Manager, Third Party Risk Management (Remote)

CrowdStrike Holdings, Inc.$125K — $180K *
US-AnywhereRemote in United States
Business Services
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 10+ years in TPRM, GRC, or info security risk
  • 3+ years in people management
  • Proficient in vendor risk assessment and management
  • Hands-on experience with ServiceNow TPRM module
  • Knowledge of security frameworks like NIST and ISO 27001
  • Experience with AI/ML in risk management workflows
  • Strong communication skills for diverse stakeholders

Responsibilities

  • Lead and develop a team of 4 TPRM analysts
  • Serve as an escalation point for vendor risk issues
  • Oversee third-party risk assessments and evaluations
  • Manage the vendor risk lifecycle for onboarding and offboarding
  • Collaborate with stakeholders to integrate risk in vendor processes
  • Enhance vendor risk management programs and processes
  • Implement automation and AI capabilities for efficiency

Benefits

  • Market leader in compensation and equity awards
  • Comprehensive physical and mental wellness programs
  • Competitive vacation and holidays for recharge
  • Paid parental and adoption leaves
  • Professional development opportunities
  • Employee Networks and volunteer opportunities
  • Vibrant office culture with top-notch amenities
Full Job Description
About the Role:

CrowdStrike is seeking an experienced Manager, Third Party Risk Management (TPRM) to lead a high-performing team responsible for assessing and managing risks associated with our third-party vendor ecosystem. This role sits within the GRC organization and is critical to protecting CrowdStrike's customers, data, and operations through rigorous, scalable, and forward-thinking vendor risk practices.

As a people leader, you will manage a team of four TPRM analysts while driving strategic improvements to our program, tooling, and processes - including automation initiatives, AI integration, and efficiencies identified through continuous improvement efforts. You will also lead the organizational efforts in defining, establishing, managing and enforcing cybersecurity policies, standards and procedures.

The ideal candidate will have an expert-level understanding of current processes and proactively search for ways to improve CrowdStrike's risk posture and GRC program in ways that support a fast-paced, secure, and empowered environment in the tech industry.

This role requires a strategic thinker with a deep understanding of cybersecurity principles, third party risk management and the ability to communicate effectively across all levels of the organization.

What You'll Do:
  • Lead, mentor, and develop a team of 4 TPRM professionals, fostering a culture of accountability, continuous learning, and operational excellence
  • Set clear performance expectations, conduct regular 1:1s, and support career development for each team member
  • Serve as an escalation point for complex vendor risk issues and assessments.
  • Oversee end-to-end third-party risk assessments including inherent risk tiering, due diligence, control evaluations, and residual risk determinationsManage the full vendor risk lifecycle including onboarding, periodic reassessment, and offboarding, ensuring consistent application of TPRM standards.
  • Partner with Procurement, Legal, IT, Security, and Business stakeholders to embed risk considerations into the vendor engagement process.
  • Evaluate vendor security posture, compliance certifications (SOC 2, ISO 27001, etc.), and contractual obligations.
  • Creating and enhancing a cybersecurity vendor risk management program, including the identification, evaluation and mitigation of risks across the organization.
  • Conducting third party controls evaluations and audits.
  • Performing other duties within the scope of governance, risk and compliance
  • Working across organizations to help align organizations with shared third party compliance goals and objectives.
  • Coordinating with IT and business units to implement effective cybersecurity measures and integrate security practices into business processesCollaborate with cross-functional teams, including procurement, legal, and IT, to ensure comprehensive vendor risk management.
  • Lead the implementation of process improvements and efficiencies identified through a recent kaizen event, driving measurable outcomes.
  • Develop and expand automation capabilities within ServiceNow TPRM to reduce manual effort and increase assessment throughput.
  • Identify and implement AI-driven capabilities to enhance risk scoring, vendor monitoring, and workflow efficiency.
  • Define and track KPIs and metrics to demonstrate program maturity and effectiveness to senior leadership.
  • Serve as a functional owner and subject matter expert for ServiceNow as the TPRM platform of record.
  • Partner with GRC tooling and IT teams to configure, optimize, and expand ServiceNow workflows supporting TPRM operations.
  • Evaluate emerging technologies and vendor risk intelligence platforms to enhance the program.
  • Develop and maintain TPRM policies, standards, and procedures in alignment with industry frameworks (NIST, ISO 27001, SOC 2, FAIR, etc.).
  • Prepare and present risk reporting and program status updates to senior leadership and key stakeholders.
  • Support internal and external audit activities related to third-party risk.


What You'll Need:
  • 10+ years of experience in Third Party Risk Management, GRC, information security risk, or related controls disciplines.
  • 3+ years of people management experience, with demonstrated ability to lead and develop teams.
  • Deep expertise in vendor risk assessment methodologies, control frameworks, and risk lifecycle management.
  • Hands-on experience with ServiceNow Third Party Risk Management (TPRM) module.
  • Demonstrated experience driving process improvement, automation, or operational efficiency initiatives within a risk or compliance program.
  • Strong understanding of security and compliance frameworks including NIST CSF, ISO 27001, SOC 2, NIST 800-53, and/or SIG.
  • Experience with or strong interest in applying AI/ML tools to GRC or risk management workflows.
  • Excellent communication and stakeholder management skills - able to translate technical risk concepts for business audiences.
  • Ability to operate effectively in a fast-paced, high-growth environment.
  • Proven experience working across teams and global regions to achieve company objectives and review goals.
  • Ability to build rapport and maintain relationships across a multitude of functions within the company, with external vendors, and with governmental teams.
  • Program and project management experience in scoping, work break-down, critical path analysis, resourcing, managing time and cost estimates, project risks, and quality.
  • Ability to think strategically about risks and tie those risks to tactical organizational activities.


Bonus Points:
  • Experience with a cloud environment and the CrowdStrike products or services
  • Practical experience in Software Development and Secure Coding best practices.
  • Practical experience in performing integration risk assessments and threat modeling third party software components.
  • Experience in working with leading GRC products.


#LI-Remote
#LI-CS1

Benefits of Working at CrowdStrike:
  • Market leader in compensation and equity awards
  • Comprehensive physical and mental wellness programs
  • Competitive vacation and holidays for recharge
  • Paid parental and adoption leaves
  • Professional development opportunities for all employees regardless of level or role
  • Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
  • Vibrant office culture with world class amenities
  • Great Place to Work Certified™ across the globe


The base salary range for this position for all U.S. candidates is $125,000 - $180,000 per year, with eligibility for bonuses, equity grants and a comprehensive benefits package that includes health insurance, 401k and paid time off.

For detailed information about the U.S. benefits package, please click here.

Expected Close Date of Job Posting is:09-01-2026

About CrowdStrike Holdings, Inc.

CrowdStrike Holdings, Inc. Careers

Joining CrowdStrike Holdings, Inc. presents an unparalleled opportunity to advance a career in the tech industry with a company at the forefront of digital security. As a leader in cybersecurity solutions, CrowdStrike Holdings, Inc. offers a range of job opportunities that cater to a variety of skills and experiences, from entry-level positions to senior leadership roles.

Explore Job Opportunities

CrowdStrike Holdings, Inc. is continuously seeking talented individuals who are passionate about protecting organizations against cyber threats. With a commitment to innovation and excellence, the company is hiring professionals who are eager to contribute to a team that values hard work and creative solutions.

Innovation and Professional Growth

At CrowdStrike Holdings, Inc., employees are encouraged to push the boundaries of technology and leadership. The company supports professional growth through robust training programs, including leadership development and diversity training, ensuring that every team member has the resources to thrive in their career.

Culture and Benefits

The culture at CrowdStrike Holdings, Inc. is dynamic and inclusive, fostering a workplace where diversity is celebrated and every voice is heard. Employees enjoy comprehensive benefits that support both their professional and personal lives, enhancing job satisfaction and team morale.

Internship Programs

For those starting their career, CrowdStrike Holdings, Inc. offers internship programs that provide a rich learning environment. Interns gain hands-on experience, working alongside seasoned professionals and participating in projects that deliver real-world solutions.

Networking and Career Advancement

CrowdStrike Holdings, Inc. emphasizes the importance of networking within the industry, offering numerous opportunities for employees to connect with thought leaders and innovators. These connections can lead to career advancement and a deeper understanding of the cybersecurity landscape.

Applying for a Position

To apply for a position at CrowdStrike Holdings, Inc., candidates should prepare a resume that highlights relevant experience and skills. The interview process is designed to assess not only professional qualifications but also a candidate's fit within the company culture and team.

Stay Connected with CrowdStrike Careers

Interested candidates can stay informed about new openings and company news by subscribing to job alert emails. This personalized service ensures that potential applicants are the first to know about new opportunities that match their career interests and skills.

Join the Team

CrowdStrike Holdings, Inc. is looking for curious, creative, and solution-driven team players. Explore the employment opportunities on the CrowdStrike Holdings, Inc. careers page to find a position that matches your skills and passions.

SEARCH CROWDSTRIKE JOBS

Keep Up to Date

Stay ahead with career tips, insider perspectives, and industry-leading insights you can put to use today—all from the professionals who work at CrowdStrike Holdings, Inc.

READ CAREERS BLOG

Job Alert Emails

Customize your subscription to receive job alerts, latest news, and insider tips tailored to your preferences. Discover the exciting and rewarding career opportunities waiting at CrowdStrike Holdings, Inc.
Learn more about CrowdStrike Holdings, Inc.

Similar Jobs

More Jobs at CrowdStrike Holdings, Inc.

More Business Services Jobs

Find similar Manager, Third Party Risk Management (Remote) jobs: