Manager, Third-Party Risk Management

About Nscale
Nscale is the GPU cloud engineered for AI. We provide cost-effective, high-performance infrastructure for AI start-ups and large enterprise customers.  Nscale enables AI-focused companies to achieve superior results by reducing the complexity of AI development. Our GPU cloud bolsters technical capabilities and directly supports strategic business outcomes, including cost management, rapid innovation, and environmental responsibility.

We thrive on a culture of relentless innovation, ownership, and accountability, where every team member takes pride in their work and drives it with excellence and urgency. As an Nscaler, you’ll build trust through openness and transparency, where everyone is inspired to do their best work. If you join our team, you’ll be contributing to building the technology that powers the future.

About the Role (Job Purpose)

Nscale is seeking a Manager, Third-Party Risk Management to design and scale a modern, AI-driven vendor risk program.

This is a high-impact position focused on building an intelligent, automation-first TPRM capability that can scale globally without requiring a large team.Vendor risk posture becomes a key element of customer trust. We need a leader who can leverage automation, AI-assisted analysis, risk scoring models, and workflow orchestration to manage vendor risk efficiently and rigorously.

This role will be part of the global CISO organization.

Please apply only if you have hands-on experience designing and implementing AI-driven cybersecurity programs, and can demonstrate prior work (e.g., case studies, architectures, or deployed solutions).

What You’ll Do

Build an Automation-First TPRM Framework

• Design a scalable third-party risk framework aligned to ISO 27001, SOC 2, and NIST CSF.
• Develop automated vendor tiering and dynamic risk scoring models.
• Replace manual questionnaire-heavy processes with structured data-driven workflows.
• Integrate vendor risk into procurement and onboarding pipelines.

Leverage AI & Intelligent Automation

• Implement AI-assisted review of security questionnaires, SOC reports, and policy documents.
• Use automation to extract control mappings from vendor artifacts.
• Build continuous monitoring using external risk signals and attack surface intelligence.
• Reduce review cycle times while increasing risk signal quality.

Continuous Monitoring & Risk Intelligence

• Establish continuous vendor risk monitoring instead of annual static reviews.
• Integrate telemetry from:
     - External attack surface tools
     - Security ratings platforms
     - Public vulnerability disclosures
• Prioritize vendors based on real risk exposure, not just criticality labels.

Enterprise Deal Enablement

• Ensure vendor risk posture supports enterprise customer expectations.
• Provide structured evidence for customer due diligence.
• Reduce friction in large enterprise sales cycles.

Governance & Reporting

• Maintain a dynamic vendor risk register.
• Provide executive-level dashboards on vendor exposure and remediation trends.
• Align reporting to NIST CSF and enterprise risk domains.

What We’re Looking For

Required

• 8+ years in Third-Party Risk, Vendor Risk, or Security Risk.
• Experience building or modernizing a TPRM program in cloud, SaaS, or infrastructure environments.
• Strong understanding of ISO 27001, SOC 2, NIST CSF, and enterprise customer security expectations.
• Experience implementing or optimizing TPRM tooling (OneTrust, ServiceNow, Vanta, Whistic, etc.).
• Demonstrated ability to automate manual risk processes.

Strongly Preferred

• Experience leveraging AI or automation to improve security workflows.
• Familiarity with security ratings platforms and continuous monitoring solutions.
• Experience in high-growth or scaling environments where efficiency matters.
• Comfort working as a high-autonomy individual contributor.

Who You Are

• A builder who challenges legacy compliance models.
• Automation-oriented and systems-minded.
• Comfortable designing intelligent workflows.
• Able to balance risk rigor with business velocity.
• Curious about how AI can transform governance and assurance functions.

What We Can Offer You

At Nscale, you'll find a collaborative, supportive, and innovative environment where your contributions spark real impact. We're building something extraordinary, and we want you at the core.
●    Highly competitive package (base + equity) with reviews every 12 months. 🚀
●    Join the fastest-growing tech startup, your chance to push boundaries, collaborate with brilliant minds, and make your mark on cutting-edge AI. ✨
●    Expect a dynamic progression plan tailored to your ambitions. Grow by trying new things, leading, challenging the status quo, and owning your impact, always with our full support. 
●    Human-First Flexibility: We treat you as humans first. 🫶🏽 Our flexible workplace trusts Nscalers to deliver, giving you the autonomy to shape your day around life's moments.
●    Join our thriving remote-first team. Geography is no barrier to impact or connection. We build seamless virtual collaboration, empowering you, wherever you work.

Equal Opportunities Statement

We strongly encourage applications from people of color, the LGBTQ+ community, people with disabilities, neurodivergent people, parents, carers, and people from lower socio-economic backgrounds.

If there’s anything we can do to accommodate your specific situation, please let us know.

The responsibilities outlined in this job description are not exhaustive and are intended to provide a general overview of the position. The employee may be required to perform additional duties, tasks, and responsibilities as assigned by management, consistent with the skills and qualifications required for the role.

For information on how Nscale handles candidate personal data, please see our Employee & Candidate Privacy Notice: Here.