Title: Solutions Engineer – Third-Party Risk Management (TPRM)

Location: Minnesota/Remote

Duration: Permanent Placement

Salary: $150,000 yearly

Role Overview:

We are seeking an experienced and highly technical Solutions Engineer with a deep understanding of Third-Party Risk Management (TPRM) to join our growing team. This individual will play a pivotal role in pre-sales and post-sales engagements by collaborating with customers and internal teams to deliver custom TPRM solutions that meet the complex demands of global organizations. The ideal candidate should possess hands-on technical skills, a strong understanding of vendor risk management, compliance requirements, and be able to translate business needs into highly effective technical solutions.

Key Responsibilities:

Pre-Sales Engineering Support:

Technical Advisory: Act as the subject matter expert on TPRM, advising customers on best practices for assessing, monitoring, and managing third-party risks.

Solution Design & Architecture: Work closely with the sales team to design comprehensive, scalable, and secure TPRM solutions based on customer requirements, ensuring alignment with regulatory standards and business objectives.

Product Demonstrations & POCs: Lead product webinars, demos, workshops, and Proof of Concept (POC) engagements, demonstrating how our TPRM platform can be customized to address complex risk management and compliance challenges.

Integration Planning: Work with customers to understand their existing systems (e.g., GRC) and design seamless integrations to facilitate the flow of risk data across platforms, including automated risk assessments and reporting.

Technical Documentation: Collaborate with sales and product teams to create comprehensive technical documentation, including solution proposals, integration guides, and customization documentation.

Post-Sales Implementation & Optimization:

Implementation Leadership: Oversee the deployment of TPRM solutions, ensuring successful configuration, customization, and integration into the customer’s enterprise environment.

Customization & Configuration: Lead the configuration of the TPRM platform to align with customer-specific third-party risk management workflows, policies, and compliance frameworks (e.g., SOC 2, GDPR, NIST, ISO 27001).

Vendor Risk Assessments: Assist in setting up automated risk assessment frameworks for evaluating vendor risks, including security, financial, operational, and reputational risks, using internal and external data sources.

Integration with Third-Party Systems: Ensure seamless integration with other enterprise risk management systems, such as SIEM, ERP, CRM, and GRC platforms, to enable comprehensive third-party risk workflows.

Technical Requirements:

TPRM Expertise:

Extensive knowledge of Third-Party Risk Management practices, including vendor risk assessments, risk scoring, risk mitigation, and monitoring.

Experience with vendor risk assessment frameworks , including security , privacy , and compliance evaluations.

Familiarity with third-party due diligence processes , including surveys, questionnaires, audits, and on-site assessments.

Understanding of regulatory compliance requirements related to third-party vendors, such as SOC 2, GDPR, ISO 27001, PCI-DSS , and NIST standards.

Ability to implement and manage continuous monitoring and automated risk assessments for vendors, and ensure alignment with evolving business needs.

Desired Skills:

Security & Compliance Expertise: Familiarity with cybersecurity frameworks , risk management strategies, and how they apply to third-party vendor management (e.g., NIST Cybersecurity Framework, ISO 27001).

Regulatory & Legal Knowledge: Experience with global compliance regulations (e.g., GDPR, CCPA, DORA) and how they impact third-party risk management.

Vendor Management & Contract Negotiation: Exposure to vendor lifecycle management, including risk scoring, and continuous monitoring post-contract.

Project Management: Experience managing complex, multi-stakeholder projects, including project scoping, resource allocation, and setting timelines.

Client-Facing Communication Skills: Strong ability to communicate complex technical concepts and solutions to non-technical stakeholders, while also building trusted relationships with technical teams.

Qualifications:

Bachelor’s Degree in Computer Science, Engineering, Information Security, Risk Management, or related technical field (or equivalent practical experience).

A minimum of 3-5 years of experience working with TPRM solutions, vendor risk management, or related areas in a technical or consulting capacity.

Industry certifications such as CISSP, CISM, CRISC, or CISA are a plus.

Experience in client-facing roles with a proven ability to translate complex technical issues into business solutions.

Familiarity with cloud security best practices and the challenges associated with managing third-party risks in cloud environments.

Brooksource provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, national origin, age, sex, citizenship, disability, genetic information, gender, sexual orientation, gender identity, marital status, amnesty or status as a covered veteran in accordance with applicable federal, state, and local laws.