Third Party Risk Management Analyst II
About The Position
The Third-Party Risk Management (TPRM) program provides strategic direction for TPRM governance & oversight, due diligence lifecycle execution, monitoring & reporting, and program management across SECU, in support of the Operational Risk Management framework. The program objective is to support business efforts to engage Third Parties to provide services to the membership. The Third-Party Risk Management Analyst II helps ensure compliance with SECU’s Third-Party Risk Management Program. This includes assisting with due diligence lifecycle execution, monitoring & reporting, and program management on request.
Requirements
- Associates degree via the North Carolina College Transfer Program (NC-CTP)
- Third-Party regulatory exposure including NCUA, FFIEC, CFPB, OCC, & FDIC
- 2 direct years of TPRM program experience
- Operational Risk Management program execution experience working across organization levels.
Nice To Haves
- Four-year degree
- CCUE Certification
- 5+ years direct years of TPRM program experience
- Demonstrated ability to work independently
- Credit Union risk management experience
Responsibilities
- Work closely with assigned business lines to execute third-party risk management lifecycle activities in coordination with key internal stakeholders.
- Ensure timely analysis of due diligence documentation in consultation with third-party relationship owners, subject matter experts, and external partners.
- Ensure SECU due diligence requirements and documentation requests are effectively communicated to third parties.
- Ensure the adequacy of contingency plans for critical third parties, which outline strategies for transitioning away from a critical third-party, if needed.
- Ensure ongoing monitoring requirements of existing third parties are sufficient to manage risks identified in the planning and due diligence phases.
- Support management reporting regarding performance issues, identifiable risk, exceptions, and risk mitigation plans.
- Support maintenance of third-party relationship inventory, files, program software, due diligence artifacts, and related documentation.
- Work with key internal stakeholders (e.g., Project Management, Privacy, Procurement, Compliance, Accounting, Legal Services, IT GRC, etc.) to review the third-party risk management lifecycle and implement changes where needed.
- Support communications with internal and external auditors during third-party risk management audits and examinations.
- Develop and maintain a working knowledge of regulatory requirements and guidance along with industry best practices related to third-party risk management.
- Support the development, implementation, refinement and sustainability of SECU’s third-party risk management governance framework.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
Associate degree
