Vendor Risk Analyst Jobs

Must have knowledge of project management, and business processes, preferably in the financial sector.

Create and manage relationships with business units and stakeholders of the Vendor Risk Management process of Third Party Information Security

Understand, and be familiar with PCI DSS requirements and assist in obtaining Attestation of Compliance from respective vendors in our inventory

Technical skills and proficiency in a wide array of platforms and systems (e.g., Windows, UNIX, SQL, Tandem).

Occasionally work a non-standard shift including nights and/or weekends and/or have on-call responsibilities.

The successful candidate must also have experience in Continuation of Business, incorporating Disaster Recovery and Business Continuity Planning

5+ years of experience in vendor risk management, preferably in financial services

Strong process and project management skills

Liaise with contract management regarding execution of vendor contracts

Lead strategic initiatives related to vendor risk management

Training and education of stakeholders and business engaged in vendor risk

Leadership skills in strategy setting and execution

Your organizational and project management skills are exceptional, allowing you to handle multiple initiatives and tasks simultaneously

General knowledge of risk management frameworks relevant to the operation of a global investment management company

Navigating unstructured processes and managing multiple demanding responsibilities is a proven strength of yours

Strong analytical skills and attention to detail

You are a resourceful problem-solver, approaching complex issues with a critical mindset and finding creative solutions

You thrive in fast-paced environments, embracing shifting priorities and enjoying the challenge of working with ambiguity

5+ years of experience in vendor management (preferably within mortgage servicing or mortgage banking)

Excellent time management and organizational skills

Coordinate and perform service provider reviews that comply with LoanCare’s vendor performance management program

Escalate critical issues to management, as required

Perform business unit compliance testing to ensure client/investor/state requirements, internal policies/procedures, and other guidelines are adhered to

Previous audit, compliance or quality control experience preferred

Provides coordination support to ensure that vendor management activities are processed appropriately in Magellan's governance risk and compliance system.

Performs special tasks and assignments as required by management.

Collaborates with the Strategic Sourcing Team to create and revise systems and procedures by analyzing practices, reporting requirements, and archiving guidelines.

Collaborates with Contract Managers, Sourcing Managers and Buyers in the review and preparation of support documents Vendor due diligence reviews

License and Certifications - Required

License and Certifications - Preferred

Excellent oral and written communication skills; ability to communicate with all levels of management; experience performing both detailed and executive-level documentation

Comprehensive knowledge of third party and information technology risk management processes and methodologies

Industry recognized third party risk management or vendor management certification

Experience using third party risk management /Governance, Risk and Compliance (GRC) systems

Currently hold or quickly obtain industry recognized third party risk management or vendor management certification

Strong project management skills (organizing, planning, reporting, documenting, driving tasks to closure, etc.)

Candidates with experience in Cyber Security and Privacy services are highly preferred.

Bachelor Degree in Accounting, Business, Supply Chain, Finance, or other relevant fields. Master’s degree or MBA preferred.

At least 5+ years of relevant professional experience, with at least 2+ years experience reviewing vendor risk assessments..

Skills and expertise in Vendor Risk classification and due diligence standards, monitoring, measurement and analysis.

Excellent communication and analytical skills.

Prior experience supporting a high growth company.

Handle Windsor & third-party vendor questions on third-party vendor management platform

Assist with new user set up on third-party vendor management platform.

Assist Asset Management with RCP reporting.

Our company considers a range of factors including education and experience when determining base compensation.

Periodically review/audit vendors for proper category selection & insurance requirements.

Update, develop and modify vendor insurance requirements.

2+ years experience in Vendor Management, strongly preferred.

Manage the vendor risk workflows through the Vendor Risk Management System.

Strong work ethic, time management, detail oriented.

Communicate due diligence requirements to the vendor relationship owner and relevant third-parties.

Liaise with various internal business lines, e.g., vendor relationship owners, subject matter experts, Legal, Compliance, and Finance.

Provide training internally to integrate the Risk Assessment Platform to create a seamless experience.

Oversee the monthly collection of Advertising co-op from Macy’s merchant teams while ensuring payments follow accounting requirements.

Fulfill internal and external audit requirements including EITF and SOX monitoring.

Bachelor’s degree from a 4-year college or university, preferably in Business Administration, Accounting or Finance.

1-2 years of experience in an Accounts Receivables position.

Experienced user of QuickBooks, NetSuite, Bill.com or comparable cloud-based invoicing or accounts receivables systems.

Excellent written and verbal communication skills.

Experience with a vendor risk management system, and incorporating continuous monitoring systems and services.

Demonstrate an understanding of business processes, internal control risk management, IT controls, and how they interact together.

Experience implementing and using technical auditing tools to perform validation of security controls.

One or more of the following certifications: CISA, CISM, CISSP, CRISC.

Ability to work in structured and unstructured environments while focusing on big picture objectives among day to day responsibilities

Perform technical validation on the security of the implementation of vendor solutions.

Bachelor’s degree in Management Information Systems, Computer Science, and/or Business, or equivalent work experience

5+ years working in third-party risk management

Skills and expertise in Vendor Risk classification and due diligence standards, monitoring, measurement and analysis

Work with Sourcing Managers or directly with business (non-SVM managed categories) to conduct due diligence efforts for high risk vendors

Experience reviewing vendor risk assessments

Experience reviewing and interpreting SOC 2 Type 2 reports

Respond to vendor management requests from TCH external customers

Develop strong understanding of business processes impacting the vendor management function

2-3 years of experience in working in the financial services industry

Strong analytical, technical and PC skills, e.g., Excel and PowerPoint

Strong written and verbal communication skills

Experience working with GRC tools, e.g., Archer

The experience you will bring:

How you will make an impact:

What will make you stand out:

Generous paid time off options including:

Provide guidance to vendor managers and stakeholders to ensure the requirements of a successful vendor management program are fully understood.

Ensure that all vendor management processes are followed, and all required vendor documents are obtained and retained.

Assist in ensuring oversight of all vendor risks and update vendor managers and stakeholders of existing and emerging vendor risks.

Experience working with vendors, contracts, or procurement preferred

Excellent Organization and Communication Skills – strong in terms of both oral and written communication.

Exhibits strong attention to detail, project planning, and multi-tasking skills.

Any equivalent combination of education, experience, and training that provides the required knowledge, skills, and abilities will be considered

Knowledge, Experience And/Or Education Requirements

Knowledge/working history of reviewing/updating file requirements

Previous benefits administration and client consulting experience

Works with different insurance vendors to coordinate/lead file requirements meetings

Documents file requirements against Empyrean data model

Excellent project management and matrix management skills

Tactical, practical hands-on coordination, management, and execution of partner programs

Act as senior leader emphasizing consistent client and vendor alliance experience to deliver outstanding service.

Experience working with Microsoft and other Cyber Security technology providers

Excellent oral, written communication, presentation, and reporting skills.

Executive relationships driving accountability with major stakeholders in all key vendor alliances

Excellent oral and written communication skills; ability to communicate with all levels of management; experience performing both detailed and executive-level documentation

Comprehensive knowledge of third party risk management processes and methodologies

Comprehensive knowledge of the third-party risk management lifecycle: planning, due diligence, contracts, ongoing monitoring and termination

Experience using third party risk management /Governance, Risk and Compliance (GRC) systems

Industry recognized third party risk management or vendor management certification

Strong project management skills (organizing, planning, reporting, documenting, driving tasks to closure, etc.)

Prefers someone who has performed this type of role before with 2- 4 years experience

Someone who already has this experience with VRM specifically is ideal

90% of time in AuditBoard – data entry (adding vendors to the platform, etc)

Vendor Risk Analyst - VRM tool experience

Location: Remote option but Hybrid in Chicago or Omaha NE is preferred

Assessing vendors prior to signing contracts, reassessing upon renewal