Third Party Risk Management Specialist Support
Positions
Third Party Risk Management Specialist Support
Employment:
Full-time
Setup:
WFH
The TPRM Specialist will provide technical and administrative support to the TPRM program, ensuring effective risk assessment, due diligence, monitoring, and compliance practices related to third-party vendors.
Key Responsibilities
The Third Party Risk Management Specialist will perform the following key responsibilities:
Risk Assessment Support
Conduct and document initial and ongoing risk assessments for third-party vendors, focusing on IT related risks such as cybersecurity, data protection, and business continuity.
Due Diligence Management
Support the gathering, review, and validation of due diligence documentation from vendors. Ensure appropriate risk questionnaires and documentation are completed.
System Administration
Assist with the configuration and maintenance of TPRM platforms and tools. Ensure the integrity and security of data within the TPRM systems.
Issue Tracking and Remediation
Monitor open issues with third parties and track remediation progress. Follow up with internal stakeholders and vendors to ensure timely resolution.
Documentation and Reporting
Prepare and maintain documentation related to vendor risk profiles, assessment results, and risk mitigation strategies. Support the generation of regular reports and dashboards for internal risk committees and leadership.
Policy and Procedure Support
Assist with the review and implementation of TPRM-related policies, standards, and procedures. Ensure alignment with industry regulations and best practices.
Cross-Functional Collaboration
Work with IT, Legal, Procurement, Compliance, and other departments to gather necessary input and support vendor risk decisions. Ensure consistency and alignment across departments in risk management processes.
Audit and Regulatory Support
Support audit and regulatory compliance requests by gathering documentation and explaining TPRM processes. Ensure readiness for internal or external reviews.
Deliverables
The TPRM Specialist will deliver the following:
Completed third-party risk assessments.
Up-to-date risk register and issue tracking logs.
Accurate and timely due diligence documentation.
Regular status reports and dashboards.
Audit-ready TPRM records and artifacts.
Performance Expectations
Timely and accurate completion of risk assessments and documentation.
Effective tracking and follow-up on open issues.
Responsiveness to internal and external inquiries.
Proactive identification of potential risks or improvements.
Requirements
The following qualifications are essential for this role:
Education:
Associate's or Bachelor’s degree in Information Technology, Risk Management, or related field.
Experience:
At least 1 year of experience in IT, security, risk management, or vendor oversight.
Skills:
Familiarity with third-party risk frameworks and compliance standards (e.g., NIST, ISO 27001, SOC 2).
Basic understanding of cybersecurity concepts.
Strong attention to detail and documentation.
Proficiency in Excel and workflow tools.
Effective communication and organizational skills.
