Senior Manager, Third-Party Risk (TPR) Management

Date: Jul 16, 2025

Location:

Any city, VA, US, 99999

Req ID: 31864

Be part of a team that unleashes the power of leading-edge technologies to help improve the health and well-being of those most vulnerable in our country and communities. Working at Gainwell carries its rewards. You’ll have an incredible opportunity to grow your career in a company that values work flexibility, learning, and career development. You’ll add to your technical credentials and certifications while enjoying a generous, flexible vacation policy and educational assistance. We also have comprehensive leadership and technical development academies to help build your skills and capabilities.

Summary

The Third-Party Risk Management (TPRM) Manager is responsible for assessing, monitoring, and managing risks associated with third-party vendors, suppliers, and service providers. This role ensures that external partnerships meet regulatory, cybersecurity, operational, and compliance standards while aligning with the organization’s risk appetite.

Your role in our mission

Third-Party Risk Assessment

Perform risk assessments and due diligence on new and existing third parties.
Evaluate vendors for financial stability, cybersecurity posture, regulatory compliance, and operational risks.
Maintain and update third-party risk profiles.

Onboarding & Offboarding Support

Support the vendor onboarding process with risk evaluation, documentation review, and coordination with legal, IT security, and procurement.
Ensure offboarding activities include proper data handling and risk mitigation procedures.

Monitoring & Governance

Monitor third-party performance, compliance, and risk indicators throughout the vendor lifecycle.
Escalate risk issues and support remediation efforts as needed.

Policy & Framework Implementation

Contribute to the development and implementation of third-party risk management policies, standards, and procedures.
Ensure alignment with enterprise risk management (ERM), cybersecurity, procurement, and compliance frameworks.

Regulatory Compliance & Reporting

Ensure third-party risk practices align with applicable laws and regulations (e.g., GDPR, HIPAA, OCC, DORA).
Prepare and present regular reports on third-party risk metrics to risk committees or senior management.

Tool & System Management

Use and help maintain third-party risk management platforms or GRC tools.
Support data entry, reporting, and system improvements to enhance efficiency.

Team Management

Manage a team of Third Party Assessors including performance reviews, goal setting and productivity targets.
Review and approve assessments completed by other team members.
Trouble shooting and problem solving for non-standard vendor issues.

What we're looking for

Bachelor’s degree in Risk Management, Business Administration, IT Security, Finance, or a related field.
3–5 years of experience in third-party/vendor risk management, compliance, or procurement.
Familiarity with TPRM frameworks (e.g., NIST, ISO 27001, SIG questionnaires).
Experience with risk management or GRC tools (e.g., Ariba SRM, Archer, OneTrust, ProcessUnity) is a plus.
Relevant certifications (e.g., CTPRP, CTPRA, CRVPM, or equivalent) are an advantage.

What you should expect in this role

This role reports directly to the Chief of Information Security (CISO).
This role is 100% remote within the United States with opportunity to travel for work up to 10% annually.

The deadline to submit applications for this posting is July 31, 2025.

The pay range for this position is $122,200.00 - $174,600.00 per year, however, the base pay offered may vary depending on geographic region, internal equity, job-related knowledge, skills, and experience among other factors. Put your passion to work at Gainwell. You’ll have the opportunity to grow your career in a company that values work flexibility, learning, and career development. All salaried, full-time candidates are eligible for our generous, flexible vacation policy, a 401(k) employer match, comprehensive health benefits, and educational assistance. We also have a variety of leadership and technical development academies to help build your skills and capabilities.

We believe nothing is impossible when you bring together people who care deeply about making healthcare work better for everyone. Build your career with Gainwell, an industry leader. You’ll be joining a company where collaboration, innovation, and inclusion fuel our growth. Learn more about Gainwell at our company website and visit our Careers site for all available job role openings.

Gainwell Technologies is an Equal Opportunity Employer, where all qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical condition), age, sexual orientation, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.