It Security Manager

Description

Manager, Third-Party Risk Management (TPRM) / GRC Overview Emory Healthcare is seeking a hands-on Third-Party Risk Management Manager to lead and actively contribute to security and risk assessments for third-party vendors and solutions. This role manages a team of three analysts while also serving as a working manager, performing reviews, signing off on assessments, and coordinating risk remediation across technology, business, legal, and security stakeholders. The position supports a high-volume, fast-changing intake of vendor security reviews and plays a critical role in prioritization, risk acceptance, and remediation within a complex healthcare environment. Key Responsibilities Team Leadership & Management Manage and mentor a team of three third-party risk analysts Provide day-to-day workload prioritization and guidance Perform final review and sign-off on all vendor risk assessments per documented procedures Act as an escalation point for complex or high-risk findings Balance people leadership with individual contributor responsibilities Third-Party Risk & Security Reviews (Hands-On) Conduct and oversee third-party security risk assessments using the Censinet platform Review vendor-submitted questionnaires, SOC reports, and supporting evidence Validate tool-identified risks against Emory's technical, network, and data architecture Determine appropriate outcomes: Risk acceptance Risk remediation (vendor-owned or Emory-owned) Exception handling Ensure risk remediation is tracked to an acceptable level Prioritization & "Air Traffic Control" Coordinate workload prioritization across competing business initiatives Adapt review priorities week-to-week based on shifting organizational needs (e.g., revenue cycle, enterprise platforms, benefits systems, AI initiatives) Partner with: Business owners IT / Emory Digital Enterprise Architecture AI review teams Contracting and Legal (input, not ownership) Risk Decision-Making & Exception Handling Evaluate complex, context-driven risks, such as: Single Sign-On (SSO) requirements (e.g., Shibboleth) Encryption requirements and acceptable exceptions Penetration testing applicability (e.g., biomedical devices) Disaster Recovery ownership (vendor-hosted vs. on-prem) Assign internal tasks vs. vendor remediation appropriately Oversee the risk register and remediation workflow Stakeholder Collaboration Work closely with Legal (information input; legal ownership remains elsewhere) Support contracting decisions with risk assessment context Communicate clearly with vendors, technical teams, and business leaders Tools & Platforms Experience with third-party risk tools (e.g., Censinet, Archer, OneTrust, or similar) Ability to learn new tools quickly (tool experience helpful but not mandatory) Skills Strong risk assessment and decision-making judgment Ability to balance speed, volume, and accuracy Comfortable navigating ambiguity and competing priorities Clear communicator with technical and non-technical stakeholders

Skills

third party risk, it security, Compliance, Vendor risk, Risk assessment

Top Skills Details

third party risk,it security,Compliance,Vendor risk,Risk assessment

Additional Skills & Qualifications

This role is 100% remote. Emory is located in Atlanta and GA based candidates are preferred but they are open to any of the following green states: Georgia, Florida, Alabama, North Carolina, South Carolina, Virginia, Louisiana, Tennessee, Ohio, Wisconsin, New Hampshire, Illinois, Pennsylvania, Texas, Arkansas, and Michigan.

Experience Level

Expert Level
Job Type & Location
This is a Permanent position based out of Atlanta, GA.
Pay and Benefits
The pay range for this position is $145000.00 - $156000.00/yr.
100% remote, 403 b match, pto and
Workplace Type
This is a fully remote position.
Application Deadline
This position is anticipated to close on Feb 5, 2026.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.