Third Party Compliance Manager

MediaAlpha is hiring a Third-Party Compliance Manager to build and lead our enterprise-wide vendor and ecosystem security program.

Requirements

• 7+ years of experience in third-party/vendor security risk management, supply chain risk, security, procurement, or GRC
• Experience with TPRM methodologies, frameworks, and regulations (e.g., SIG, CSA, ISO,, NIST)
• Experience with managing third party risks associated with SaaS, APIs, cloud services and architectures, and supply-chain ecosystems
• Proven ability to define and deliver roadmaps, evolving manual TPRM program into an automated, scalable product
• Hands-on knowledge of TPRM tools and continuous monitoring platforms (Vanta, BitSight, SecurityScorecard, ServiceNow, OneTrust, Process Unity, etc.)
• Experience supporting vendor-related security incidents

Benefits

• Annual bonus program
• 401(k) retirement plan with matching contributions
• Open Paid Time Off policy
• Professional development reimbursement
• Cell Phone, Wellness, and Internet expense reimbursement
• Subscription to the Calm App
• 100% fully paid parental leave
• Dog-friendly offices
• Pet adoption reimbursement