Third Party Risk Analyst Resume Samples

Description :

1. Ensured risk is being managed for assigned business lines throughout the third-party life cycle (onboarding, planning, due diligence, contract, transition, ongoing management, and off-boarding).
2. Understood the third-party risk program requirements and associated risk with selected services.
3. Conducted comprehensive risk assessments of third-party services, evaluating their financial stability, security practices, and regulatory compliance to determine potential risks to the organization.
4. Performed thorough due diligence on prospective and existing third-party services to identify any red flags or potential vulnerabilities that could impact our business operations. 
5. Collaborated with legal and procurement teams to review and negotiate contractual terms with third-party services, ensuring compliance with industry standards, regulations, and risk management requirements.
6. Developed and implemented monitoring mechanisms to track the performance and adherence of third-party services to contractual obligations and risk mitigation measures.
7. Generated regular reports for senior management to communicate risk exposure and mitigation strategies.

Experience

7-10 Years

Level

Consultant

Education

B.Sc. Cybersecurity

Description :

1. Monitored and evaluated third-party service performance to assess their ability to meet agreed-upon service levels and contractual obligations.
2. Collaborated with various teams within the organization, including IT, legal, compliance, and business units, to align risk management efforts and ensure a cohesive approach to third-party risk.
3. Contributed to the enhancement of the third-party risk management framework through process improvements, risk assessments, and ongoing evaluation of risk management practices.
4. Understood, demonstrated competency, and maintained knowledge of the Bank’s operational and risk management policies as well as the Bank’s security policies and procedures, ensuring that staff members are knowledgeable of such.
5. Assisted in ensuring that the Bank complies with local, state, and federal regulations.
6. Interacted harmoniously and effectively with others, focusing on the attainment of bank goals and objectives through a commitment to teamwork.
7. Confirmed acceptable punctuality/attendance standards as expressed in the Employee Handbook.

Experience

2-5 Years

Level

Junior

Education

BBA

Description :

1. Worked with divisional management and their organizations on Third-Party risks, remediation, and strategies to ensure robust operational capability and effective implementation of outsourcing arrangements.
2. Assessed new or changing industry conditions, technology, and laws/regulations to advise leaders on adjustments required as well as how the TPR program is evolving to assist.
3. Discussed complex issues, such as supplier concentration risk, and advised remediation strategies.
4. Reported on third-party supplier risk across various dimensions (information security, financial, geographic).
5. Provided guidance and recommendations for remediation of TPR issues.
6. Participated in TPR and relevant (divisional) industry forums to share, design, and implement solutions.
7. Ensured proper and timely execution of the TPR program, ensuring that risk assessments were completed on new and existing third-party suppliers and all other program activities/tasks, under the policy, framework, and related program documents, including challenge/due diligence tasks, and guidance to business unit and other corporate stakeholders.

Experience

7-10 Years

Level

Senior

Education

BSc CS

Description :

1. Prepared and presented training materials to internal CMA stakeholders on the TPRM program and on the eGRC Archer tool that supports the TPRM program. 
2. Prepared and/or periodically provided training to external sources/events, as assigned on Third-Party Risk Management.
3. Reviewed Inherent Risk Questionnaires and due diligence results with supplier managers and advised supplier managers on remediation plans for any identified issues.
4. Identified process and technology improvements (new tools, improved reporting,).
5. Served as occasional project manager for improvements.
6. Mentored TPR analysts and shared knowledge developed from working with complex and high-risk functions to develop continuous improvement opportunities.
7. Supported internal audit and regulatory exams regarding the Comerica TPRM program/activities by gathering documents, identifying resources to participate, and conducting analysis.

Experience

10+ Years

Level

Management

Education

BBA

Description :

1. Supported the Risk Assessment system optimization, controls, and data quality assurance, and the maintenance of procedures, desk guides/reporting, and training/presentation materials. 
2. Facilitated the on-time completion of initial and recertification reviews including Third-Party Questionnaires, third-party financial reviews, third-party insurance reviews, summary reports, risk classification, and/or Exclusionary List reviews.
3. Completed ongoing Third-Party Risk and Performance monitoring activities including review of third-party performance scorecards by risk classification, and BU follow-up.
4. Requested and obtained key third-party documents such as financial statements, certificates of insurance, and other reports.
5. Ensured compliance with applicable federal, state, and local laws and regulations. 
6. Completed all required compliance training. 
7. Maintained knowledge of and adhered to Flagstar’s internal compliance policies and procedures.

Experience

5-7 Years

Level

Executive

Education

BSc CS

Description :

1. Established new processes with a focus on Industrial Control Systems, MES systems, and all OT systems in use at GPI manufacturing facilities (plants and mill locations) across the globe.
2. Coordinated with external providers and internal technology teams regarding platform development, enhancements, integration, and issue resolution
3. Liaised with global risk and compliance groups and OT engineers and leaders related to due diligence matters and system requests or changes.
4. Collaborated across IT and manufacturing facilities with cross-functional teams to escalate and resolve issues and risks identified and tracked.
5. Represented the IT Compliance Office with business teams, partners, and other GPI stakeholders, and with external third parties.
6. Identified key performance indicators to be used for management reporting at GPI.
7. Managed reporting and analyzing metrics for key performance indicators identified for GPI.

Experience

0-2 Years

Level

Entry Level

Education

BBA

Description :

1. Supported the identification and assessment, measurement, control and monitoring, and reporting of Third-Party Risk dynamically and continuously.
2. Supported the development and enhancement of C IBC's US TPRM practice and program across all aspects of the third-party life cycle.
3. Assisted with the oversight and effective challenge of third-party risk and control activities.
4. Helped maintain and update the US TPRM Policy Supplement and program framework standards.
5. Assisted with performing the second line of defense Objective Assessments.
6. Coordinated the review and challenge of TPRAs with residual risks higher than Low (issues management process).
7. Monitored closure of issues, risks identified, risk decisions, and mitigation plans per issues.

Experience

0-2 Years

Level

Fresher

Education

BSc CS

Description :

1. Performed third-party risk evaluations and supplier due diligence processes through our enterprise risk assessment tool.
2. Researched and consulted with internal experts to understand and document risks identified through risk evaluations and due diligence processes.
3. Analyzed and anticipated market trends regarding commercially available supplier due diligence and risk tools and systems.
4. Supported and created third-party risk reporting and key risk metrics and assisted with coordinating and communicating third-party risk results and reports to stakeholders to inform business decisions.
5. Served as an initial reviewer and checkpoint of basic contractual risk compliance with the line of business.
6. Developed business intelligence dashboards or templates for due diligence activities to inform decision-making and facilitate risk monitoring among categories of suppliers.
7. Maintained and monitored third-party profiles and risk workspaces within our third-party risk tool.

Experience

7-10 Years

Level

Consultant

Education

B.Sc. Cybersecurity

Description :

1. Identified and communicated third-party risks to business owners and other stakeholders during the Sourcing process and Category planning.
2. Participated in special projects and assessments of third-party risk and due diligence.
3. Escalated issues or risks internally when appropriate.
4. Partnered with stakeholders, matrix partners, and other subject matter experts to continuously improve our third-party risk processes.
5. Analyzed the financial health of companies as needed during the risk diligence process.
6. Maintained and promoted TPRM-related policies, SOPs, and procedures and communicated changes to these documents effectively to the larger procurement or stakeholder community.
7. Recommended changes and improvements as needed to be sourcing and vendor management processes across procurement that may improve third-party risk mitigation.

Experience

10+ Years

Level

Management

Education

B.Sc. Finance

Description :

1. Assisted in the preparation and review of annual narratives for each HUB region.
2. Captured information from the regions to create documentation of the region’s key operational and/or compliance processes, risks, and controls.
3. Developed and managed tools to support tracking departmental activities and reporting metrics, such as RFPs, customer due diligence activities, and regulatory requests.
4. Evaluated the design and tested the operating effectiveness of key controls identified and provided control enhancement recommendations as appropriate.
5. Assisted with tracking audit exceptions for all audits performed.
6. Contributed to other risk management activities, which may include exception monitoring and tracking, vendor viability assessments, and other special projects as needed.
7. Assisted with the review and challenge of activities associated with the Affiliate Relationship Management program.

Experience

2-5 Years

Level

Junior

Education

BBA