Risk Management Analyst Apply
Full job description
Stefanini Group is hiring!
Stefanini is looking for a Risk Management Analyst/Advisor in Richmond, VA(Hybrid)
For quick Apply, please reach out to Akash - call: 248 728 2603 /email: Akash.kumar@Stefanini.com
Open for W2 Candidates only! Us Citizenship Required!
About the Opportunity :
The client team has an immediate opening for a Contingent Worker (Third-Party Risk Management Advisor). You will play a key role in GRC's Third-Party Risk Management program.
Third-Party Risk Management Advisors provide direct support in identifying, assessing, and mitigating risks related to client's third-party relationships. Third-Party Risk Management Advisors serve as business liaisons in understanding the client's requirements for third-party risk management, ensuring the business can make informed decisions regarding current and future vendor relationships. This role will provide the opportunity to interact across a broad group of stakeholders, requiring the Advisor to have excellent communication and influence skills.
What You Will Do
- Support key program objectives to ensure TPRM's critical 2024 goals are accomplished in alignment with organizational expectations.
- Provide advisory services to evaluate, recommend, design, and implement third-party risk management solutions and process improvements. Collaborate with internal client teams to drive vendor due diligence activities, inclusive of identifying and assessing risks and mitigating controls.
- Develop knowledge of vendor services and obligations provided by client's vendors and business owners' reliance upon those services. Use knowledge to identify requirements, develop, monitor, and support the execution of third-party remediation actions and mitigation and contingency plans, as warranted, when risks or risk events are identified.
- Conduct risk assessments and develop mitigation plans, work closely with vendor managers and business stakeholders on the finalization of mitigation plans and execution against continuous monitoring and control plans.
- Assess the effectiveness of control and mitigation plans, advising client's stakeholders on any required control enhancements for third-party risks.
- Review and interpret results of vendor audit reports and attestations (such as SOC2 reports); identify deficiencies and areas for remediation; advise appropriate stakeholders on findings; incorporate into overall vendor risk assessment and mitigation plans.
- Review data and assist in advising stakeholders and others on best practices and how to implement the necessary changes to address third-party risks.
- Build communication and escalation plans related to third-party risk management activities across the client.
- Provide strategic support to business owners, stakeholders, and leaders.
- Assist with process improvement and discussions related to third-party risk management solutions.
Qualifications
- Bachelor's Degree or equivalent experience
- 3 to 5+ years of experience in managing risk and compliance issues, or similar experience managing applications, projects, or systems that require identification, evaluation, and remediation of risk.
- Enhanced knowledge pertaining to concepts and principles related to third-party risk management.
- Experience with compliance and security audits, and risk mitigation plans. Experience developing and completing vendor risk assessments for enterprise-level vendor relationships. Understanding of various risk and security certifications and attestations (SOC2, ISO 27001, etc.).
- Familiarity with third party risk and governance concepts.
- Proficient understanding of complex vendor risk-related issues through demonstrated experience managing vendor relationships, information security or regulatory compliance programs, and audits.
- Ability to tailor communications to their appropriate audience and present information in a credible, confident, and influential manner. Communicate in a concise, direct and purposeful way.
Listed salary ranges may vary based on experience, qualifications, and local market. Also, some positions may include bonuses or other incentives
Stefanini takes pride in hiring top talent and developing relationships with our future employees. Our talent acquisition teams will never make an offer of employment without having a phone conversation with you. Those face-to-face conversations will involve a description of the job for which you have applied. We also speak with you about the process including interviews and job offers.
About Stefanini Group:
The Stefanini Group is a global provider of offshore, onshore and near shore outsourcing, IT digital consulting, systems integration, application, and strategic staffing services to Fortune 1000 enterprises around the world. Our presence is in countries like the Americas, Europe, Africa, and Asia, and more than four hundred clients across a broad spectrum of markets, including financial services, manufacturing, telecommunications, chemical services, technology, public sector, and utilities. Stefanini is a CMM level 5, IT consulting company with a global presence. We are CMM Level 5 company.
