Risk Assurance - Analyst

Sanofi•Bogota, NJ

31d•Hybrid

About The Position

At Sanofi we chase the miracles of science to improve people's lives. We are dedicated to making a positive impact on the lives of the patients and families we serve, and we accomplish our goals through world-class research and with the compassion and commitment of our employees. As we continue to transform the practice of medicine, the next chapter of Sanofi's Play to Win strategy will require a focus on delivering transformation and simplification of our core processes, optimizing resource allocation and deployment to fuel business growth and investment in science. To facilitate this transformation, a new Business Operations Business Unit is being established, bringing together existing business service activities, and driving further expansion of centralized services at scale into a global unit, with a focus on driving simplification, efficiency, and productivity. This new Business Unit will enable the delivery of best-in-class business support capabilities across the organization, incorporating and engaging disparate teams from across areas such as R&D, M&S, the Corporate Functions and GBUs into new global Service Delivery Towers with initial services spanning Commercial, Finance, Procurement and People & Culture. Reporting to the Head of Procurement Risk Assurance, the Risk Assurance Analyst plays a critical role in assessing and managing risks. The incumbent supports the development and execution of strategies to ensure sustainable supplier relationships align with Sanofi's business objectives.

Requirements

2 - 4 years of experience in Third Party Risk management, conducting due diligence.
Experience in healthcare and/or life-science industry.
Familiarity with procurement processes and category management principles.
Bachelor's degree in information technology, Business, Cybersecurity, Risk Management, or a related field.
Hands-on experience with risk management tools (e.g., CRA, Ariba, OneTrust) and frameworks (e.g., ISO 27001, GDPR).
Global or international experience and ability to work with a diverse team.
Strong analytical and problem-solving skills, with attention to detail.
Excellent Data Visualization and Dashboarding Skills.
Effective communication skills to convey complex risk insights.
Collaborative mindset with the ability to work effectively in a team environment.
Ability to communicate complex risk concepts to non-technical stakeholders.
Ability to assess and interpret security-related clauses in third-party contracts.
Fluent in English, Spanish (mandatory) and Portuguese (spoken and written)

Responsibilities

Risk Assessment: Conduct vendor risk assessments, ensuring third-party services and products align with internal risk and security policies. Regularly review vendor performance and risk exposure, working with procurement and legal teams as necessary.
Compliance: Collaborating with procurement teams to drive adherence and enhance controls across the E2E Procurement lifecycle. Ensure compliance with relevant industry standards and regulatory requirements.
Reporting and Data Visualization: Generate regular reports and dashboards for TPRM process and Supplier risk factors, compliance metrics, and key performance indicators for stakeholders and leadership. (Power BI, COUPA Analytics preferred)
Collaboration: Work closely with Procurement, GBUs and Risk Domain Experts to integrate risk management practices into the supplier relationship lifecycle.
Continuous Improvement: Identify opportunities for enhancing risk management processes, implementing best practices to drive positive outcomes.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume