Description:
The Team: Working in Vendor Risk Management offers the opportunity to continuously enhance processes to meet the evolving requirements of various regulators. This challenging environment provides ample opportunities to expand your knowledge and expertise.
The Impact
In addition to risk assessments, recertification, and continuous monitoring, you will participate in various projects, allowing you to showcase and further develop your skills and experience.
Responsibilities
- Perform the Vendor Risk Assessments on the Vendors engaged by the organization.
- Work directly with Internal Business Partners to understand the services and assist them in capturing the correct risk in the assessments and perform the quality review.
- Oversee the vendor risk recertification process to maintain up-to-date evaluations of vendor compliance and risk levels.
- Continuously monitor vendors engaged by the organization globally to identify and mitigate potential risks.
- Collaborate with Cyber Risk/Information Security, Business Continuity, Procurement, Compliance and other Domain SMEs to ensure correct risk level is documented in the Vendor Risk Assessment results and also track the progress.
- Lead and support enhancement projects within Vendor Risk Management to meet various business and regulatory requirements.
- Assist the team members in balancing the load and managing Ad-hoc projects.
Required Qualifications
What We’re Looking For:
- Professional with Vendor Risk Management background, having good experience in conducting vendor risk assessments, risk recertification with at least 2-5 years of experience after Degree/Master’s
- Should have experience in understanding and managing the risk for IT and Cloud based vendors.
- Should have experience working in information security and understanding of the concepts of information security controls including ISO and NIST.
- Should have understanding on the roles and responsibilities of different risk functions like Third Party Risk Management, QA Function, IT Risk, Operational Risk, Internal Control, Internal audit, Privacy and Compliance etc.
- Excellent communication skills - a must. The resource should have the ability to communicate with cross-functional teams and vendors, both written and oral communication is critical.
Preferred Qualifications
- This position is required to work in UK Shift; flexibility is a must, especially when it comes to vendor and internal meetings held during US business hours.
- Strong organizational skills with the ability to multitask and prioritize while maintaining close attention to detail.
- Ability to build strategic partnerships with internal stakeholders.
- Must be a critical thinker with strong qualitative skills.
- Information Security/Risk Management certification would be an advantage.