Supplier Assurance & Vendor Risk Practice Lead

Posted 3 weeks ago

Worldwide

Summary

Senior Supplier Assurance & Vendor Risk Lead Enterprise Security Questionnaires, Trust Programs & Third-Party Risk Management We are seeking an experienced Supplier Assurance and Vendor Risk professional to lead complex customer assurance, security questionnaire, and third-party risk engagements for technology, healthtech, fintech, and regulated industry clients. This is a senior advisory role requiring someone who can operate independently, engage directly with executive stakeholders, and deliver practical outcomes under commercial and regulatory pressure. The successful candidate will be responsible for helping clients navigate enterprise procurement reviews, customer security assessments, trust program development, and supplier risk management initiatives. About the Role Many growing organisations face significant challenges when enterprise customers, hospitals, government agencies, or regulated partners request detailed security and privacy assessments before approving a commercial relationship. At the same time, organisations must demonstrate that their own suppliers and service providers are appropriately governed and monitored. You will lead engagements across both customer assurance and vendor risk management domains, helping clients establish credible, evidence-based assurance practices while maintaining commercial momentum. Key Responsibilities Customer Assurance & Security Questionnaires Lead responses to enterprise security questionnaires, vendor assessments, due diligence reviews, and procurement requests. Review and interpret customer requirements. Coordinate evidence collection across security, engineering, product, legal, privacy, and executive teams. Develop accurate, defensible, and commercially effective responses. Support customer follow-up reviews and audit requests. Build repeatable processes that reduce future response effort. Trust Programs & Assurance Operations Design and maintain trust packs, customer assurance materials, and security evidence repositories. Develop reusable response libraries and standardised assurance content. Support trust centre operations and customer-facing assurance initiatives. Establish governance processes for ongoing maintenance and quality control. Vendor Risk & Third-Party Risk Management Design and improve vendor risk management frameworks. Develop supplier onboarding, assessment, monitoring, and offboarding processes. Conduct vendor security and privacy assessments. Build vendor registers, tiering methodologies, risk scoring models, and reporting frameworks. Support supplier governance, operational resilience, and compliance initiatives. Required Experience Applicants should demonstrate: 10+ years of experience in supplier assurance, third-party risk, information security, GRC, technology risk, privacy, compliance, or related fields. Proven experience responding to enterprise security questionnaires and customer assurance reviews. Experience with vendor risk programs, supplier due diligence, and third-party governance. Strong knowledge of ISO 27001, SOC 2, NIST CSF, Essential Eight, and related frameworks. Ability to engage with technical, legal, privacy, sales, and executive stakeholders. Experience in SaaS, healthtech, fintech, enterprise technology, or regulated industries. Preferred Qualifications Relevant certifications may include: CISSP CISM CISA CRISC ISO 27001 Lead Auditor or Lead Implementer Privacy certifications (CIPP, CIPM, CIPT) Shared Assessments certifications Other risk, audit, security, or governance credentials What Success Looks Like The successful candidate will help clients accelerate procurement approvals, improve customer trust, establish scalable assurance capabilities, strengthen supplier governance, and create practical risk management processes that support sustainable growth. We are looking for a trusted senior operator who combines commercial awareness, technical understanding, risk discipline, and exceptional written communication skills to deliver measurable outcomes for clients.

  • More than 30 hrs/week
    Hourly
  • 6+ months
    Duration
  • Expert
    Experience Level
  • $20.00

    -

    $100.00

    Hourly
  • Remote Job
  • Ongoing project
    Project Type

Contract-to-hire opportunity

This lets talent know that this job could become full time.
Learn more
Skills and Expertise
Mandatory skills
Salesforce CRM
Activity on this job
  • Proposals:15 to 20
  • Interviewing:
    0
  • Invites sent:
    0
  • Unanswered invites:
    0
About the client
Member since Jan 27, 2025
  • AUS
    Melbourne4:25 PM
  • $2.5K total spent
    14 hires, 2 active
  • 209 hours

Explore similar jobs on Upwork

Product Sourcing Initial ResearchFixed-price‐ Posted 4 months ago
Sourcing
Market Research
Buying
Alibaba Sourcing
Source Webbing & Plating SuppliersFixed-price‐ Posted 3 weeks ago
Microsoft Excel
Phone Communication
Administrative Support
Customer Service

How it works

  • Post a job icon
    Create your free profile
    Highlight your skills and experience, show your portfolio, and set your ideal pay rate.
  • Talent comes to you icon
    Work the way you want
    Apply for jobs, create easy-to-by projects, or access exclusive opportunities that come to you.
  • Payment simplified icon
    Get paid securely
    From contract to payment, we help you work safely and get paid securely.
Want to get started? Create a profile

About Upwork

  • Rating is 4.9 out of 5.
    4.9/5
    (Average rating of clients by professionals)
  • G2 2021
    #1 freelance platform
  • 49,000+
    Signed contract every week
  • $2.3B
    Freelancers earned on Upwork in 2020

Find the best freelance jobs

Growing your career is as easy as creating a free profile and finding work like this that fits your skills.

Trusted by

  • Microsoft Logo
  • Airbnb Logo
  • Bissell Logo
  • GoDaddy Logo