The TJX Companies, Inc. · 2 months ago
Manager of IT Risk & Compliance - IT TPRM
United States
Full-time
Remote
Senior Level, Lead/Staff
$154K/yr - $200K/yr
8+ years expTJX Companies is a Fortune 100 company and the world’s leading off-price retailer. The Manager of IT Third-Party Risk Management is responsible for overseeing programs that strengthen vendor-related IT risk and compliance capabilities, ensuring alignment with enterprise goals and fostering team development through mentorship and training.
ApparelBeautyE-CommerceFashionFurnitureJewelryLocal BusinessRetail
Responsibilities
Lead the assessment, monitoring, and mitigation of risks associated with third-party vendors and service providers supporting the organization’s technology ecosystem
Ensure that third-party IT engagements comply with internal policies, regulatory requirements, and industry best practices in cybersecurity, data privacy, and operational resilience
Develop and maintain the IT Third-Party Risk Management (TPRM) framework, policies, and procedures
Lead resolution of complex challenges across projects or programs, identifying strategic or procedural solutions and driving process improvements
Collaborate with Procurement, Legal, Compliance, and IT teams to embed risk management throughout the vendor lifecycle
Identify and implement opportunities to enhance process efficiency and effectiveness; coach team members in continuous improvement
Support IT-driven initiatives aligned with domain roadmaps or business effectiveness goals
Oversee risk assessments for new and existing third-party vendors, with a focus on cybersecurity, data protection, and operational risk
Evaluate vendor controls using techniques such as questionnaires, documentation reviews, and external intelligence
Conduct ongoing due diligence and periodic reviews to monitor vendor performance and risk posture
Prepare and deliver risk reports, metrics, and dashboards to senior leadership and governance committees
Track remediation efforts and escalate critical issues as appropriate
Ensure compliance with relevant standards and frameworks (e.g., NIST, ISO 27001)
Manage stakeholder relationships to align strategic direction and program execution with organizational goals
Champion GRC tools and services that drive operational efficiency
Collaborate with associates and senior executives to advance risk management practices and solutions
Maintain a customer-focused operating model for risk and compliance services
Serve as a subject matter expert and advisor to business units on third-party risk
Build strong relationships with internal stakeholders and external vendors to promote risk awareness and accountability
Influence decision-making within the internal stakeholder community
Provide technical and managerial oversight across multiple risk and compliance projects and programs
Allocate resources strategically to support initiatives aligned with organizational priorities
Manage and optimize third-party risk management platforms and tools (e.g., ProcessUnity, ServiceNow)
Leverage automation and analytics to improve risk visibility and operational efficiency
Qualification
Required
Bachelor's degree in Information Technology, Cybersecurity, Risk Management, or a related field (Master's preferred)
8+ years of experience in IT risk management, vendor risk, or cybersecurity, including 3+ years in a leadership role
Deep understanding of third-party risk frameworks and regulatory requirements
Broad knowledge of risk and compliance concepts, technologies, and practices across multiple domains
Experience with industry frameworks and standards to ensure alignment with best practices and regulatory expectations
Proficiency with risk assessment tools (e.g., ServiceNow, SIG, BitSight, ProcessUnity)
Strong communication, leadership, and stakeholder management skills
Relevant certifications (e.g., CISM, CRISC, CISSP) are a plus
Preferred
Strategic thinker with a proactive, solution-oriented mindset
Ability to manage multiple priorities in a fast-paced environment
Strong analytical and problem-solving skills
Comfortable presenting to senior executives and boards
Benefits
Associate discount
401(k) match
Medical/dental/vision
HSA
Health care FSA
Life insurance
Short/long-term disability
Paid holidays/vacation /sick/bereavement/parental leave
EAP
Incentive programs for management
Auto/home insurance discounts
Tuition reimbursement
Scholarship program
Adoption/surrogacy assistance
Smoking cessation
Child care/cell phone discounts
Pet/legal insurance
Credit union
Referral bonuses
Company
The TJX Companies, Inc.
TJX is the leading off-price apparel and home fashions retailer in the U.S.
10001+ employees
H1B Sponsorship
The TJX Companies, Inc. has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (25)
2024 (15)
2023 (15)
2022 (30)
2021 (26)
2020 (18)
Funding
Current Stage
Public CompanyTotal Funding
unknown1989-08-04IPO
Leadership Team
Ernest Herrman
Chief Executive Officer
Bernard A. Cowens
Senior Vice President and Chief Information Security Officer
Recent News
2025-11-11
2025-11-05
Company data provided by crunchbase