Purpose of Position:
The Head of Vendor Management & Governance is a newly created leadership role sitting within Finance Department’s Operations team. This role will serve as the first-line orchestrator of all vendor lifecycle activity — partnering directly with first-line vendor relationship owners to ensure vendors are onboarded, monitored, and evaluated in compliance with Company policy.
This role is cross-functional across departments, and will be responsible for managing the vendor lifecycle operating model, including onboarding, monitoring, SOC review coordination, and alignment with Finance and application/AI inventory governance.
Essential Job Functions:
- Design, own, and continuously improve the end-to-end vendor onboarding framework, ensuring all new vendors meet financial, operational, compliance, and risk thresholds prior to engagement — including due diligence questionnaires, financial viability review, contract alignment checkpoints, and risk tiering
- Maintain a comprehensive and current vendor inventory with ownership attribution, contract metadata, and risk classifications that provides the Company with oversight over its entire vendor landscape
- Partner with first-line relationship owners to facilitate vendor onboarding and ongoing monitoring workflows — serving as the structured risk and compliance lens while first-line owners retain the primary vendor relationship
- Build and manage a continuous vendor monitoring program that scales review cadence and depth based on vendor risk tier, tracking performance KPIs and risk indicators and escalating material concerns to appropriate stakeholders
- Conduct periodic vendor performance reviews in partnership with first-line owners, ensuring alignment between vendor obligations, contractual terms, and actual service delivery — serving as the escalation point for vendor disputes, performance failures, or emerging risk signals
- Responsible for the enterprise-wide annual SOC 1 and SOC 2 review program, establishing a standardized methodology for obtaining, reviewing, documenting, and actioning SOC reports received from vendors
- Ensure complementary user entity controls (CUECs) identified in SOC reports are evidenced, and appropriately mapped to the internal control environment — serving as the primary liaison with internal and external stakeholders on vendor control reliance matters
- Develop standardized workflows, templates, and governance playbooks that reduce manual effort, eliminate fragmented ownership, and create audit-ready documentation at scale
- Identify automation and technology opportunities to streamline vendor risk processes, working in close coordination with the Accounting Innovation & Special Projects arm to prioritize and execute improvements
- Serve as the primary finance operations partner for vendor spend management — bridging vendor contracts, actual spend, and budgeted commitments in close partnership with FP&A to ensure costs are accurately forecasted, accrued, and tracked against approved budgets
- Support contract renewal and renegotiation cycles by providing spend analytics, vendor performance data, and risk assessments to inform financial decision-making and budget cycle inputs
- Play a key governance role in the organization's application and AI tool inventory, maintaining a finance and accounting-specific registry that captures vendor identity, data access scope, AI functionality, risk classification, and renewal timelines
- Evaluate new tool and AI vendor requests through the vendor onboarding framework, ensuring appropriate risk review and cross-functional coordination with IT, Legal, and the Accounting Innovation arm prior to procurement approval
- Establish and report on operational efficiency metrics, executive-ready dashboards, and governance reporting that demonstrate program maturity and provide leadership with real-time visibility into vendor risk posture and spend performance
Knowledge, Skills, and Experience Requirements:
- 5 - 7+ years of progressive experience in Big-4 accounting, vendor management, third-party risk, procurement operations, or accounting/finance operations
- Strong working knowledge of SOC 1 and SOC 2 report frameworks, CUEC requirements, and how third-party controls intersect with SOX compliance
- Demonstrated experience building or significantly improving vendor governance programs in a complex, multi-stakeholder environment
- Proficiency in financial acumen and FP&A collaboration — ability to speak the language of budget owners, controllers, and finance business partners
- Exceptional process design and documentation skills; comfort operating in environments where frameworks must be built, not just inherited
- Strong executive communication and stakeholder management skills — able to influence first-line owners without direct authority
- Certified Public Accountant (CPA) or Certified Internal Auditor (CIA) certification is preferred.
- Familiarity with software tools like Workiva (or other GRC platforms), Microsoft Visio, AI, Vendor Lifecycle Management Systems, and/or Microsoft Power BI is preferred.
- Strong analytical and problem-solving skills, with the ability to identify control weaknesses and discuss effective solutions.
- Demonstrated experience leading or significantly contributing to cross-functional transformation initiatives — including process redesign, technology implementation, or organizational restructuring
Our job titles may span more than one career level. The starting base salary for this role is between $120,000.00 – $150,000.00. The actual base pay is dependent upon many factors, such as: training, transferrable skills, work experience, business needs and market demands. The base pay range is subject to change and may be modified in the future.
Amalgamated Bank is anEqual Opportunity and Affirmative Action Employer, Minorities / Females / Individuals with Disability / Veterans AmeriCorps, Peace Corps and other national service alumni are encouraged to apply. View ourPay Transparency Statement Submission of a resume or any information regarding your qualifications does not constitute a promise or offer of employment. At Amalgamated Bank, we consider an applicant to be someone who has interviewed at least once, in person, with the hiring manager. Amalgamated Bank does not sponsor applicants for work visas.
Hybrid Work Model
Effective February 18, 2025, employees in office-based positions will be working a Hybrid work schedule consisting of three days or more, on-site per week, Monday - Thursday, although the specific days may vary by site or organization, with Friday designated as a remote-working day, unless business critical tasks require an on-site presence. This Hybrid work model does not apply to, and daily in-person attendance is required for, the contact center, branch service roles, and general services where the work to be performed is located at a Company site; positions covered by a collective-bargaining agreement (unless the agreement provides for hybrid work); or any other position for which the Company has determined the job requirements cannot be reasonably met working remotely. Please note, this Hybrid work model guidance does not apply to roles that have been designated as “remote”.
Search Firm Representatives- Please Read Carefully
Amalgamated Bank does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for the position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.