Head of Third Party Risk Management
Zoomies help the world connect — and deliver happiness while doing it. We set out to build the best video conferencing product for the enterprise, and today help people communicate better with products like Zoom Phone, Zoom Rooms, Zoom Video Webinars, Zoom Apps, and OnZoom.
We’re problem-solvers and self-starters, working at a fast pace to design solutions with our customers and users in mind. Here, you’ll work across teams to dig deep into impactful projects that are changing the way people communicate, and enjoy opportunities to advance your career in a diverse, inclusive environment.
Zoom is growing at an explosive pace by every measure - revenues, people, innovation, and customers. Led by Eric S. Yuan, the #1 ranked CEO on Glassdoor, our unique culture makes Zoom an awesome place to work. We are expanding teams across the organization. If you are motivated by delivering happiness, come join us at Zoom!
Zoom is looking for a global leader for our Third Party Risk Management program. The leader in this highly-visible position will be a business driven leader responsible for developing and implementing a third-party, vendor, and supply chain risk management program that aligns with industry best practices and ensures we meet our compliance obligations. This leader must have experience building out a scalable program, leveraging automation, and supporting the program on a daily basis.
This role will design, build and lead the new Zoom third-party risk management program and team. This leader needs to assess the current vendor, supply chain and third-party assessment processes and align to industry best practices. This position requires both a tactical and strategic approach to build out the program. This role will partner and influence leaders across Zoom to drive process, policy and technology changes in how we assess and manage third-party risk.
Responsibilities
Engage with the stakeholder team to assess current third-party risk management practices
Determine gaps between current practices and industry best practices for TPRM
Partner with key stakeholders to develop a third-party risk management program
Build and implement the TPRM framework, operating model and governance
Develop and implement policies, processes, procedures and controls surrounding TPRM risk assessment and mitigation
Establish, develop, and implement key metrics including KPIs for vendor risk management
Incorporate vendor risk assessment and management throughout the vendor lifecycle
Engage with stakeholder teams to develop best practices on proof of concept projects
Engage vendors and third-parties to enforce Zoom security and risk standards for TPRM
Qualifications
Minimum ten (10) years experience in an enterprise third-party risk management program
Minimum five (5) years related management/supervisory experience required
Must have experience building and scaling a third-party risk management program
Extensive experience with risk management frameworks and implementing best practices
Experience in developing new risk and/or compliance and auditing management functions and capabilities within large, complex environments
Strong influencing, negotiating, and interpersonal skills
Ability to build cross-functional partnerships and develop strong stakeholder relationships
Education: Bachelor's degree in Business Administration, Finance and Accounting, Management Science, Public Policy, Purchasing & Contract Management, Sourcing, Information Technology, or a related field required.
Preferred Qualifications
Previous experience in a FedRAMP certified environment
Industry certifications such as C3PRMP, CTPRP, CRISC
Prior experience working on cyber risk, enterprise risk, security, audit, or consulting
Experience with video conferencing and/or telecommunications
Explore Zoom:
Hear from our leadership team
Browse Awards and Employee Reviews on Comparably
Visit our Blog
Zoom with us!
Find us on social at the links below and on Instagram