Third Party Risk AVP

Third Party Risk AVP

The Third Party Risk AVP (TPRA) is responsible for developing, implementing and overseeing the Third Party Risk Management Program (“Program”) and defines the policy, standards/guidance associated with the Program. The TPRA works with the Subject Matter Professionals (“SMPs”) and senior management to ensure the Program is comprehensive and effectively integrated with the end result being effective oversight by the organization of the third parties it uses to deliver its services.

Duties & Responsibilities

·         Develop and maintain policy and procedures that incorporate the requirements and standards set forth by applicable U.S. regulators

·         Manage and oversee the entire third-party engagement lifecycle process, including sourcing, vendor onboarding, supplier performance management, and termination

·         Maintain strong, collaborative partnerships with key stakeholders across the business functions and corporate areas involved in vendor governance related efforts

·         Provide guidance and education on vendor governance and risk mitigation approaches throughout the vendor lifecycle to business owners and other key stakeholders

·         Efficiently and accurately establish metrics on the third-party portfolio and deliver them in a robust, consistent, and repeatable process to senior management and Board of Directors, as appropriate

·         Manage the budget and resource allocation across the organization connected to Third Party Risk Management

·         Administrating the centralized third-party risk management platform

·         Oversee and assist in the implementation of the technology platform build – as applicable

·         Liaise with broader technology team to ensure that all feeds, data and updates between and amongst systems are fully optimized

·         Maintain the underlying technology tool and questionnaire logic against business needs and regulatory framework on and on-going basis

·         Coordinating with SMPs, business divisions, and other key stakeholders to enhance the Program as appropriate

·         Advise on the appropriate level of staffing and expertise required to support the Program

·         Develop and conduct appropriate third-party risk management training for all program stakeholders

·         Compliance with Anti-Money Laundering and Bank Secrecy Act related principles, laws, rules and regulations, as well as Itau’s related policies and procedures.

Qualifications

·         BA degree in Business or related field preferred

·         Roles are this level typically require and advanced degree, with 5 years of working experience with 2 years of experience focused on risk management

·         Fluency in English required; fluency in Portuguese and/or Spanish desirable

·         Prior work experience in the financial services industry preferred

·         Prior experience with managing and maintaining a Third-Party Program and experience with utilizing a vendor tool is desired

·         Prior experience working and managing across business unit functions is desired

·         Demonstrated ability to interact effectively across all levels within an organization

·         Prior management experience at an international parent company preferred

·         Prior work experience supporting a large institution preferred

·         Excellent communication, written, analytic and project management skills

·         Excellent presentation skills and the ability to translate it amongst various business areas

·         Advanced skills in Microsoft Office applications, specifically, Excel, Access, PowerPoint, and Word