Senior Manager, Third Party Risk ,Cybersecurity
VIRTUAL43 - HomeRes - TX, United States
Application Deadline:
06/26/2025Address:
VIRTUAL43 - HomeRes - TXJob Family Group:
TechnologyAs a Senior Manager of Third-Party Risk Assessment at BMO, you won’t just manage assessments — you’ll shape how we secure hundreds of critical third-party relationships that power one of North America’s leading financial institutions. This is more than a people management role — it’s a chance to build, coach, and elevate a team of experts while leading frontline efforts in cyber defense.
What Makes This Role Stand Out:
- 100% Remote Flexibility: Work remotely while leading a leading team of experienced Third Party Cyber Assessors — most of whom are tenured, and highly skilled in Third Party Risk Assessments
- Strong Peer Collaboration: You’ll partner closely with another senior manager and report directly to a Director who leads a dynamic 20-person assessment team. You’ll never lead in isolation — you’ll be part of a collaborative leadership structure.
- High Impact & Visibility: Lead quality assurance across hundreds of assessments annually, coach Third Party Risk Assessors, engage with executive stakeholders, and help drive resolution of complex risk findings. You’ll be seen as a go-to expert and decision-maker.
- Mission-Driven Culture: Our team thrives in a fast-moving, high-stakes environment where we balance business agility with security, regulatory expectations, and internal audit. This is cyber with real-world impact — where negotiation, leadership, and strategy matter just as much as technical acumen.
- Growth & Thought Leadership: You’ll be expected to challenge the status quo, bring fresh ideas to evolve our assessment model, and stay ahead of emerging threats — while mentoring others to do the same.
What You Bring to the Table:
- 5-10+ years of Cyber Third-Party Risk assessment experience,
- 5+ years in people-leadership (Managerial) role(s)
- CISSP certified
- Deep knowledge of NIST, ISO, or CIS frameworks
- Hands-on experience with major Cloud platforms such as AWS, Azure, or Google Cloud with a strong understanding of cloud security principles, architectures, and best practices.
- Expert-level capability in interviewing, auditing, documentation, and risk reporting
- Strong coaching instincts and the ability to raise the bar on technical quality
- A calm, assertive presence with proven skills in conflict resolution, negotiation, and influence
- Bonus points for ethical hacking certifications (OSCP, GPEN, CEPT)
You’ll Excel Here If You…
- Love being the calm in the chaos — stepping into crisis calls, leading tough conversations, and helping teams find clarity
- Get energy from teaching others and raising the standard of the whole team
- Aren’t …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
100% remote
Benefits/Perks100% Remote 100% remote work Accident and life insurance Career development Coaching Collaborative leadership structure Commission structure Discretionary bonuses Diversity and Inclusion Fully remote Growth Opportunities Health insurance In-depth training In-depth training and coaching Life Insurance Manager support Mission-driven culture Network-building opportunities Other perks Other perks and rewards Performance-based incentives Retirement savings Retirement savings plans Total compensation package Training Training and coaching Tuition reimbursement
Tasks- Challenge status quo
- Drive resolution of risk findings
- Lead quality assurance
- Manage third-party risk assessments
- Problem solving
- Provide insights
- Provide insights and recommendations
- Reporting
Analytical Audit Auditing AWS Azure Banking Business Analysis Business Processes CEPT CIS Cloud Security Coaching Collaboration Communication Conflict Resolution Consulting Continuous Improvement Cross-Group Collaboration Cybersecurity Cyber Security Decision making Diversity and Inclusion Documentation Emerging Technologies Ethical Hacking Excel Go Google Cloud GPEN Influence Information security Interviewing ISO Leadership Mentoring Negotiation NIST Organization OSCP People Management Project delivery Quality Assurance Recruiting Regulatory Regulatory requirements Reporting Risk Assessment Risk Reporting Root Cause Analysis Security Security Best Practices Security standards Service Soft Strategic initiatives Strategy Team Team performance Third-party Risk Assessment Training Verbal & Written Communication Written communication
Experience5-10 years
EducationBusiness Computer Science Degree Engineering Equivalent Information Security Information Systems Post-Secondary Degree Related Field
Certifications TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9