Supervisor, IT Security Vendor Risk Management
About The Position
This role provides essential leadership oversight to ensure consistent coverage and quality of IT Security Vendor Risk Assessments while improving coordination, standardization, and risk‑based prioritization. Dedicated supervision will drive measurable time reduction through operational efficiencies, reduce rework and process overhead, and enable senior leaders to focus on program strategy and regulatory readiness. This position follows our hybrid workstyle policy: Expected to be in a Raymond James office location a minimum of 10-12 days a month. Please note: This role is not eligible for Work Visa sponsorship, either currently or in the future.
Requirements
- Foundational experience in IT security, vendor risk management, third party risk, or similar risk functions
- Working knowledge of core information security and technology risk domains sufficient to review assessments, identify gaps, and escalate complex issues appropriately.
- Familiarity with internal policies, standards, and common regulatory expectations impacting third party risk management, with the ability to follow established procedures and recognize potential non compliance trends for escalation.
- Ability to apply basic risk concepts (inherent risk, control effectiveness, residual risk) to support consistent risk ratings and clear, defensible assessment outcomes.
- Experience reviewing and validating the work of others for completeness, accuracy, and adherence to standards, and providing constructive feedback to improve assessment quality and consistency.
- Developing people leadership skills, including task prioritization, workload coordination, coaching junior team members, and tracking team deliverables against defined timelines and objectives.
- Strong written and verbal communication skills, with the ability to summarize assessment results and risks in clear, business appropriate language for stakeholders and management.
Responsibilities
- Leads a team responsible for conducting risk based due diligence assessments for third party supplier engagements
- Oversees the evaluation of information security and technology risks associated with vendors, products, and services
- Ensures vendor risk outcomes align with the firm’s risk appetite and regulatory obligations
- Accountable for the quality, consistency, and timeliness of vendor risk assessments
- Translates technical and regulatory findings into clear risk conclusions and actionable recommendations
- Provides guidance and risk insights to business and technology stakeholders
- Partners closely with Procurement, Legal, IT, and business owners throughout the vendor lifecycle
- Ensures adherence to internal policies and external regulatory expectations
- Drives continuous improvement of the vendor risk management program
- Manages team performance, development, and day to day execution
Benefits
- medical
- dental
- vision
- life insurance
- critical illness insurance
- accident insurance
- disability benefits
- retirement savings
- paid time off (including vacation, holidays, and sick leave)
- parental leave
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
High school or GED
