Third Party Risk and Resilience (TPRR) Operations Manager

About The Position

Requirements

• 3+ years of experience in third‑party risk operations, TPRM platforms/automation, audit, or cyber risk assessment leadership within complex, regulated enterprises
• Experience demonstrating expertise implementing and running TPRM tooling (preferably Aravo or similar), including integrations with external risk data (e.g., BitSight) and internal systems
• Experience managing large assessment pipelines to SLA, with strong QA discipline, documentation rigor, and audit readiness
• Experience translating policy/control requirements into workflows, configuration, data models, and reporting; strong partnership with governance/design teams
• Experience with stakeholder management and communication skills; successful track record leading multi‑BU rollouts and hypercare

Nice To Haves

• Bachelor’s degree in information security, Information Systems, Engineering, Business, or related field
• Master’s degree
• Certifications such as CISM, CRISC, CISSP, CISA, CBCP, CGEIT, CTPRP/CTPRA, and/or PMP
• Experience with Aravo configuration, Power BI dashboarding, AuditBoard, ServiceNow IRM, and integration patterns (APIs, data pipelines) for TPRM ecosystems
• Experience with NIST SP 800‑171/161, DFARS/DoD requirements, certification‑based assurance (e.g., CMMC), and integration with QRC/issue management tools (e.g., TACOS)
• Experience with machine learning‑assisted risk triage, scoring calibration, and continuous monitoring signal fusion

Responsibilities

• Lead enterprise execution of supplier risk assessments (Initial Risk Questionnaire (IRQ), Due Diligence Questionnaire (DDQ)/Due Diligence Assessment (DDA), certification‑based assurance, continuous monitoring), meeting SLAs and quality targets
• Own and configure the Aravo platform and related integrations (e.g., BitSight vectors, machine learning capabilities, Cybersecurity Maturity Model Certification (CMMC) data ingestion, QRC/TACOS handoffs, incident data)
• Plan and deliver purchasing organization implementations and hyper care, including pilot operations, bug triage/fix execution, and continuous improvement feedback loops
• Operationalize Global Data Inventory (GDI) control requirements, scoring models, and decision thresholds; ensure consistent outcomes, documentation quality, and auditability
• Implement advanced reporting and dashboards (e.g., Power Business Intelligence (BI)) for leadership, analysts, procurement agents, and suppliers, track throughput, cycle times, risk rating contributions, and risk trends
• Drive technology enhancements for efficiency and effectiveness (e.g., Terms of Use (TOU) contracting recommendations, Due Diligence Assessment bypass mechanisms where appropriate, Fit for Use (FFU) and Operational Technology (OT) integration, Business Continuity workflow)
• Support Production Readiness Assessments and resilience initiatives in collaboration with Supply Chain Preparedness team; ensure IRQ/DDQ execution and data readiness
• Maintain technology runbook, playbooks, and operations knowledge base; deliver training and job aids for analysts and business users
• Lead, mentor, and develop a high-performing team of assessment operations and TPRM technology professionals; build a culture of quality, urgency, and continuous improvement

Benefits

• Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
• The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.