Assistant Manager, Vendor Risk Continuous Monitoring Program

6 - 10 years

8 - 12 Lacs

Posted:4 months ago| Platform: Naukri logo

AI Match Score
Apply

Work Mode

Work from Office

Job Type

Full Time

Job Description

The Role: Assistant Manager, Vendor Risk Continuous Monitoring Program

We are looking for a proactive and experienced Lead who would lead Vendor Risk Continuous Monitoring & Affiliate program within Vendor Risk Management (VRM) program. This role will be responsible for overseeing and managing thevendor risk monitoring program and the Team, managing affiliate risk assessments, and driving key governance initiatives such as Open Issue Governance, Risk Acceptance, andAdverse Event Management. The ideal candidate will have extensive experience in third-party risk management, strong leadership skills, and a deep understanding of industry regulations, risk frameworks, and governance processes.

The Team: Vendor Risk Management is a critical function that organizations globally are increasingly focusing on. Our team ensures thorough reviews of each vendor engaged globally, supporting the business in making risk-informed and data-driven decisions.

We collaborate closely with Business Units and Risk Domain Subject Matter Experts (SMEs), such as Cyber Risk, to conduct assessments and recertifications in compliance with regulatory requirements. When issues are identified, VRM team is responsible for ensuring risk mitigation and providing feedback to leadership before engaging with the vendor.

Responsibilities and Impact: Working in Vendor Risk Management Team provides the opportunity to continuously improve processes in response to the evolving requirements of various regulators. This dynamic environment offers ample opportunities to expand your knowledge and expertise.

In addition to conducting risk assessments, thevendor risk monitoring program, managing affiliate risk assessments, and driving key governance initiatives, you will have the chance to contribute to various projects, enabling you to showcase and further develop your skills and experience.

Key responsibilities:

  • Conduct comprehensive risk assessments of third-party vendors, ensuring alignment with organizational risk tolerance and standards. Evaluate financial, operational, cyber, compliance and privacy risks associated with each vendor relationship.
  • Manage the continuous monitoring of vendor and affiliate risks, ensuring timely identification and assessment of any emerging risks.
  • Oversee and manage the affiliate risk assessment program, ensuring that risks related to third-party affiliates are identified, evaluated, and mitigated.
  • Manage open issues identified during Vendor and Affiliate assessments.
  • Ensure that open issues are tracked, managed, and resolved within agreed timelines, and provide regular updates to leadership on the status of these issues.
  • Manage the process for evaluating and documenting risk acceptance for vendors.
  • Ensure that all risk acceptance decisions are properly documented, justified, and aligned with the organizations risk appetite and governance policies.
  • Manage the identification, reporting, and resolution of adverse events related to vendor.
  • Work with relevant teams to assess the impact of adverse events, ensure timely remediation, and minimize any negative consequences to the organization.
  • Prepare and present detailed reports and dashboards on vendor and affiliate risk monitoring, open issue management, risk acceptance, and adverse events to senior leadership
  • Work with vendors and internal teams to develop risk mitigation plans and track remediation efforts for any identified issues or non-compliance.
  • Collaborate with Cyber Risk/Information Security, Business Continuity, Procurement, Compliance and other Domain SMEs to ensure correct risk level is documented in the Vendor Risk Assessment results and track the progress.
  • Lead and support enhancement projects within Vendor Risk Management to meet various business and regulatory requirements.
  • Identify opportunities to streamline risk assessment processes and improve the overall effectiveness of the Vendor Risk Management program.
  • Assist the team members in balancing the load and managing Ad-hoc projects.

What Were Looking For:

Basic Required Qualifications:

  • Professional with Vendor Risk Management background, having good experience in conducting vendor risk assessments, or related fields (e.g., compliance, audit, or risk management, GRC) with at least 6-10 years of experience after Degree/Masters
  • Should have experience in understanding and managing the risk for IT and Cloud based vendors.
  • Strong knowledge of risk management frameworks, compliance regulations (e.g., GDPR, ISO 27001, SOC 2), and cybersecurity principles.
  • Experience with vendor management tools, risk monitoring platforms, and relevant reporting systems.
  • Should have understanding on the roles and responsibilities of different risk functions like Third Party Risk Management, QA Function, IT Risk, Operational Risk, Financial Risk, Internal Control, Internal audit, Privacy and Compliance etc.
  • Should have good understanding in conducting financial, compliance, and privacy assessments.
  • Excellent leadership, communication, and collaboration skills, with the ability to engage with stakeholders at all levels.
  • Amenable for 2pm-11pm India Time

Additional Preferred Qualifications:

  • This position is required to work in UK Shift; flexibility is a must, especially when it comes to vendor and internal meetings held during US business hours.
  • Strong organizational skills with the ability to multitask and prioritize while maintaining close attention to detail.
  • Ability to work in a fast-paced, evolving environment while maintaining attention to detail.
  • Ability to build strategic partnerships with internal stakeholders.
  • Must be a critical thinker with strong qualitative skills.
  • Information Security/Risk Management certification would be an advantage.