Job Description: Manager – Third Party Risk The position will be primarily responsible for managing and leading Third Party Risk Management (TPRM) engagements, including oversight of third-party assessments, client delivery, team management, and broader TPRM advisory initiatives as needed. This role will oversee the execution, quality, and delivery of engagements focused on evaluating third-party risk across areas such as information security, compliance, operational risk, privacy, and broader TPRM practices. The position will work within a Crowe team at a client or third-party site and be responsible for leading teams in identifying key risks, process gaps, and remediation strategies. This role will serve as both a trusted advisor to client leadership and a people manager responsible for coaching, mentoring, performance management, and development of consultants and senior consultants within the practice. Projects would be performed through interacting with client Information Security, Procurement, Compliance, Privacy, Legal, and Business Unit leadership, as well as the client’s vendors, service providers, and partners. Specific projects and responsibilities may include:

• Leading Third Party Risk Management engagements, including third-party assessments, ongoing monitoring activities, and risk evaluation efforts
• Managing and overseeing assessment teams, project timelines, and client deliverables across multiple engagements
• Supporting TPRM program enhancement initiatives, including governance, policy, process, workflow, and operating model improvements, as client needs arise
• Evaluating third-party controls, documentation, and questionnaire responses in accordance with client standards and regulatory expectations
• Identifying third-party risks, gaps, and remediation considerations across information security, compliance, operational, and vendor management domains
• Delivering executive-level reporting, presentations, and recommendations to client leadership
• Managing, mentoring, coaching, and developing consultants and senior consultants across engagements
• Providing performance feedback, engagement oversight, and career development support for team members
• Supporting hiring, onboarding, staffing, and resource planning activities within the practice
• Supporting business development initiatives, client relationship management, and practice growth efforts

Our clients operate in and our team members work across the following industries:

• Financial Services
• Pharmaceutical
• Life Sciences
• Biotechnology
• Healthcare
• Manufacturing
• Technology, Media and Telecommunications

Basic Qualifications

• Bachelor’s Degree
• 5–8+ years of experience in Third Party Risk Management, vendor risk management, operational risk, compliance, risk advisory, or related consulting functions
• One or more of the following certifications required
  • Certified Third-Party Risk Professional (CTPRP)
  • Certified Vendor Risk Management Professional (CVRMP)
  • Shared Assessments or other vendor risk management certification
  • CISM
  • CRISC
• Familiarity with information security and regulatory frameworks such as the Interagency Guidance, NIST, ISO 27001, SOC 2, HIPAA, PCI DSS, HITRUST, or similar standards
• Experience managing teams and personnel within a consulting, advisory, or professional services environment
• Experience managing multiple client engagements and stakeholders in a fast-paced environment
• Strong understanding of third-party risk lifecycle management, including due diligence, risk assessments, ongoing monitoring, issue management, and remediation tracking
• Experience managing multiple projects and teams in a fast-paced consulting environment
• Demonstrated leadership experience overseeing project execution, client relationships, and team performance
• Proven ability to learn new technologies and systems, especially through independent research and self-study
• Strong verbal and written communication skills with the ability to present technical information to both technical and executive audiences
• Ability to manage project schedules, budgets, staffing, and client expectations
• Ability to travel domestically an average of 20%–50% per year

Desired Qualifications

• Experience working within a third party program at a financial institution or consulting on third party programs at financial institutions
• Experience with Archer, ProcessUnity, ServiceNow, OneTrust, or other GRC/VRM platforms
• Experience with security ratings platforms and continuous monitoring solutions
• Experience leading teams and mentoring junior professionals in a consulting or advisory environment
• Bilingual capabilities preferred
• Open to remote work arrangements

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Crowe, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $104,500.00 - $213,800.00 per year. Our Benefits:
Your exceptional people experience starts here. At Crowe, we know that great peopleare what makes a great firm. We care about our people and offer employees a comprehensive total rewards package.

How You Can Grow:
We will nurture your talent in an inclusive culture that values diversity. You will have the chance to meet on a consistent basis with your Career Coach that will guide you in your career goals and aspirations. Learn more about where talent can prosper!