TPRM Governance, Reporting, and Controls Lead - Chief Risk Office
Used Tools & Technologies
Not specified
Required Skills & Competences
Tag name is followed by "@" symbol and proficiency level value.
About proficiency levels:
- 1-2 — basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 — daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 — you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 — exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Security @ 4
Python @ 4
SQL @ 4
ETL @ 4
Data Science @ 4
Leadership @ 4
Communication @ 4
Data Engineering @ 4
GDPR @ 4
ServiceNow @ 3
BI @ 6
Reporting @ 4
Power BI @ 6
Compliance @ 4
Data Visualization @ 6
Profiling @ 4
Data Pipelines @ 4
- 1-2 — basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 — daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 — you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 — exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Details
Bloomberg’s Chief Risk Office (CRO) is seeking a TPRM Governance, Reporting, and Controls Lead to design and implement data-driven solutions that enable and enhance Bloomberg’s Vendor Risk Management program. This individual contributor role will focus on sourcing, integrating, and operationalizing internal and third-party data feeds to support automated risk identification, profiling, assessment, and continuous monitoring of vendor engagements — including owning and managing the Company’s Critical Vendor analysis and reporting. You will work closely with risk assessors, technology teams, and cross-functional stakeholders to ensure data is leveraged effectively to drive insights, improve decision-making, and strengthen Bloomberg’s third-party risk posture.
Location: New York
Responsibilities
Data Strategy & Integration
- Help define and own the Critical Vendor data-based methodology and other key TPRM reporting frameworks.
- Establish and implement KRIs and KPIs across the vendor risk program.
- Identify and source internal and external data feeds relevant to vendor risk domains (e.g., InfoSec, privacy, resilience, regulatory).
- Design and implement data pipelines and integration workflows to support automated risk profiling, scoring, and continuous monitoring.
- Collaborate with technology partners to ensure data architecture supports scalability, accuracy, and timeliness of risk insights.
- Maintain data dictionaries, lineage documentation, and governance protocols.
Analytics & Reporting
- Develop dashboards and reporting tools that provide actionable insights into vendor risk exposure, trends, and performance.
- Support thematic and engagement-level risk assessments with data-driven analysis and visualizations.
- Partner with VRM leadership to define KPIs and metrics for program effectiveness.
- Deliver executive-ready reporting to support strategic decision-making and regulatory compliance.
Collaboration & Enablement
- Work with Vendor Risk Managers to translate business requirements into technical solutions and take ownership of TPRM data needs.
- Partner with Enterprise Risk, Compliance, and Legal teams to align reporting with broader risk frameworks and obligations.
- Monitor industry trends and emerging technologies to continuously improve data capabilities and analytics maturity.
- Contribute to training materials and documentation to support adoption of analytics tools across VRM.
Requirements
- Bachelor’s or Master’s degree in Data Science, Information Systems, Risk Management, or equivalent experience.
- Extensive experience in vendor risk management and/or data analytics roles, with a focus on third-party data integration and reporting.
- Proficiency in data visualization tools and analytics platforms (e.g., QlikSense, Power BI).
- Experience with data engineering tools and languages (e.g., SQL, Python, ETL frameworks).
- Familiarity with third-party risk domains and vendor risk assessment methodologies.
- Understanding of regulatory requirements and frameworks (e.g., GDPR, DORA, NIST, ISO).
- Excellent communication skills and experience working in cross-functional environments.
- Experience managing multiple stakeholder priorities.
We’d Love to See
- Experience building automated risk-scoring models or continuous monitoring solutions.
- Familiarity with vendor risk platforms and tools (e.g., Archer, ServiceNow, SIG, VSAQ).
- Knowledge of cloud-based data architectures and security practices.
- Experience supporting regulatory audits or compliance reporting related to third-party risk.
Compensation & Benefits
Salary Range: 130000 - 180000 USD Annually + Benefits + Bonus
Bloomberg offers a comprehensive benefits plan that may include merit increases, incentive compensation (exempt roles only), paid holidays, paid time off, medical, dental, vision, short and long term disability benefits, 401(k) with match, life insurance, and wellness programs. The Company does not provide benefits directly to contingent workers/contractors and interns.
About the Team
The CRO team provides coverage of both Bloomberg's regulated entities and products, and Bloomberg's non-regulated products and services. The team focuses on addressing risks by providing risk management as a service to help businesses thoughtfully incorporate risk into decision making. Diversity and inclusion are essential to the team's success.