Apply on Employer Site

Boeing · 1 day ago

Third Party Risk and Resilience (TPRR) Operations Manager

USA - Mesa, AZ

Full-time

Hybrid

Mid, Senior Level

$140K/yr - $204K/yr

3+ years exp

Boeing is seeking a hands-on and outcome driven Third Party Risk and Resilience (TPRR) Operations Manager to lead the execution engine of the TPRR and Technology, Assessments, and Operations (TAO) program. This role involves managing supplier risk assessments, configuring the Aravo platform, and collaborating with various stakeholders to ensure high-quality supplier risk outcomes.

AerospaceIndustrial

No H1B

Responsibilities

Lead enterprise execution of supplier risk assessments (Initial Risk Questionnaire (IRQ), Due Diligence Questionnaire (DDQ)/Due Diligence Assessment (DDA), certification‑based assurance, continuous monitoring), meeting SLAs and quality targets

Own and configure the Aravo platform and related integrations (e.g., BitSight vectors, machine learning capabilities, Cybersecurity Maturity Model Certification (CMMC) data ingestion, QRC/TACOS handoffs, incident data)

Plan and deliver purchasing organization implementations and hyper care, including pilot operations, bug triage/fix execution, and continuous improvement feedback loops

Operationalize Global Data Inventory (GDI) control requirements, scoring models, and decision thresholds; ensure consistent outcomes, documentation quality, and auditability

Implement advanced reporting and dashboards (e.g., Power Business Intelligence (BI)) for leadership, analysts, procurement agents, and suppliers, track throughput, cycle times, risk rating contributions, and risk trends

Drive technology enhancements for efficiency and effectiveness (e.g., Terms of Use (TOU) contracting recommendations, Due Diligence Assessment bypass mechanisms where appropriate, Fit for Use (FFU) and Operational Technology (OT) integration, Business Continuity workflow)

Support Production Readiness Assessments and resilience initiatives in collaboration with Supply Chain Preparedness team; ensure IRQ/DDQ execution and data readiness

Maintain technology runbook, playbooks, and operations knowledge base; deliver training and job aids for analysts and business users

Lead, mentor, and develop a high-performing team of assessment operations and TPRM technology professionals; build a culture of quality, urgency, and continuous improvement

Qualification

Third-party risk operationsTPRM platforms/automationAravo configurationPower BI dashboardingStakeholder managementCyber risk assessmentAudit readinessMachine learning integrationContinuous improvementLeadershipCommunication skills

Required

3+ years of experience in third‑party risk operations, TPRM platforms/automation, audit, or cyber risk assessment leadership within complex, regulated enterprises

Experience demonstrating expertise implementing and running TPRM tooling (preferably Aravo or similar), including integrations with external risk data (e.g., BitSight) and internal systems

Experience managing large assessment pipelines to SLA, with strong QA discipline, documentation rigor, and audit readiness

Experience translating policy/control requirements into workflows, configuration, data models, and reporting; strong partnership with governance/design teams

Experience with stakeholder management and communication skills; successful track record leading multi‑BU rollouts and hypercare

Preferred

Bachelor's degree in information security, Information Systems, Engineering, Business, or related field

Master's degree

Certifications such as CISM, CRISC, CISSP, CISA, CBCP, CGEIT, CTPRP/CTPRA, and/or PMP

Experience with Aravo configuration, Power BI dashboarding, AuditBoard, ServiceNow IRM, and integration patterns (APIs, data pipelines) for TPRM ecosystems

Experience with NIST SP 800‑171/161, DFARS/DoD requirements, certification‑based assurance (e.g., CMMC), and integration with QRC/issue management tools (e.g., TACOS)

Experience with machine learning‑assisted risk triage, scoring calibration, and continuous monitoring signal fusion