Risk Analyst

  • location: Madison, NJ
  • type: Contract
  • salary: $20 - $25 per hour

job description

Risk Analyst

job summary:
Understand complex business and information technology management processes. Identify and evaluate technology risks at third parties. Develop an understanding of the third parties' IT control environment and perform basic risk management approaches to evaluate their IT controls. Actively participate in decision making with third parties and management for mitigating identified deficiencies and seek to understand the broader impact of the decisions made.

 
location: Madison, New Jersey
job type: Contract
salary: $20 - 25 per hour
work hours: 8am to 4pm
education: Bachelors
 
responsibilities:
- Understand complex business and information technology management processes. Identify and evaluate technology risks at third parties. Develop an understanding of the third parties' IT control environment and perform basic risk management approaches to evaluate their IT controls. Actively participate in decision making with third parties and management for mitigating identified deficiencies and seek to understand the broader impact of the decisions made.

- Interface with all levels of management and technical and business sources. Responsible for understanding of business processes and technology used within the assigned areas to ensure that the business is in compliance with regulatory requirements and Information Security Policy and applicable procedures, processes and standards

- Provide oversight to company's business units in assessing and managing third-party relationship risk.

- Manage due diligence required for on-boarding and recertification of risk and ongoing monitoring of assigned third party relationships.

- Conduct and publish annual due diligence and risk assessment reports of third parties within their scope of duties.

- Ensure third-party relationships adhere to company's policies and are compliant with regulatory guidelines and industry best practices.

- Champion new Third Party Risk Management (TPRM) risk management initiatives and work to remove organizational barriers

- Effectively liaise with other company subject matter experts to provide guidance on third party relationship risk management.

- Provide support and expertise to business owners on third-party-relationship management.

- Responsible for quality and timely processing of third party related requests, activities.

- Provides consulting services on highly-complex and technical risk control-related issues to management teams at all levels in area of responsibility.

- Partner with business units to ensure vendor engagements are appropriately risk assessed, and identified risks are suitably monitored and mitigated in line with the risk appetite, including the identification of risk concerns and the recommendation of control enhancements.

- Document assessment template, follow up on outstanding deliverables, and score the assessment with an overall rating.

- Ensure that potential issues are raised promptly to senior management with a view to identify options to mitigate risk.

- Routinely handles exceptional/unusual situations.

- Develop and maintain effective relationships with key Business partners.

- Help maintain and review reports from the system of record for the Program with the most timely and accurate information available, including the review and dispositioning of questionnaires, attestations, due diligence reports, and other records and information in the Third-party risk system of record.

- Enhance policy, process, workflows, and procedures as necessary in order to improve efficiency and mitigate risk.

 
qualifications:
  • Experience level:
  • Education: Bachelors
 
skills:
  • - Understand complex business and information technology management processes. Identify and evaluate technology risks at third parties. Develop an understanding of the third parties' IT control environment and perform basic risk management approaches to evaluate their IT controls. Actively participate in decision making with third parties and management for mitigating identified deficiencies and seek to understand the broader impact of the decisions made.

    - Interface with all levels of management and technical and business sources. Responsible for understanding of business processes and technology used within the assigned areas to ensure that the business is in compliance with regulatory requirements and Information Security Policy and applicable procedures, processes and standards

    - Provide oversight to company's business units in assessing and managing third-party relationship risk.

    - Manage due diligence required for on-boarding and recertification of risk and ongoing monitoring of assigned third party relationships.

    - Conduct and publish annual due diligence and risk assessment reports of third parties within their scope of duties.

    - Ensure third-party relationships adhere to company's policies and are compliant with regulatory guidelines and industry best practices.

    - Champion new Third Party Risk Management (TPRM) risk management initiatives and work to remove organizational barriers

    - Effectively liaise with other company subject matter experts to provide guidance on third party relationship risk management.

    - Provide support and expertise to business owners on third-party-relationship management.

    - Responsible for quality and timely processing of third party related requests, activities.

    - Provides consulting services on highly-complex and technical risk control-related issues to management teams at all levels in area of responsibility.

    - Partner with business units to ensure vendor engagements are appropriately risk assessed, and identified risks are suitably monitored and mitigated in line with the risk appetite, including the identification of risk concerns and the recommendation of control enhancements.

    - Document assessment template, follow up on outstanding deliverables, and score the assessment with an overall rating.

    - Ensure that potential issues are raised promptly to senior management with a view to identify options to mitigate risk.

    - Routinely handles exceptional/unusual situations.

    - Develop and maintain effective relationships with key Business partners.

    - Help maintain and review reports from the system of record for the Program with the most timely and accurate information available, including the review and dispositioning of questionnaires, attestations, due diligence reports, and other records and information in the Third-party risk system of record.

    - Enhance policy, process, workflows, and procedures as necessary in order to improve efficiency and mitigate risk.

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

get jobs in your inbox.

sign up
{{returnMsg}}

related jobs