all positions

Senior Vendor Risk Manager

Soho, New York | General & Administration

We’re looking for a Senior Vendor Risk Manager to join our growing NYC team. If you’re someone who is ready to own the development and implementation of an enterprise-wide vendor risk management program, this one’s for you. 

In this role, you’ll define, document, and manage all vendor data and security policies as they pertain to vendors. You’ll subject vendors to InfoSec reviews and you’ll manage all vendor on-boarding due diligence. You’ll perform the ongoing evaluation of vendors according to the policies you set—and “crack the whip” as needed. 

You’ll jump from lion-tamer to trusted confidant as you work with our own internal vendor groups. You’ll become best friends with our Legal and Compliance team, ensuring that our vendors meet regulatory and compliance frameworks as they pertain to data privacy and data security.

The Senior Vendor Risk Manager’s role also includes performing risk tracking, trending, analysis, and reporting, as well as generating vendor risk assessments for new and existing vendors and services. You’ll advise the business and management on material changes requested by third parties that affect our security posture or the privacy provisions of our contracts and outsourced activities. And of course, you’ll stay relentlessly up-to-date with current security, privacy, regulatory requirements, and best practices in the field.

 

Requirements
  • 3-5 years of experience managing compliance programs and/or audits
  • Bachelor's degree in Information Technology, Computer/Data Science, or Engineering, or comparable experience in  legal/compliance
  • Professional compliance-related certification is a plus
  • Strong quantitative and analytical skills; proven ability to track and successfully complete complex projects
  • Strong understanding of data privacy requirements 
  • Experience in organizing change management, awareness, and training for end users
  • Strong technical management skills when it comes to overseeing assessments of external data providers 
  • Flexibility, adaptability, and a team-focused mentality
  • Previous experience with GDPR or other data privacy laws and regulations is preferred 
About Lemonade

Lemonade is a licensed insurance carrier offering renters, homeowners, life, and pet insurance in the United States, contents and liability insurance in Germany and the Netherlands, and renters insurance in France. We’re powered by artificial intelligence and behavioral economics, and driven by social good.

A Certified B-Corp, Lemonade donates unused premiums to nonprofits selected by its community as part of our annual Giveback program. We incorporate our values into everything we do—from our business model to our office culture.