Vendor Risk Analyst Resume Samples

4.5 (95 votes) for Vendor Risk Analyst Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the vendor risk analyst job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Resume Builder
CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.
USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.
SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Create a Resume in Minutes
EW
E Wiza
Evelyn
Wiza
123 Emil Mission
Detroit
MI
+1 (555) 920 5567
123 Emil Mission
Detroit
MI
Phone
p +1 (555) 920 5567
Experience Experience
Chicago, IL
Vendor Risk Analyst
Chicago, IL
Herman Inc
Chicago, IL
Vendor Risk Analyst
  • Works within and thinks of improvements related to the defined vendor management processes, tools, and best practices as established by Hilltop Holdings Inc
  • Assists management in the evaluation of new technology service providers and third-party service providers
  • Manages and tracks the following when initiating a new third party provider in vendor management system
  • Coordinate and perform vendor reviews to comply with LoanCare’s vendor performance management program
  • Develops, implements, monitors and reports performance measures that demonstrate value and ensure vendor performance
  • Provide recommendations to remediate control gaps and assist with project management on remediation efforts
  • Develop and maintain currency of supporting procedures and documentation to provide a reference source for ensuring consistency of future activities
Philadelphia, PA
Senior Analyst, Vendor Risk Assessment
Philadelphia, PA
Ryan Group
Philadelphia, PA
Senior Analyst, Vendor Risk Assessment
  • Perform vendor documentation review and analysis
  • Assess current business practices and identify opportunities to promote effective third party risk management
  • Document and report risk to Vendor Assessment management team, business partners, and vendors
  • Perform onsite assessments of vendor facilities
  • Review completed SIG questionnaires based on vendor inherent risk
  • Document risks and recommendations based on a vendors lack of controls
  • Identify and measure risk associated with vendor security controls
present
Philadelphia, PA
Information Security Senior Vendor Risk Analyst
Philadelphia, PA
Wilkinson Inc
present
Philadelphia, PA
Information Security Senior Vendor Risk Analyst
present
  • Assist with providing a forum for review, counsel, education, and communication of Service Provider Oversight Program
  • Coordinate with users an annual review of service level agreements with selected service providers
  • In depth knowledge of development and implementation of policy and standards
  • Responsible for managing the time management of reporting associates
  • Broad knowledge of Federal Regulations, relative to Information Security and Risk Assessment
  • Basic knowledge related to Information Security in a regulated environment (OCC, FDIC, Fed Reserve, CFPB, FFIEC)
  • Responsibility for coordinating information security site visits to ascertain the level of vendor compliance with information security controls
Education Education
Bachelor’s Degree in Business Administration
Bachelor’s Degree in Business Administration
University of San Francisco
Bachelor’s Degree in Business Administration
Skills Skills
  • Knowledge of BKFS’ business environment and the ability to evaluate risk implications inherent in new product and market development
  • Ability to provide information to a wide variety of audiences regardless of topic and effectively deal with issues that are confidential and sensitive in nature
  • Knowledge of Enterprise Risk models and tools as well as a good understanding of Enterprise Risk framework
  • Excellent verbal and written communication skills to technical and non-technical audiences of various levels within BKFS or outside the organization (executives, regulators, clients, etc.)
  • Ability to work both independently and as part of a team to deliver quality work in a timely fashion in a fast-paced environment
  • Attention to detail, ability to prioritize work and maintain multiple projects simultaneously
  • Detail oriented individual with the ability to effectively manage multiple priorities
  • Demonstrated ability to respond quickly and effectively to executive demands
  • Excellent analytical, decision-making and problem-solving skills
  • Flexibility and ability to think creatively and to identify new ways to approach old problems
Create a Resume in Minutes

8 Vendor Risk Analyst resume templates

1

Vendor Risk Analyst Ii Cz Resume Examples & Samples

  • Stay current with all vendor management regulatory requirements and changes as well as industry best practices which would influence the M&T Bank Vendor Risk Management
  • Meet with management to discuss and advise on vendor management requirements, process flow and concerns to ensure their awareness of pertinent issues
  • Interact with business line personnel to assign, monitor and advise on completion of vendor risk assessments, due diligence and ongoing monitoring to support their compliance with vendor risk policies. Provide assistance and troubleshooting in use of vendor management system of record to support accuracy and completeness in the documentation
  • Validate and monitor gaps identified during the vendor risk assessments, due diligence and ongoing monitoring to support adherence to vendor risk management policies
  • Complete other related duties as assigned
  • The position works independently under limited supervision, seeking management’s support for most complex situations
  • Bachelor's Degree and a minimum of one year experience in banking, risk management, project management or vendor management, OR in lieu of a degree, a combined minimum of five years' of higher education and/or work experience, including a minimum of one year experience banking, risk management, project management or vendor management
2

Senior Vendor Risk Analyst Czbm Resume Examples & Samples

  • Partner with business units to ensure vendor assessments are completed accurately and timely, including the identification of risk concerns and the recommendation of control enhancements
  • Manage projects to develop and execute enhancements to the Vendor Management Program based on industry and regulatory expectations. Enhance policy, process, workflows and procedures as necessary, to improve efficiency and mitigate risk
  • Complete periodic validations of vendor monitoring activities handled by subject matter experts and business units to ensure activities are in line with Program expectations; review a sample of the documentation for confirmation, as appropriate
  • Stay current with all vendor management regulatory requirements and changes as well as industry best practices which would influence the M&T Bank Vendor Risk Management Program
  • Identify gaps and recommend process and program improvements. Develop and deliver Vendor Management training to business line personnel on procedures and controls designed to ensure compliance with Federal Reserve Bank (FRB), Federal Financial Institutions Examination Council (FFIEC) and Consumer Financial Protection Bureau (CFPB) vendor management guidelines
  • Lead meetings with management to provide analysis, feedback and observation on vendor management requirements to ensure their awareness of pertinent issues
  • Create and analyze regular management reporting focusing on enterprise and vendor specific risk conditions for the Vendor Management Steering Committee. Create and produce routine and adhoc enterprise-level vendor risk reporting for regulatory requests, senior management and the Board to provide a record of activity
  • Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Design, implement, maintain and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management
  • Promote an environment that supports diversity and reflects the M&T Bank brand
  • Exercise usual authority of a manager concerning staffing, performance appraisals, promotions, salary recommendations, performance management and terminations
  • This position develops methodology and manages projects to ensure business units adhere to Bank policy to risk assess vendors, perform due diligence elements, review contracts and perform ongoing monitoring requirements
  • A vendor management governance structure guides such policy, sets requirements and manages residual risk decisions
  • Bachelor’s degree and a minimum of 7 years’ proven financial/business experience, OR in lieu of a degree, a combined minimum of 11 years’ higher education and/or work experience, including a minimum of 7 years’ proven financial/business experience
  • Proficiency with personal computers as well as pertinent mainframe systems and software
  • Ability to communicate concepts/theories and develop alternative recommendations
  • Ability to maintain solid working relationships with internal and external business partner
  • Proficiency with personal computers as well as pertinent spreadsheet and word processing software
3

Vendor Risk Analyst Resume Examples & Samples

  • Complete activities that further develop the Vendor Management Program based on industry and
  • Regulatory expectations. Create methodology for straightforward enhancements to policy, process, workflows and procedures as necessary
  • Program, including its functions, processes and operations
  • Create, produce, and analyze routine and ad-hoc department-level vendor risk reporting, including work flow and vendor spend analyses. Reporting is used to monitor business unit activities, as required by Policy
  • Validate and monitor gaps identified during the vendor risk assessments, due diligence and on-going monitoring to support adherence to vendor risk management policies
  • Develop and maintain currency of supporting procedures and documentation to provide a reference source for ensuring consistency of future activities
  • Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable
  • Bachelor's degree and a minimum of 1 years’ experience in banking, risk management, project management or vendor management, OR in lieu of a degree, a combined minimum of 5 years' of higher education and/or work experience, including a minimum of 1 years’ experience banking, risk management, project management or vendor management
  • Bachelor's Degree in Business Administration, Economics, Finance or related discipline
4

Mortgage Lending Vendor Risk Analyst Resume Examples & Samples

  • Lead and perform comprehensive, loan level analyses of mortgage loans in-process, approvals and purchases for adherence with investor/insurer guidelines, including full credit and collateral analysis, state/federal regulation and bank policy
  • Lead and perform comprehensive, loan level analyses of mortgage loans that Mortgage Loan Administration (MLA) has had to repurchase as the result of defects found by investors/insurers or as self-determined
  • Assist in coordination of repurchase process
  • Lead and provide fulfillment support for investor/insurer and examiner-related audit requests, including document preparation and delivery of performing and non-performing loan files
  • Assist in management and coordination of audits performed by internal/external auditors
  • Lead and perform on-site audits of Regional Production Support Centers and Correspondent Lending Centers as appropriate and deemed necessary
  • Assist in dispatch and fulfillment of Archer Assessor Processor duties
  • Analyze data, produce scheduled quality control reports and make recommendations as to appropriate corrective action or gap-related solutions
  • Report to Mortgage Lending Production Quality Control Manager or Mortgage Audit Relations and Repurchase Coordination Manager material findings with respect to violations of investor/insurer guidelines, state/federal regulation, bank policies or suspicious mortgage loan activity
  • Assist with research and analyses of emerging production/repurchase-related industry actions and concerns
  • Assist with training of Investor, Insurer and Regulatory Quality Control Analysts I and II
  • Support senior Management of Regional Mortgage Production Offices, Regional Production Support Centers, Correspondent Lending and other areas of bank in regards to investor/insurer requirements or issues
  • Bachelor's degree or equivalent education and related training
  • Five years of mortgage experience, preferably in audit, originations, processing, quality control, underwriting, or regulatory compliance
  • Very good interpersonal, analytical and problem solving skills
  • Very good verbal and written communication skills
  • Extensive knowledge of Excel, Word and other Microsoft applications
  • Supplemental education and experience in residential mortgage lending, including audit, originations, processing, quality control, underwriting, or regulatory compliance
  • Very good knowledge of investor/insurer guidelines, including FHLMC, FNMA, FHA and VA
5

Vendor Risk Analyst Resume Examples & Samples

  • Complete activities that further develop the Vendor Management Program based on industry and regulatory expectations. Create methodology for straightforward enhancements to policy, process, workflows and procedures as necessary
  • Stay current with all vendor management regulatory requirements and changes as well as industry best practices which would influence the M&T Bank Vendor Risk Management Program, including its functions, processes and operations
  • Bachelor's degree,or in lieu of a degree 4 years work experience with one or more years in a banking, risk management, project management or vendor management
6

Third Party Vendor Risk Business Analyst Resume Examples & Samples

  • The TPRM function within HSBC provides a professional service to all Businesses/user departments
  • Increasing reliance on the expertise of the TPRM Manager in the face of increasing regulatory requirements relating to risk with third parties
  • Organized, detail-oriented with ability to understand big picture
  • High proficiency of PowerPoint, Excel, Word and Access
7

Vendor & Information Security Risk Analyst Resume Examples & Samples

  • Help demonstrate Facebook’s commitment to security to external stakeholders
  • Understand technical implementation details necessary to identify and assess security risks and recommend mitigating controls
  • Participate in the development and oversight of required corrective action plans relating to security risk issues
  • Support security assessments by completing vendor security reviews, general security risk assessments, and working with key security partners to drive and coordinate cross-functional security risk assessments
  • Partner with internal teams to ensure successful security programs that align with identifying security risks
  • Understand business process and needs and evaluate against key security risk areas
  • Manage daily activities and functions of the Vendor Security Program
  • Partner with the Vendor Security Program manager to help continuously assess and improve upon the needs of the program
  • Partner with the Security Risk Manager to help continuously assess and improve upon the needs of the Security Risk Management program
  • Lead assessments of business partner security risk, develop mitigation plans, and work with internal stakeholders to assign monitoring responsibility
  • Help prepare and complete annual risk assessments and assist with regulatory and accreditation audit preparation as needed
8

Senior Vendor Risk Analyst Resume Examples & Samples

  • Coordinate with stakeholders to initiate, scope and plan controls assessments of new and existing vendor engagements
  • Perform Information Security remote/table-top assessments
  • Perform Information Security onsite assessments at vendor locations when required
  • Assess completed questionnaire and supporting documentation to validate vendor appropriate implementation of information security controls; analyze the information to identify information security weaknesses or non-compliance with MUFG and industry standards
  • Produce detailed documentation of assessments and perform threat analysis of gaps identified
  • Escalate issues associated with vendors as needed to management
  • Strong technical and/or IT audit background and practical knowledge of a wide variety of technologies which include server infrastructure & operating systems, network & web infrastructures, database architecture and intrusion detection/prevention systems
  • Must be flexible to ensure assessments are performed by the mandated date and be able to manage multiple assessments simultaneously
  • IT Risk Management/Audit industry certification (such as CISSP, CISA, CRISC, etc.) preferred
9

Senior Vendor Risk Analyst Resume Examples & Samples

  • Perform assessments on-site at vendor locations or remotely via conference calls
  • Demonstrated in-depth knowledge of concepts, best practices and controls in a breadth of information security areas/domains; these information security areas include risk management, access control, cryptography, physical security, security architecture and design, network security, application & operations security and compliance/incident management
  • Travel Requirements: 50%
10

Vendor & Internal Security Risk Senior Analyst Resume Examples & Samples

  • Identification of third-party service relationships across the enterprise
  • Presentation of risk metrics for the vendor and internal risk assessment process
  • Review and interpret vendor due diligence materials, including audit reports and security control questionnaires
  • Identification of potential business impacts from security-related issues
  • On-going monitoring of issue remediation efforts
  • Promote development of security and risk management culture throughout the organization via various communication channels
  • Travel required up to 30% of the time
  • Perform other duties as assigned by management
  • Bachelor's degree from an accredited college or university required; Preferably in the fields of Computer Science, Mathematics, or Engineering; 5 years of comparable experience considered in lieu of degree
  • 3-5 years of combined IT and information security experience in vendor and/or internal risk management with a broad exposure to infrastructure/network and multi-platform environments, security policy, standards and security framework experience required
  • Certification in CISP or CISA preferred
  • Knowledge of GRC platforms preferred
  • Familiarity with audit testing and control methodologies
11

Vendor Risk Assessment Analyst Resume Examples & Samples

  • Assessing responses to our SIG (Standard Information Gathering) Questionnaire(s)
  • Conducting on-site risk assessments based on AUP (Agreed Upon Procedures) Guidelines
  • Assessing key vendor–provided documentation including
  • Support the Technical Assessment Group's goal to conduct detailed security and privacy assessments of vendors going through the Company's Vendor Assessment Program
  • Execute assigned assessments under the guidance and direction of the Vendor Assessment Program Principal
  • Build rapport with various stakeholders
  • Coordinate the timely gathering of assessment questionnaire responses and related supporting documentation
  • Document assessment according to AUP guidelines
  • Escalate issues (delays; significant gaps; uncooperative parties; etc.) to management as required
  • Ability to work independently, as well as, part of a matrixed team
  • Document assessment findings in a report that is read by various client roles
  • Strong oral and written communication skills are critical
12

Vendor Risk Analyst Resume Examples & Samples

  • Assists and analyzes vendor risk, and evaluates third party service providers
  • Assists in oversight, reporting and annual evaluations
  • Determines infrastructure improvements to drive reductions in run rate savings without compromising business strategy
  • Generates list of third party service providers capable of providing needed services
  • Gains understanding of complex supplier pricing models and develops cost analysis, scorecards, and division vendor reports and helps conduct quarterly business reviews
  • Procures services and materials as directed by and approved through internal channels and policy
  • Assists in the sourcing and operational negotiations and vendor risk reviews as needed
  • Supports contract development, vendor risk reviews and approval process and provides contract information as needed
  • Analyzes supplier marketplace data including industry structure and demographics, supplier performance, cost dynamics, etc
  • Develops complex data models in order to synthesize data and support fact based objective decision making processes
  • Develops and applies standardized and rigorous approach to financial analysis related to procurement
  • Develops, implements, monitors and reports performance measures that demonstrate value and ensure vendor performance
  • Conducts reviews which measure end-user satisfaction, spend and usage trends (historical and projected), prices, quality and service levels, savings, supplier performance metrics, next-generation improvement opportunities, etc
  • Participates in stakeholder interviews to gather information regarding current practices, processes, and behaviors
  • Knowledge of BKFS’ business environment and the ability to evaluate risk implications inherent in new product and market development
  • Knowledge of Operational Risk and financial risk models and monitoring tools
  • Knowledge of Enterprise Risk models and tools as well as a good understanding of Enterprise Risk framework
  • Experience of working with a diverse range of data sources/streams and managing these effectively
  • Experience identifying due diligence requirements
  • Experience planning vendor engagements and overseeing and monitoring activities
  • Experience reporting vendor status
  • Experience with strategic sourcing activities
  • Excellent analytical, decision-making and problem-solving skills
  • Ability to develop relationships with business units, especially as it relates to operations and technology
  • Excellent verbal and written communication skills to technical and non-technical audiences of various levels within BKFS or outside the organization (executives, regulators, clients, etc.)
  • Ability to provide information to a wide variety of audiences regardless of topic and effectively deal with issues that are confidential and sensitive in nature
  • Ability to persuade and influence others on next steps
  • Knowledge of infrastructure, key processes, and technology-oriented risk issues, specifically around security and privacy
13

Senior Vendor Risk & Compliance Analyst Resume Examples & Samples

  • Develop, implement and mature vendor management policies, procedures and processes
  • Report and escalate vendor risk issues to the appropriate level, including senior management and the Board
  • Develop and deliver vendor management training and awareness programs to relevant associates (business leaders, controllers and stakeholders)
  • Facilitate vendor risk assessments and assist business leaders with identifying risks that could keep Nelnet and its business lines from meeting defined objectives
  • Work with government agencies, external examiners and Audit Services during compliance and audit engagements
  • Lead junior level vendor risk and compliance analysts, provide training and guidance, assign work and review work for quality
  • Maintain workflow for team functions and addresses concerns with work in progress
  • Develop strong network of internal and external resources to assist in the investigation and remediation of vendor risk and compliance issues
  • Continuously expand knowledge of Nelnet business objectives, products and services, vendor relationships and vendor management best practices
  • Review and make recommendations related to vendor selection, contracts, and ongoing oversight
  • Develop tools to efficiently manage vendor risk assessment, due diligence, monitoring, remediation and reporting activities
  • Minimum of 3 years proven risk management, vendor management, audit or banking compliance experience
  • Education or certification in related disciplines such as risk management, information security or vendor management
  • Strong analytical, research and project management experience
  • Advanced experience with MS products (Excel, Office, SharePoint, Project, & Visio)
  • Working knowledge of National Institute of Standards and Technology (NIST)
  • Working knowledge of Payment Card Industry (PCI) Data Security Standards
  • Working knowledge of consumer lending regulations such as
  • Dodd-Frank Wall Street Reform and Consumer Protection Act of 2010
  • Unfair, Deceptive or Abusive Acts or Practices Act
  • Strong analytical, multi-tasking, and interpersonal skills
  • Ability to quickly learn business functions, corporate policies and processes
  • Ability to work in a high-paced environment and meet strict and frequent deadlines
  • Strong verbal and written communication skills with the ability to communicate with all levels within the organization, external auditors/examiners and clients
  • Strong and extensive experience with Excel, Word, SharePoint and other Microsoft Office products
  • Excellent organization, documentation and coordination skills
14

Senior Analyst, Vendor Risk Assessment Resume Examples & Samples

  • Strong expertise and working knowledge of assessing controls against standards and frameworks such as ISO27001:2013, ISO 22301, NIST 800-53 Rev 4
  • Perform and complete new and existing assessments on vendors and third parties. Leveraging TD Ameritrade vendor assessment methodology that includes questionnaires, evidence requirements, and interviews with vendors and internal stakeholders to appropriately assess controls relating to security risk management, privacy and security policies and governance, organizational security, asset management, physical and environmental security, communications and security operations management, access controls of systems and applications, cryptography and encryption controls, information systems acquisition development and maintenance, third party relationship management, vulnerability and threat management, incident event and communications management, business continuity and disaster recovery, compliance with regulatory and industry standards, cloud controls relating to infrastructure, platform, and software as a services
  • Ability to perform in-depth information security related assessments of new and existing vendors leveraging SIG based questionnaires and evidence
  • Technical expertise to review a vendor’s controls and document in business terms the risk, and recommendation to address the vendor’s control deficiencies
  • Ability to document the assessment details, findings, and overall risk in a formal assessment report
  • Strong written, and verbal communication skills, strong presentation skills to communicate risks to multiple audiences with varying technical skillsets
  • Highly organized, self-motivated, and ability to manage multiple assessments at once
  • Deep analytical capabilities to appropriately analyze risk and report areas of concern
  • Review completed SIG questionnaires based on vendor inherent risk
  • Document risks and recommendations based on a vendors lack of controls
  • Risk rank findings based on likelihood and impact leveraging TD Ameritrade risk methodology
  • Document and report risk to Vendor Assessment management team, business partners, and vendors
  • Follow-up on open findings with vendors in repeat assessments if necessary
  • Influence the behavior of peers and build relationships with other teams without direct authority over those teams to promote security awareness and risk management
  • Assess current business practices and identify opportunities to promote effective third party risk management
15

Vendor Risk Analyst Resume Examples & Samples

  • Supports policies and procedures as they relate to vendor management including escalation procedures
  • Works within and thinks of improvements related to the defined vendor management processes, tools, and best practices as established by Hilltop Holdings Inc
  • Supports the risk assessment and vendor management process including the maintenance of the vendor repository in vendor management system
  • Maintains an ongoing vendor due diligence program in accordance with current policies and procedures. This includes ongoing monitoring of vendor documentation and quality assurance reviews, and managing the issue escalation process for a business segment as appropriate
  • Manages and tracks the following when initiating a new third party provider in vendor management system
  • Risk assessment and tier rating via the questionnaire(s) to vendor and evaluation by business units
  • Final assignment of risk tier and score after business unit reviews have been returned
  • Create work spaces in vendor management system as required based on tier level
  • When necessary, collects NDA prior to any conversation or engagement with the vendor and route for approval and signature
  • Conducts vendor background checks as required by the Hilltop Holdings Inc. Vendor Management Policy and Procedures including but not limited to
  • Inquiry into legal, regulatory, and reputational public and non-public records for indications of direct or peripheral links to organized crime, fraud, corruption, illegal or questionable business activities, regulatory and law-enforcement actions and adverse environmental or employment practices
  • Performs on-going monitoring of negative activities for the lifetime of the engagement with the supplier, as required
  • Collects and routes documents and questionnaires for appropriate business unit review, scoring, and approval
  • When necessary, reviews vendor due diligence materials (i.e. SSAE 16/SOC reports, Business Continuity Plans, financial data, etc.), identifies potential issues and follows-up on unresolved issues. This includes assisting business unit managers with completion of due diligence tasks and risk assessments
  • Assists management in the evaluation of new technology service providers and third-party service providers
  • Tracks, measures, reports and evaluates vendor performance
  • As needed, provides status reports to senior management, auditors, and regulators
  • Communicates results and recommendations effectively to all levels of management
  • Keeps abreast of the latest industry, regulatory, and cyber security trends and issues
  • Bachelor’s degree or equivalent related work experience required. Degree in Business or IT related focus strongly preferred
  • 1+ years experience in general banking, financial services, or finance operations role with database management experience and knowledge of high regulatory environment. Previous experience in vendor management, business continuity planning and/or risk analysis preferred
  • Experience with vendor management systems, specifically Ariba, strongly preferred
  • Strong computer skills, specifically with Microsoft Office suite of products, and the ability to learn and utilize custom systems and applications. Must be proficient in Excel, Word, Access, PowerPoint, and Visio
  • Excellent verbal, written, and interpersonal communication skills with the ability to interact with all levels of Bank personnel
  • Excellent analytical, time management, organizational and problem-solving skills with the ability to multi-task and work in a deadline-driven environment
  • Must be self-motivated team player with strong attention to detail, high level of accountability, and the ability to work independently
16

Vendor Risk Assessment Analyst Resume Examples & Samples

  • SSAE 16 Type-II report
  • Network vulnerability assessments (NVA) or penetration tests (“pen-test”)
  • Industry certifications such as (ISO-27001/27002), NAID, URAC, PCI CORA, HITRUST, SysTrust; eTRUST etc
  • Corporate Policies against requirements of the AUP
  • Follow-up with business units and vendors on remediation of contingent items by specified due dates
  • Reassessing vendors on a scheduled basis
  • Working with business unit management and vendor contacts in the acquisition of these documents as well as to discuss any identified issues
  • Provide written assessments that include assessment summary, analysis and recommendations
  • At least 2-3 years’ experience in IT audit; IT compliance; IT security or vendor assessment activities
  • Knowledge of Shared Assessments SIG and AUP and/or ISO27001 and ISO 27002 desired
  • CISA, or CISM desired
  • Expert in Microsoft Word, PowerPoint and Excel
  • Must be professional, diplomatic and customer service oriented
  • Must respect and maintain highly confidential information
  • Ability to partner and build rapport
  • Well-developed drafting and written communication skills
  • Well-developed research skills
  • Ability to work independently when required with high level of accuracy
  • Customer service orientation and willingness to support the team on a wide variety of projects
  • Excellent interpersonal skills
17

Senior Vendor Risk & Relationship Analyst Resume Examples & Samples

  • Collaborate with and provide consultation to leadership to conduct due diligence, risk assessments and monitor vendor strength
  • Encourage positive vendor relationships including business continuity, change management, and escalation. Serve as the liaison between vendor and business units
  • Execute against established vendor management policies and procedures in a manner that ensures alignment with strategic goals and objectives
  • Perform key vendor oversight function and measure against established benchmarks/SLAs. Report results to leadership. Execute against vendor action plans to achieve key performance indicators
  • Perform vendor due diligence, participating in risk assessments to assist with efforts to mitigate risks and support efforts to ensure successful vendor performance
  • Identify and mitigate risks associated with outsourcing products/services
  • Keen attention to detail with proven planning and organizational skills and ability to manage complex, diverse, critical processes
  • 3+ years’ experience in related vendor oversight field; overall performance, monitoring service levels
  • Deep product knowledge of the Bank and Cash Solutions product set, including Lending, Credit Card, and Rewards
  • Demonstrated ability to work with internal and external partners
  • Excellent written communication skills
  • Flexible, self-motivated, detail oriented and ability to work independently
  • Knowledge of the technology systems employed across Ameriprise
  • Applicable knowledge of LEAN method and LEAN processes at Ameriprise
  • Background in technology services, and/or processes
  • Risk Management Experience
18

Senior Onsite Vendor Risk Analyst Resume Examples & Samples

  • Communicate vendor information security issues to stakeholders, ensuring their understanding of associated risks and actions needed to remediate those risks
  • Validate evidence from vendors, before Remediation Plans are closed
  • Demonstrate in-depth knowledge of concepts, best practices and controls in a breadth of information security areas/domains; these information security areas include risk management, access control, cryptography, physical security, security architecture and design, network security, application & operations security and compliance/incident management
  • Proficient working knowledge within the following risk domains/technologies: Database and application security, IDS/IPS technologies, System/Access Administration, Firewall technologies, Network Architecture, Security Event Logging & Monitoring , Key Management/Tokenization, Database/Application/Network Layer Secure Protocols, Physical and Environmental Security, Secure Software/Code Development, Change Management, Vulnerability Management
  • Self-starter with the ability to manage and prioritize responsibilities through the effective use of time management techniques
  • Team player with proven skills in influencing people without having direct management authority and motivating them to successfully complete tasks within required timelines
  • Strong ability to interact and communicate both written and verbally with people at all levels, both technical and non-technical, in a dynamic environment where interactions are not always in person
  • Strong risk analysis and problem solving skills
  • Experience that is considered a strong plus: performing information security assessments; providing information security guidance to business stakeholders; interpreting and applying information security policy and standards
  • IT Risk Management/Audit industry certification (such as CISSP, CISA,CRISC, etc.) preferred
  • Travel Requirements: 25-30% - 5-6 days onsite out of the 20 business days a month; both Domestic and International
19

Global Technology Vendor Risk Analyst Resume Examples & Samples

  • Bachelor’s degree and 3+ years’ experience in technology and financial services
  • Strong understanding of Cyber Risk, Info Security, BCP, data privacy and encryptions, network security and other related areas
  • Understanding and experience with GRC tool-kits such as Archer and MetricStream
  • Collaborative work style
20

Vendor Risk Analyst Resume Examples & Samples

  • Analyze the vendor details provided by the business and assess the risk to the bank, by clarifying information provided by the business and challenging some of these cases/responses
  • Assign a risk rating to the vendor based upon the vendor review
  • Manage the vendor inventory through the collection of information from our internal business partners, and by conducting research to ensure the inventory is complete
  • Meet with the assigned business partners to review the responses provided, as well as clarify or challenge the information to ensure data accuracy
  • Generate supporting documentation for the review of vendor information (ex: OFAC Report, Experian Credit Risk Report, Negative News Report)
  • Update the vendor data points in the central data repository
  • Following up with business partners to ensure assessment forms are received and all information is updated
  • Provide ongoing support to management and the continued development of the vendor risk program, which includes giving direct input and feedback on updates to the vendor risk program
  • At least 1-2 years of risk, procurement, vendor, audit, or controls experience is required
  • Banking and/or financial services industry experience is required
  • Risk, business continuity, or information security certifications (ex: CISSP, CISSM, CISA, CBCP) are preferred
  • Must have a bachelor’s degree or equivalent
  • Strong Microsoft Office experience is required
  • Must have strong interpersonal and communication skills
  • The ability to work independently with minimal management supervision, and manage multiple assignments with multiple deadlines is required
21

Vendor Risk Analyst Resume Examples & Samples

  • Coordinate and perform vendor reviews to comply with LoanCare’s vendor performance management program
  • Implement and maintain the supplier corrective action process
  • Implement and maintain the supplier score card process
  • Track and report vendor performance
  • Review third party vendor processes, procedures and work product for completeness and accuracy
  • Maintain a centralized vendor database using SharePoint
  • Perform business unit compliance testing to ensure internal policies and procedures, client, investor, state requirements; and other applicable guidelines are adhered to
  • Participate in business unit meetings amongst operational departments to communicate findings and ensure consistent standards are communicated appropriately
  • Maintain professional relationships with vendors
  • Escalate critical issues to management, as required
  • Previous audit, compliance, or quality control experience
  • Previous vendor management experience
  • Mortgage servicing experience a plus
  • Good time management and organizational skills
  • Be self-motivated and detail oriented
  • Strong interpersonal skills; ability to work well independently and as part of a team
  • Proficiency in Microsoft Word and Excel required
  • SharePoint experience a plus
  • Ability to recognize problems outside the normal mandated company, client and state regulations, guidelines and requirements
22

Contingent Vendor Risk Analyst Resume Examples & Samples

  • Perform risk assessment/due diligence for new and existing third parties working closely with internal stakeholders
  • Monitor key risk indicators based on vendor criticality ratings
  • Host calls between internal stakeholders and vendors as needed
  • Track vendor service levels and aggregate data into department reports
  • Using FFIEC, OCC, SEC and other regulatory guidance identify required process improvements and work with internal stakeholders to continually improve risk assessment operations
  • Perform duties & responsibilities specific to department functions & activities
  • Performs other duties & responsibilities as required or assigned by supervisor
  • Responsibilities include the following: 1) adhering to and complying with all applicable, federal and state laws, regulations and guidance, including those related to Anti-Money Laundering (i.e. Bank Secrecy Act, USA PATRIOT Act, etc.), 2) adhering to Bank policies and procedures, 3) completing required training, 4) identifying and reporting potential suspicious activity to the BSA/AML Officer, and 5) knowing and verifying the identity of any customer(s) that enters into a relationship with the Bank
23

Vendor Risk Analyst Resume Examples & Samples

  • 2 or more years of third party oversight and regulatory knowledge
  • 2 or more years of expertise in enterprise communications and program administration
  • Adept at managing requirements from multiple stakeholders
  • Demonstrated ability to respond quickly and effectively to executive demands
  • Skilled in influencing and building consensus
  • Agile thinker – easily transitioning from strategic to tactical
  • Proven track record of identifying and resolving issues in a timely manner
  • Demonstrated ability to work collaboratively across all levels and division lines
  • Detail oriented individual with the ability to effectively manage multiple priorities
  • Proven communication skills (both written and verbal)
24

Vendor Risk Analyst Resume Examples & Samples

  • Manage the vendor inventory through the collection of information from internal business units, and by conducting research to ensure the inventory is complete. Follow up with business units to ensure assessments are completed and all information is updated in Archer. 35%
  • Partner with assigned business units to ensure vendor assessments are completed accurately and timely, including the identification of risk concerns and the recommendation of control enhancements and due diligence and ongoing monitoring requirements are fulfilled. Interact with business unit personnel to train and guide on completion of vendor risk assessments, due diligence and ongoing monitoring to support their compliance with vendor risk policies. 25%
  • Proactively work to improve the quality of vendor risk data within Archer. Validate and monitor gaps identified during the vendor risk assessments, due diligence and ongoing monitoring to support adherence to vendor risk management policies. Identify risk-related issues needing escalation to management. 20%
  • Provide assistance and troubleshooting in use of the Vendor module in Archer to support accuracy and completeness of the vendor risk documentation. Provide day to day support to assigned business lines when needed. Develop and maintain training materials for the vendor Archer modules. Arrange ongoing training sessions for new and existing users as required. 15%
  • Assist the AVP – Vendor Management Officer on any other ERM / Vendor special projects as needed. 5%
  • Ensures compliance with all banking laws, rules, regulations, and prescribed polices/practices procedures necessary to reduce necessary to risk and uphold ethical standards related and required by one’s duties
  • Minimum 1-2 years of banking experience
  • Experience in various risk management, compliance, and regulatory areas preferred
  • Attention to detail, ability to prioritize work and maintain multiple projects simultaneously
  • Ability to work both independently and as part of a team to deliver quality work in a timely fashion in a fast-paced environment
  • Flexibility and ability to think creatively and to identify new ways to approach old problems
  • Ability to work well with people from many different disciplines with varying degrees of technical experience
  • Proven problem solving and analytical skills
  • PC skills including Microsoft Office products
25

Information Security Senior Vendor Risk Analyst Resume Examples & Samples

  • Coordinate and assist users in executing a risk assessment, due diligence, and contract issues of potential service providers to insure adequate protection of nonpublic customer and corporate information
  • Directly responsibility for oversight compliance with Trustmark’s requirement for periodic review of the financial condition of service providers and other technology vendors
  • Coordinate with users an annual review of service level agreements with selected service providers
  • Assist with providing a forum for review, counsel, education, and communication of Service Provider Oversight Program
  • Responsible for assisting in creating the required Annual Reports regarding the Information Security Program to the Enterprise Risk Committee of the Board
  • Directly responsible for providing Management with required reporting matrices related to vendor risk for annual reporting regarding the Information Security Program to the Enterprise Risk Committee of the Board
  • Responsibility for coordinating information security site visits to ascertain the level of vendor compliance with information security controls
  • Responsible for managing the time management of reporting associates
  • Broad knowledge of Federal Regulations, relative to Information Security and Risk Assessment
  • In depth knowledge of development and implementation of policy and standards
  • Knowledge of Contingency Planning and survey tools used to implement business continuity plans
  • In depth knowledge of Federal compliance guidelines pertaining to the protection of sensitive customer information
  • Basic knowledge related to Information Security in a regulated environment (OCC, FDIC, Fed Reserve, CFPB, FFIEC)
  • RSA Archer Platform skills preferred or have the ability to learn a new application and offer recommendations for improvement
  • Oral communication skills
  • Inter-personal skills
  • Knowledge and basic skills of Microsoft Office products
  • Writing skills involved with creating/maintaining information security policy and procedure
  • Writing skills related to Management reporting
  • Independent judgment
  • Four-year college education or equivalent work experience
  • Work experience in implementation of Information Security policies desired
  • Project Management and Supervisory experience required
  • Two or more years of work experience with Information Security program relative to oversight of compliance with GLBA 501b and FFIEC
  • Related certifications desired
  • Work experience in banking preferred
26

Vendor Risk & Compliance Analyst Resume Examples & Samples

  • The accurate and timely completion of the initial and ongoing Category 1 & 2 Material Vendor Risk Assessments
  • Work closely with the Vendor Management department to collect data from Vendors that support the completion of both the Due Diligence Questionnaire and the Vendor Risk Assessment
  • The accurate and timely completion of the financial analysis worksheet to be used as a component of the vendor risk assessment
  • Drafting and maintaining the Department’s procedures related to the Company’s vendor risk assessment, tracking and reporting process including change management
  • Prepare vendor risk reports and summaries to be used by department and senior management across the organization
  • Responsible for the change control processes covering the vendor risk assessment tools (i.e. Due Diligence Questionnaire, Vendor Intake Form, Financial Analysis Worksheet, Vendor Audit Questionnaire, etc.) are followed to ensure their ongoing accuracy and integrity
  • Assist in the development, implementation and maintenance of the Vendor Audit Questionnaire
  • Liaise with Vendor Management Department, Vendor Relationship Owners and 3rd Party Audit team as subject matter expert regarding Vendor Risk Assessment and Vendor Audit Compliance requirements and evaluation process
  • Assist in the preparation of company training materials that aids in educating
  • Create and implement processes and templates so they are in line with regulatory requirements and PRAA strategic goals
  • Bachelor’s degree in any business discipline; and
  • Minimum 3-5+ years of related work experience
  • Knowledge of relevant Vendor Management regulatory guidelines and experience within a regulated environment (Bank, Financial Services Firm etc.)
  • Proven analytical competency
  • Knowledge of automated spreadsheets, word processing, MS-Access, SQL, SharePoint and PowerPoint
  • Achieves assigned results by decisions and actions based on professional methods, training, business principles, and practical experience
  • Works well with direction and guidance from management and project supervisors. Accomplishes tasks and makes decisions within established policies and guidelines
  • Achieves assigned results by making decisions and actions based on professional methods, training, business principles, and practical experience
  • Independent Judgment/Complexity - Prioritizes projects well both independently and with some direction and guidance from management. Must be comfortable working in and guiding cross functional teams of subject matter experts. Needs to be able to make decisions and accomplish tasks within established policies and guidelines
  • Competencies: Job knowledge and results; Project Management; Vendor Management; Negotiation skills; Strategic thinking; Group Leadership skills; Interpersonal and customer relations skills; Analysis and decision making; Communication; Self-Management