Hiring.fm
Figma

Vendor Security Manager

San Francisco, CA • New York, NY • United States Full Time

Figma is growing our team of passionate creatives and builders on a mission to make design accessible to all. Figma’s platform helps teams bring ideas to life—whether you're brainstorming, creating a prototype, translating designs into code, or iterating with AI. From idea to product, Figma empowers teams to streamline workflows, move faster, and work together in real time from anywhere in the world. If you're excited to shape the future of design and collaboration, join us!

We’re looking for a Vendor Security Manager to build and scale Figma’s third-party risk management and vendor security operations program. This role is key in driving the strategic growth and operational excellence of our vendor risk management program and vendor security assessment processes. This is a highly cross-functional role, partnering closely with Procurement, Legal, Engineering, IT, People Operations, Compliance, and Figma business partners to evaluate and reduce risk, conduct comprehensive security assessments, and proactively drive program and process improvements to better enable the business. 

This is a full time role that can be held from one of our US hubs or remotely in the United States.

What you’ll do at Figma:
  • Build, own, and continuously improve Figma's vendor security and TPRM program, including third-party risk assessments, vendor security reviews, and continuous monitoring
  • Streamline and automate vendor security workflows to increase efficiency and reduce manual overhead, leveraging modern tooling and AI to optimize workflows and assessments
  • Develop and maintain reporting, tracking, and metrics for vendor security, third-party risk posture, and program health to security leadership and cross-functional stakeholders
  • Own vendor risk communication and escalation paths, including documenting risk acceptance, mitigation plans, and trade-offs to cross-functional audiences
  • Partner with Procurement, Legal, Contracts, and Security teams to embed appropriate risk and compliance controls into vendor agreements and support negotiations or escalations
  • Facilitate contingent worker onboarding and access management in partnership with our People Operations and Workplace teams
We'd love to hear from you if you have:
  • Proven experience conducting third-party or supply chain security assessments, and hands-on experience building or scaling a vendor security management program
  • Strong understanding of information security principles and controls, including data protection, access management, and application security
  • Strong analytical skills and comfort with technical assessments, with a demonstrated ability to identify and assess risks at the technical, tactical, and strategic levels
  • Familiarity with security frameworks and standards such as ISO 27001, NIST, and SOC 2, and an ability to translate those requirements into practical vendor expectations and controls
  • Exceptional communication skills with the ability to clearly articulate complex security risks and tradeoffs to both technical and non-technical audiences
While not required, it’s an added plus if you also have:
  • Experience with procurement, risk management, or vendor management tools and workflow optimization (e.g. Zip, Coupa, Vanta, Drata, etc) 
  • Familiarity with AI/ML vendor risk considerations or experience assessing vendors in a high-growth technology company
  • Familiarity with AI risk frameworks (NIST AI RMF, OECD, ISO 42001)
  • Experience with using AI tools (e.g Claude Code, Claude Cowork, Open AI Codex, etc) to automate and scale manual processes and decision-making workflows 
At Figma, one of our values is Grow as you go. We believe in hiring smart, curious people who are excited to learn and develop their skills. If you’re excited about this role but your past experience doesn’t align perfectly with the points outlined in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

Pay Transparency Disclosure

If based in Figma’s San Francisco or New York hub offices, this role has the annual base salary range stated below.    

Job level and actual compensation will be decided based on factors including, but not limited to, individual qualifications objectively assessed during the interview process (including skills and prior relevant experience, potential impact, and scope of role), market demands, and specific work location. The listed range is a guideline, and the range for this role may be modified. For roles that are available to be filled remotely, the pay range is localized according to employee work location by a factor of between 80% and 100% of range. Please discuss your specific work location with your recruiter for more information. 

Figma offers equity to employees, as well a competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave & reproductive or family planning support, mental health & wellness benefits, generous PTO, company recharge days, a learning & development stipend, a work from home stipend, and cell phone reimbursement.  Figma also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles. Figma’s compensation and benefits are subject to change and may be modified in the future.

Annual Base Salary Range:
$153,000$296,000 USD

At Figma we celebrate and support our differences. We know employing a team rich in diverse thoughts, experiences, and opinions allows our employees, our product and our community to flourish. Figma is an equal opportunity workplace - we are dedicated to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity/expression, veteran status, or any other characteristic protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

We will work to ensure individuals with disabilities are provided reasonable accommodation to apply for a role, participate in the interview process, perform essential job functions, and receive other benefits and privileges of employment. If you require accommodation, please reach out to accommodations-ext@figma.com. These modifications enable an individual with a disability to have an equal opportunity not only to get a job, but successfully perform their job tasks to the same extent as people without disabilities. 

Examples of accommodations include but are not limited to: 

  • Holding interviews in an accessible location
  • Enabling closed captioning on video conferencing
  • Ensuring all written communication be compatible with screen readers
  • Changing the mode or format of interviews 

To ensure the integrity of our hiring process and facilitate a more personal connection, we require all candidates keep their cameras on during video interviews. Additionally, if hired you will be required to attend in person onboarding.

By applying for this job, the candidate acknowledges and agrees that any personal data contained in their application or supporting materials will be processed in accordance with Figma's Candidate Privacy Notice.

Related Jobs

LEAD FIREFIGHTER

Department of the Navy
Twentynine Palms, California
Full time

Program Support Assistant (OA)

Other Agencies and Independent Organizations
Denver, Colorado
Full time

Program Support Assistant (OA)

Other Agencies and Independent Organizations
Los Angeles, California, San Diego, California
Full time

Program Support Assistant (OA)

Other Agencies and Independent Organizations
Los Angeles, California, San Diego, California
Full time

Program Support Assistant (OA)

Other Agencies and Independent Organizations
Chicago, Illinois
Full time

Program Support Assistant (OA)

Other Agencies and Independent Organizations
Oakland, California
Full time