Third Party Risk Management Officer

Only candidates with US Work Authorization will be considered.

Scope of Responsibilities:  

The following but is not necessarily an exhaustive list of all responsibilities, duties, performance standards or requirement efforts, skills, or working conditions associated with the job. Management reserves the right to revise the job or to require that other or different tasks be performed when circumstances change (i.e., emergencies, rush jobs, change in workload, or technological developments). All job responsibilities must be carried out according to Federal/State regulations. 

• Develop and lead the enterprise Third-Party Risk Management (TPRM) program, ensuring it meets regulatory expectations and industry best practices. 

• Ongoing assessing and updating the TPRM program to reflect the bank’s evolving risk profile, size, and complexity. 

• Ensure compliance with applicable regulatory guidance on third-party risk, including requirements published by the regulators.

• Analysis of the various business and risk data and information to proactively identify risks, trends, and process improvements, as related to third parties. 

• Identify, assess, and monitor the risks associated with third-party relationships. 

• Support the vendor onboarding due diligence process.

• Conduct risk assessments on new and existing third parties to ensure they meet the bank’s risk tolerance and compliance requirements.

• Collaborate and work with vendor owners to ensure the third-party relationships are managed effectively and that risks are identified and mitigated early in the process.

• Ensure the third-party vendor contracts (e.g., SLAs) incorporate appropriate risk management provisions, adhere to bank policies, and industry best practices. 

• Ensure the provisions/services of vendor executed contracts are being adhered to. 

• Proper monitoring and reporting on all the stages of the TPRM life cycle.

• Ongoing monitoring of third-party performance levels (e.g., services vs compensation) and periodically requesting and analyzing current due diligence.

• Develop third party Key Risk Indicators / Key Performance Indicators for monitoring potential risks.

• Provide recommendations for control changes when necessary. 

• Prepare reports on third-party risk management for presentations to management and committees. 

• Develop a training program on third-party risk management practices.

• Perform other tasks as assigned by the Chief Regulatory Compliance Officer. 

Experience: At least 5 years of experience in third party risk management or relevant work experience.  

In addition, the individual must possess the following qualifications but not limited to. 

• Ability to work independently and make decisions.

• Good problem-solving skills.

• Able to communicate effectively, both written and verbally. 

• Ability to effectively present information to one-on-one, small groups, or large groups.

• Able to multi-task and meet deadlines. 

• Must be well-organized, efficient, detail orientated, and self-motivated/starter. 

• Ability to conduct thorough research, analyze and interpret technical reading material, especially banking regulations.

• Good knowledge of Microsoft Office (especially in Word, Excel, PowerPoint, and Outlook).

Education: BA Degree in Business, Finance or similar field.

Language: Speak, read, and write English; a plus – Spanish, Portuguese. 

Equal Opportunity/Affirmative Action Employer, M/F/V/D

Search for this job, NO EMPLOYMENT AGENCIES, HEAD HUNTERS, EXECUTIVE SEARCH FIRMS OR REPRESENTATIVE CALLS PLEASE.