C2C - Third Party Cyber Risk Manager - Princeton, NJ (Hybrid Onsite)

Hi, Hope you’re doing well. My name is Anil and I am a Technical Recruiter from Empower Professionals Inc. We are sourcing for a “Third Party Cyber Risk Manager (TPCRM)” role located at “Princeton, NJ (Hybrid Onsite)” and it is a long term contract for at least 12 months and can be extended further as well. If you’re skills match the job description, please share your updated resume along with your location and expected rate so that I can get in touch with you for further process. Role: Third Party Cyber Risk Manager (TPCRM) Locations: Princeton, NJ (Hybrid Onsite) Duration: 12+ Months Contract Note: Candidate needs to be in the office 3 Days every week. Local or candidates from adjacent states only. Role Overview: • The TPCRM Risk Manager ensures secure and compliant collaboration with third-party vendors by managing cyber risk, security standards, and audit processes. • This position combines technical expertise and business acumen to safeguard sensitive data and maintain trust between Genmab DD&AI and its partners. Key Responsibilities: Security: • Develop and maintain TPCRM security standards, metrics, and documentation. • Continuously assess third-party security risks and monitor vendor landscape. • Implement tools for ongoing risk monitoring and reporting. • Align TPCRM operations with Danish NIS2 Act and ensure supplier assessments/reassessments by end of 2026. • Collaborate with Procurement, Legal, Privacy, QA, and DD&AI to update security requirements. Audit: • Design and deploy cyber risk audit services by 2026. • Define audit priorities and execute audit calendar for short- and long-term plans. • Integrate audit results into dashboards and maintain strong relationships with key stakeholders. Primary Stakeholders: • Security Officers (US, DK, NL, JP, CN), Solution Architects, Business Owners, Data Protection Officer, Legal, Global Procurement, DD&AI Leadership, Head of IT Security & Risk Management. Qualifications: • Education: Bachelor’s in Computer Science, MIS, or equivalent experience. Experience: • 5+ years in TPCRM security and risk management (Pharma/Biotech preferred). • Certifications: CISA, CRISC, CISM, CISSP. • Familiarity with frameworks (ISO, NIST, GDPR, SOX, HIPAA) and GRC tools (ServiceNow, Archer, etc.). • Proven ability to implement security processes and improvement roadmaps. Skills: • Strong knowledge of vendor management and compliance frameworks (SOC 1/2, FISMA, GDPR, NIST, GxP). • Excellent communication, analytical, and organizational skills. • Ability to lead risk assessments, security improvements, and audit remediation. • Proficiency in KPIs/KRIs reporting and collaboration across global teams. • Soft skills: negotiation, facilitation, relationship-building. • Danish • NIS 2 • Certified Information Security Manager • CISSP • NIST standards • GDPR • HIPAA • ServiceNow • SOC 1 • FISMA • GxP • risk management • business acumen • security standards • security risks • supplier evaluations • legal • right to privacy • quality assurance • risk audits • solution architecture • data privacy • IT security • computer science • management information systems • CRISC • security • vendor relationship management • data analysis • organized • team management • risk analysis • soft skills • negotiation In compliance with the salary transparency law, the expected pay range for this role is $55 – $60/hr. Actual compensation depends on experience and interview evaluation. Thanks Anil Singh Technical Recruiter | Empower Professionals anil@empowerprofessionals.com |linkedin.com/in/anil-singh-sisodiya-8a3a982b9 ------------------------------------------------------------------------------------------------------------- Fax: 732-356-8009 | 100 Franklin Square Drive – Suite 104 | Somerset, NJ 08873 www.empowerprofessionals.com Certified NJ and NY Minority Business Enterprise (NMSDC) Note: We respect your Online Privacy. This is not an unsolicited mail. Under Bills.1618 Title III passed by the 105th U.S. Congress this mail cannot be considered Spam as long as we include Contact information and a method to be removed from our mailing list. If you are not interested in receiving our e-mails then please reply with a "REMOVE" in the subject line and mention all the e-mail addresses to be removed with any e-mail addresses, which might be diverting the e-mails to you. We are sorry for the inconvenience. This e-mail and any files transmitted with it are for the sole use of the intended recipient(s) and may contain confidential and privileged information. If you are not the intended recipient(s), please reply to the sender and destroy all copies of the original message. Any unauthorized review, use, disclosure, dissemination, forwarding, printing or copying of this email, and/or any action taken in reliance on the contents of this e-mail is strictly prohibited and may be unlawful. To subscribe or unsubscribe: https://send.empowerprofessionals.com/newsletter/subscribe/647186e8-bcb0-4f73-8f80-cb3daff9ad90