Cloudflare
Manager, Security Third Party Risk Management
Job Posted 5 Days Ago
Be an Early Applicant
Manage the third party risk program, lead vendor assessments, negotiate contract terms, and oversee a team of specialists in risk management.
The Team
We are looking to hire an experienced manager for our Third Party Risk Program on our Security Governance, Risk, and Compliance team. This role will be responsible for managing a team of third party risk specialists, overseeing vendor & data center security reviews, and maturing our third party risk program & tooling.
What you'll do
- Own and manage our third party risk management program controls including vendor risk assessments, security contract terms, and continuous monitoring.
- Determine strategy for assessing and tiering Cloudflare vendors based on security impact.
- Lead Cloudflare's vendor risk assessment process by setting security policies and standards for various types of vendor engagements.
- Ensure that vendors are assessed in accordance with Cloudflare's security policies and standards.
- Support negotiation of security contract terms with vendors by maintaining guidance for Contracts/Legal teams and addressing contract escalations.
- Manage risk findings and policy exceptions identified through the vendor assessments by assessing risk, compensating controls, and determining acceptable risk thresholds.
- Partner with Sourcing, Contracts, Legal, Privacy, and Security teams to support Cloudflare's vendor lifecycle including onboarding, implementation, monitoring, and offboarding.
- Support the design and implementation of a new Procurement tool.
- Manage, engage, and grow a distributed team of Third Party Risk Management Specialists.
- Travel as needed to engage teammates, stakeholders, and vendors in San Francisco, Austin, or other global Cloudflare locations.
Examples of desirable skills, knowledge and experience
- Experience typically gained in 5-8 years working in Security GRC
- Experience managing a third party risk program
- Experience managing a team of GRC specialists
- Solid understanding of security contract terms
- Strong leader and business partner
- Strong organizational, analytical, and interpersonal skills
Top Skills
And Compliance
Procurement Tools
Risk
Security Governance
Cloudflare London, England Office
Riverside Building, 6th Floor, County Hall/The, Belvedere Rd, London, United Kingdom, SE1 7PB
Similar Jobs at Cloudflare
Cloud • Information Technology • Security • Software • Cybersecurity
Manage sourcing and procurement for Cloudflare's infrastructure, negotiating costs and quality with partners, and collaborating with engineering teams.
Top Skills:
Cloud InfrastructureHardware SourcingNetworking EquipmentPublic Cloud TechnologiesServer Technology
Cloud • Information Technology • Security • Software • Cybersecurity
Lead and execute technology and cybersecurity audits, improving insights through data analytics. Communicate findings and mentor team members, focusing on risk management.
Top Skills:
AICybersecurity FrameworksData Analytics
Cloud • Information Technology • Security • Software • Cybersecurity
The Sourcing Category Manager leads strategic sourcing and category management, focusing on Marketing and Corporate Services, ensuring procurement effectiveness and collaboration with stakeholders.
Top Skills:
Google PresentationsGoogle Sheets
What you need to know about the London Tech Scene
London isn't just a hub for established businesses; it's also a nursery for innovation. Boasting one of the most recognized fintech ecosystems in Europe, attracting billions in investments each year, London's success has made it a go-to destination for startups looking to make their mark. Top U.K. companies like Hoptin, Moneybox and Marshmallow have already made the city their base — yet fintech is just the beginning. From healthtech to renewable energy to cybersecurity and beyond, the city's startups are breaking new ground across a range of industries.
