VIRTUAL43 - HomeRes - TX XXXXX Texas,00000
As a Senior Manager of Third-Party Risk Assessment at BMO, you won’t just manage assessments — you’ll shape how we secure hundreds of critical third-party relationships that power one of North America’s leading financial institutions. This is more than a people management role — it’s a chance to build, coach, and elevate a team of experts while leading frontline efforts in cyber defense.

ABOUT US

At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.
As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.
To find out more visit us at https://jobs.bmo.com/us/en
BMO is proud to be an equal employment opportunity employer. We evaluate applicants without regard to race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or any other legally protected characteristics. We also consider applicants with criminal histories, consistent with applicable federal, state and local law.
BMO is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please send an e-mail to BMOCareers.Support@bmo.com and let us know the nature of your request and your contact information.
Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes

WHAT MAKES THIS ROLE STAND OUT:

• 100% Remote Flexibility: Work remotely while leading a leading team of experienced Third Party Cyber Assessors — most of whom are tenured, and highly skilled in Third Party Risk Assessments
• Strong Peer Collaboration: You’ll partner closely with another senior manager and report directly to a Director who leads a dynamic 20-person assessment team. You’ll never lead in isolation — you’ll be part of a collaborative leadership structure.
• High Impact & Visibility: Lead quality assurance across hundreds of assessments annually, coach Third Party Risk Assessors, engage with executive stakeholders, and help drive resolution of complex risk findings. You’ll be seen as a go-to expert and decision-maker.
• Mission-Driven Culture: Our team thrives in a fast-moving, high-stakes environment where we balance business agility with security, regulatory expectations, and internal audit. This is cyber with real-world impact — where negotiation, leadership, and strategy matter just as much as technical acumen.
• Growth & Thought Leadership: You’ll be expected to challenge the status quo, bring fresh ideas to evolve our assessment model, and stay ahead of emerging threats — while mentoring others to do the same.

What You Bring to the Table:

• 5-10+ years of Cyber Third-Party Risk assessment experience,
• 5+ years in people-leadership (Managerial) role(s)
• CISSP certified
• Deep knowledge of NIST, ISO, or CIS frameworks
• Hands-on experience with major Cloud platforms such as AWS, Azure, or Google Cloud with a strong understanding of cloud security principles, architectures, and best practices.
• Expert-level capability in interviewing, auditing, documentation, and risk reporting
• Strong coaching instincts and the ability to raise the bar on technical quality
• A calm, assertive presence with proven skills in conflict resolution, negotiation, and influence
• Bonus points for ethical hacking certifications (OSCP, GPEN, CEPT)

KEY RESPONSIBILITIES:

• You are a Quality Assurance Czar. You will be responsible for ensuring all assessments have consistent strong quality and meet the expectations of our stakeholders.
• Train and coach: Work closely with your team of Assessors and provide them feedback on their assessments – this can include both technical and soft skills, like negotiation and communication. Being comfortable challenging others and critiquing the work of others is a must-have.
• Enjoy sharing knowledge. This could include coaching people outside of your team, e.g. explaining to the business a technical security control so that they can better understand the risk.
• Findings management. Review evidence and negotiate the closure of findings with internal teams and third parties.
• Be a thought leader. Bring new ideas to the team and challenge the status quo. The security landscape is always changing – we need to ensure that our assessments are aligned with the latest threats.