Jobs › TPRM Workflow & Risk Orchestration Manager
TPRM Workflow & Risk Orchestration Manager
Role at a glance
- Category
- Risk
- Work arrangement
- On-site
- Location
- Boston, MA
- Salary range
- $121,200 to $181,800
- Posted
- Jun 17, 2026
Vertex Pharmaceuticals is hiring a TPRM Workflow & Risk Orchestration Manager in Boston, MA. This is a Risk role in the governance, risk, and compliance field, with a posted range of $121,200 to $181,800. Review the full details below and apply directly with Vertex Pharmaceuticals.
Job Description Company Overview Vertex is a global biotechnology company that invests in scientific innovation to create transformative medicines for people with serious diseases. Guided by a commitment to patients, scientific excellence, and operational integrity, Vertex brings together deep expertise, collaboration, and innovation to solve some of the most complex challenges in healthcare. Role Summary Vertex is seeking a Manager, TPRM Workflow Risk Orchestration to join the Global Sourcing Procurement organization within the Source-to-Pay (S2P) Center of Excellence . This role is responsible for designing and embedding third-party risk management (TPRM) into the end-to-end S2P lifecycle through workflow orchestration, lifecycle triggers, and execution guardrails. The Manager will ensure that supplier risk identification, assessment, and mitigation are seamlessly integrated across intake, sourcing, contracting, supplier onboarding, and ongoing supplier lifecycle processes. This individual will translate enterprise risk frameworks into practical, scalable workflows that support compliant execution while preserving speed, usability, and a strong internal customer experience. This is a highly cross-functional individual contributor role with significant influence across Sourcing, Legal, Risk, Compliance, Procurement Operations, Analytics, and Digital/IT. The role owns workflow design and execution enablement, while partnering with stakeholders who manage enterprise risk policy and core technology platforms. Key Responsibilities TPRM Workflow Lifecycle Orchestration Design, implement, and maintain end-to-end TPRM workflows aligned to key supplier lifecycle events, including onboarding, contract initiation, renewal, and ongoing monitoring Embed risk assessment, escalation, review, and remediation steps into S2P workflows to support consistent and audit-ready execution Balance strong risk coverage with operational efficiency and a user-friendly experience Trigger-Based Risk Integration Define and operationalize trigger-based models that initiate risk assessments based on supplier criticality, geography, service type, and lifecycle events Integrate TPRM requirements into intake, guided buying, and orchestration tools Ensure alignment of risk workflows across sourcing, contracting, and supplier management processes Supplier Onboarding Master Data Integration Embed TPRM workflows into supplier onboarding and vendor master data processes so that complete and
Full responsibilities and requirements are on Vertex Pharmaceuticals's application page.
Apply for this role →Location and market context
This role is based in Boston, MA on-site. Local candidates benefit from being close to Vertex Pharmaceuticals's teams and regional hiring market. Confirm the exact in-office expectation and any relocation support with the employer.
About risk management roles
Risk roles own the methodology for identifying, assessing, and escalating enterprise, operational, and technology risk. Second-line teams set risk appetite and challenge the first line. Roles like this one are typically evaluated against frameworks such as enterprise and operational risk frameworks, NIST AI RMF, and risk-appetite and escalation practices.
How to position yourself for this risk management role
Strong candidates emphasize risk assessment methodology, appetite and escalation, cross-functional partnership, and clear reporting to senior leadership and the board. In your resume and outreach, tie your experience to how Vertex Pharmaceuticals would apply enterprise and operational risk frameworks, NIST AI RMF, and risk-appetite and escalation practices, and lead with concrete outcomes rather than duties.
Similar GRC roles
More GRC jobs: All GRC roles · Browse by category & location