supply chains by developing innovative frameworks and processes to mitigate cybersecurity risks. The Senior Consultant will engage closely with clients, offering expert guidance and tailored solutions to address complex supply chain challenges. The Senior Consultant will drive the development and refinement of third-party risk management programs, ensuring they align with evolving industry standards. This role demands exceptional initiative, a deep understanding of cybersecurity risks and information security, third party risk management, and the ability to communicate effectively with stakeholders at all levels. The Senior Consultant will also be instrumental in identifying business development opportunities, fostering strong client relationships, and creating scalable frameworks to streamline future implementations.
Key Responsibilities:
- Strategic Leadership: Develop and implement strategic initiatives to enhance vendor risk management frameworks and processes.
- Client Engagement: Collaborate with clients to assess and address supply chain and cybersecurity risks, offering expert guidance on best practices.
- Program Development: Lead the creation and refinement of third-party risk management programs, ensuring alignment with industry standards and client needs.
- Risk Assessment: Oversee vendor identification, on-boarding, monitoring, and remediation processes, including development of cybersecurity risk questionnaires.
- Communication & Reporting: Present findings and strategic recommendations to senior management and client stakeholders, facilitating informed decision-making.
- Process Optimization: Standardize operating procedures to optimize service delivery and maximize client utilization of vendor risk management solutions.
- Business Development: Identify opportunities for service expansion, including renewals, cross-sells, and up-sells, while maintaining strong client relationships.
- Framework Creation: Develop scalable processes and frameworks applicable across various industries to streamline future implementations.
- Experience:
- 5+ years as a consultant in Vendor Risk Management.
- 5+ years in a Vendor Risk Management role.
- 3-5 years in information security or a related role.
- Certifications: CISSP or equivalent preferred.
- Education: Bachelor's degree in computer science, information technology, or a related field.
- Technical Skills:
- In-depth knowledge of vendor risk management practices and tools, including risk assessment methodologies and compliance standards. Proficiency in developing and implementing risk management frameworks.
- Strong understanding of network and information security, security protocols, and security tools.
- Communication: Excellent verbal and written communication skills.
- Client Relations: Proven ability to build trusted relationships and conduct deep client discovery.
- Problem Solving: Demonstrated ability to design programs and solutions independently.
- Attributes:
- Entrepreneurial mindset with a drive for results.
- Experience in a cybersecurity or technology-focused organization.
- Strong project and process management skills.
At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability!
Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies.
Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America.
All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.
Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting.
BlueVoyant Candidate Privacy Notice
To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
2
0
0
Categories:
Compliance Jobs
Consulting Jobs
Tags: Analytics CISSP Compliance Computer Science Monitoring Privacy Risk assessment Risk management
Perks/benefits: Career development
Regions:
Remote/Anywhere
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsSenior Cyber Security Engineer jobsInformation System Security Officer jobsSenior Network Security Engineer jobsSecurity Consultant jobsPrincipal Security Engineer jobsSenior Penetration Tester jobsCloud Security Architect jobsIT Security Engineer jobsChief Information Security Officer jobsSenior Information Security Analyst jobsCyber Security Specialist jobsStaff Security Engineer jobsSecurity Specialist jobsCybersecurity Consultant jobsCyber Security Architect jobsThreat Intelligence Analyst jobsSecurity Operations Analyst jobsInformation System Security Officer (ISSO) jobsSenior Product Security Engineer jobsIT Security Analyst jobs
Encryption jobsSaaS jobsRMF jobsSDLC jobsMalware jobsGDPR jobsIPS jobsSQL jobsEDR jobsIDS jobsForensics jobsSplunk jobsTop Secret jobsDoDD 8570 jobsITIL jobsBash jobsFinance jobsOWASP jobsCompTIA jobsUNIX jobsCRISC jobsIntrusion detection jobsTerraform jobsTCP/IP jobsDocker jobs
SANS jobsPolygraph jobsData Analytics jobsGIAC jobsThreat detection jobsActive Directory jobsBanking jobsClearance Required jobsCCSP jobsVPN jobsSOAR jobsOSCP jobsAnsible jobsDNS jobsGCIH jobsJira jobsJavaScript jobsIT infrastructure jobsSOX jobsArtificial Intelligence jobsSOC 2 jobsSecurity strategy jobsSAP jobsCISO jobsOracle jobs