Job Summary:

The Risk Analyst will support the Third-Party Risk Management (TPRM) team as well as other groups within the ECRM department. The Risk Analyst will partner with the business to understand third party (including technology, professional services, strategic partners, etc. third parties) use cases and conduct relevant and risk-based due diligence to develop risk assessments. This team member will partner closely with the IT Architecture team as well as the Information Security and Privacy teams. The TPRM function is proactive in enabling the business and the role will support in developing creative solutions. This position will provide guidance on potential risks to the organization in choosing a third party and will develop risk mitigation strategies.

Essential Functions:

• Use a risk-based approach when evaluating third parties
• Act as a strategic risk advisor to the business
• Be able to articulate and explain third party's potential risk to business stakeholders
• Analyze technology use cases and understand potential risks
• Analyze Information Security, Privacy, Architecture, Compliance, and Business Continuity risks and recommendations into a risk assessment summary
• Conduct ongoing monitoring for third parties that are critical to the Enterprise
• Complete annual reviews based on the risk assessment findings and the risk matrix
• Build relationships with strategic partners and Subject Matter Experts
• Audit the TPRM process and refine the process based on feedback from partners
• Track risks and remediations through the Risk Register
• Ability to understand third party risk terms as it relates to Cybersecurity and Privacy
• Ability to understand and create recommendations on third party risk scoring

• Bachelor's degree in Business Administration, Management, Risk, IT, Cybersecurity, Procurement, or related field
• 2-5 years of work experience

Skills and Abilities:

• Must have excellent verbal and written communication skills
• Ability to issue spot real time
• Interpersonal skills
• Must be highly organized and detail oriented
• MS Office and Excel experience
• Analytical and problem-solving skills
• Continuous drive towards process improvement and efficiency
• IT experience is a plus