Third Party Risk Management Analyst

The purpose of this position is to ensure consistent end-to-end lifecycle management for third parties and manage the Third-Party Risk Management Program including program projects and initiatives. Responsibilities include creating risk assessments, managing the accuracy and integrity of supporting documentation, as well as supporting relevant vendor management and contract management activities. The role involves managing line of business oversight of all vendors from Mission Critical to On-Demand with a significant focus on the highest-risk vendors, ensuring due diligence covering financial health, insurance, cybersecurity, SOC reports, quality, and service performance is completed and documented in an accurate and timely manner. This position works in collaboration with the identified line of business third-party relationship managers (TPRM) and other key stakeholders. Additionally, the position requires generating and analyzing reports while managing complex data from multiple sources to drive value and mitigating risk.

Position Specific Responsibilities

• Completes vetting on incoming third-party engagements and work with business partners to ensure data and due diligence is complete and accurate and inherent risks are identified and mitigated in accordance with the organization's risk appetite.
• Coordinate with business partners, manage new vendor onboarding, periodic expiring contract reviews, contract terminations, identify opportunities to maximize the use of products and services with existing vendors.
• Create and coordinate the distribution of due diligence questionnaires (assessments) to the third parties, review submitted questionnaires for completeness, ensure risk stakeholders finalize reviews and determine overall residual risk rating.
• Obtain and oversee completion of SOC report reviews for vendors with financial data controls and covering trust criteria utilizing an Excel template for each vendor.
• Conduct certain aspects of third-party due diligence such as certificates of insurance, cybersecurity, and 4th party information and maintain the information in the system of record.
• Conduct third party risk manager (TPRM) training across First Line of Defense including business function and risk stakeholders.
• Create and update detailed policies and procedures and assess regulatory changes to ensure alignment of third-party risk management with regulatory requirements.
• Identify, prioritize, and pursue opportunities to streamline and enhance third party risk management processes and introduce innovative approaches and solutions to optimize business efficiency and effectiveness.
• Support the organization's commitment to protect the integrity and confidentiality of systems and data.

JOB REQUIREMENTS - EDUCATION, KNOWLEDGE AND SKILLS

• Associate or bachelor's degree preferred.
• 2-4 years professional financial analysis/information reporting experience desired.
• Excellent organizational skills, with experience leading presentations to all levels of the organization and ability to prioritize to handle numerous responsibilities with little direction.
• Ability to develop relationships with business lines, especially as it relates to operations and technology.
• Ability to provide information to a wide variety of audiences regardless of topic and effectively deal with issues that are confidential and sensitive in nature.
• Advanced SharePoint and Microsoft O365 experience required. Experience with Third Party Systems such as Archer strongly preferred.
• Ability to interface between raw data sources and front-end reporting services using table linking, embedding, import/export and file conversion techniques.
• Ability to develop and present training sessions related to Vendor Management, Contracts and Procurement.
• Strong problem-solving skills.
• Professional communication skills: both verbal and written.

Our culture embraces diversity, equity, & inclusion; one where everyone feels valued and heard. For more information on JFG's culture and diversity efforts, including our employee resource groups, please visit the Diversity section of our career website.