Senior Manager, Third-Party Risk Management

About The Team

The Finance Risk Management team safeguards OpenAI’s financial and operational integrity. We design risk frameworks, manage key exposures, and ensure compliance with global standards. Third-party risk management is central to this mission—protecting the security, compliance, and resilience of OpenAI’s vendor ecosystem.

About The Role

We’re hiring a Senior Manager, Third-Party Risk Management (TPRM) to scale and mature our global program. Reporting to the Head of TPRM, you’ll drive day-to-day vendor risk operations while leading strategic initiatives that strengthen OpenAI’s supplier ecosystem.

This is a rare opportunity to combine hands-on execution with program leadership, shaping the future of risk management at one of the world’s fastest-growing AI companies.

This role is based in San Francisco, CA. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

In This Role, You Will:

• Lead third-party risk assessments and due-diligence activities across operational, financial, trade, supply-chain, legal, and other risk domains.
• Own end-to-end vendor lifecycle workflows—onboarding, monitoring, incident response, and off-boarding.
• Coordinate investigations of third-party incidents to ensure timely resolution.
• Build dashboards, scorecards, and reporting to give leadership real-time visibility into vendor risk posture.
• Partner with the Head of TPRM to refine frameworks, policies, and methodologies that scale with OpenAI’s rapid growth.
• Lead implementation of the operating model, cross-functional expansion, and automation initiatives.Identify gaps and propose enhancements to processes, tooling, and reporting.
• Drive adoption of risk accountability across Security, Legal, Compliance, Finance, and Procurement.
• Monitor industry developments and regulatory changes to keep OpenAI ahead of external expectations.
• Act as delegate for the Head of TPRM in cross-functional discussions, risk reviews, and senior-level briefings.
• Deliver training and awareness programs to promote risk ownership across the business.
• Communicate risk insights clearly to audiences ranging from technical teams to executive leadership.
• You might thrive in this role if you have:
• 7+ years in third-party risk management, vendor risk, or a related field (high-growth tech preferred). Hands-on assessment and workflow execution required; leadership of projects or initiatives strongly desired.
• A strong grasp of privacy, cyber risk, data security, operational resilience, and financial/vendor risk principles.
• The proven ability to manage complex processes and deliver results in a fast-paced environment.
• Exceptional communication and can influence, educate, and collaborate across functions.
• Analyzed risk data, identified trends, and produced actionable reporting.
• A CISA, CTPRP, CRISC, or similar credentials preferred.

About Openai

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity. 

We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic.

For additional information, please see OpenAI’s Affirmative Action and Equal Employment Opportunity Policy Statement.

Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act. For unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non-public information. In addition, job duties require access to secure and protected information technology systems and related data security obligations.

To notify OpenAI that you believe this job posting is non-compliant, please submit a report through this form. No response will be provided to inquiries unrelated to job posting compliance.

We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link.

OpenAI Global Applicant Privacy Policy

At OpenAI, we believe artificial intelligence has the potential to help people solve immense global challenges, and we want the upside of AI to be widely shared. Join us in shaping the future of technology.