Supervisor, IT Security Vendor Risk Management

Responsibilities

• Leads a team responsible for conducting risk based due diligence assessments for third party supplier engagements
• Oversees the evaluation of information security and technology risks associated with vendors, products, and services
• Ensures vendor risk outcomes align with the firm's risk appetite and regulatory obligations
• Accountable for the quality, consistency, and timeliness of vendor risk assessments
• Translates technical and regulatory findings into clear risk conclusions and actionable recommendations
• Provides guidance and risk insights to business and technology stakeholders
• Partners closely with Procurement, Legal, IT, and business owners throughout the vendor lifecycle
• Ensures adherence to internal policies and external regulatory expectations
• Drives continuous improvement of the vendor risk management program
• Manages team performance, development, and day to day execution
• Education
• High School (HS) (Required)
• Work Experience
• General Experience - 3 to 6 years, Manager Experience - 13 months to 3 years
• Certifications
• Travel
• Less than 25%
• Workstyle
• Hybrid
• At Raymond James our associates use five guiding behaviors (Develop, Collaborate, Decide, Deliver, Improve) to deliver on the firm's core values of client-first, integrity, independence and a conservative, long-term view.
• We expect our associates at all levels to:
• Grow professionally and inspire others to do the same
• Work with and through others to achieve desired outcomes
• Make prompt, pragmatic choices and act with the client in mind
• Take ownership and hold themselves and others accountable for delivering results that matter
• Contribute to the continuous evolution of the firm
• #LI-TC1

Benefits

Additional Information

Job Description Summary This role provides essential leadership oversight to ensure consistent coverage and quality of IT Security Vendor Risk Assessments while improving coordination, standardization, and risk‑based prioritization. Dedicated supervision will drive measurable time reduction through operational efficiencies, reduce rework and process overhead, and enable senior leaders to focus on program strategy and regulatory readiness. Job Description This position follows our hybrid workstyle policy: Expected to be in a Raymond James office location a minimum of 10-12 days a month. Please note: This role is not eligible for Work Visa sponsorship, either currently or in the future. Technical Skills/Experience: Foundational experience in IT security, vendor risk management, third party risk, or similar risk functions Working knowledge of core information security and technology risk domains sufficient to review assessments, identify gaps, and escalate complex issues appropriately. Familiarity with internal policies, standards, and common regulatory expectations impacting third party risk management, with the ability to follow established procedures and recognize potential non compliance trends for escalation. Ability to apply basic risk concepts (inherent risk, control effectiveness, residual risk) to support consistent risk ratings and clear, defensible assessment outcomes. Experience reviewing and validating the work of others for completeness, accuracy, and adherence to standards, and providing constructive feedback to improve assessment quality and consistency. Developing people leadership skills, including task prioritization, workload coordination, coaching junior team members, and tracking team deliverables against defined timelines and objectives. Strong written and verbal communication skills, with the ability to summarize assessment results and risks in clear, business appropriate language for stakeholders and management.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at raymondjames? Share your experience