Third Party Vendor Analyst

SUMMARY: The Third-Party Vendor Analyst, under the direction of the SVP, Financial Risk and Data Analytics, performs all aspects of the third-party vendor due diligence process, including the administration of the Bank’s vendor management software system. 

JOB QUALIFICATIONS:

Performs all aspects of vendor management due diligence. 

• Risk assesses all new vendor requests and provides a written risk assessment that outlines any discrepancies, deficiencies and/or risks noted for review by the SVP, Financial Risk and Data Analytics. 
• Reviews due diligence package documents submitted by the third party and provides a conclusion of the information.
• Disseminates vendor due diligence reviews and risk assessment to the necessary parties.
• Tracks open items to be resolved/completed after the initial review. Works with the lines of business and other departments to document and resolve open items. 
• Reviews existing vendor questionnaires in accordance with the tier-based monitoring schedule and completes all on going monitoring tasks.
• Ensures that new vendor questionnaires are completed by the Line of Business and reviews the data to ensure the risk is measured appropriately.
• Request FFIEC TSP exams on a quarterly basis.

Vendor Management Committee Meetings

• Contributes to the discussions surrounding the agenda items and reports.
• Assists with the creation of the meeting agenda and prepares the requisite reports.
• Maintain and enforce the Vendor Management and Contract Management Policy.

Third Party Risk Management Reporting

• Prepares monthly and quarterly reports for Sr. Management, Vendor Management Committee, and the Board Risk Committee.

Administrator of the vendor management system

• Provides support and guidance to all departments with respect to the Bank’s vendor management software system.
• Archives vendor questionnaires for terminated relationships and create new vendors in the system when needed.
• Maintains and reviews the software system’s user accounts to ensure appropriate access.

Assists with internal and external audits and examinations

• Provides requested documents in a timely manner.

Assist the Information Security department with Zero Day Assessments.

EDUCATION/EXPERIENCE:

• Bachelor’s Degree in business-related field;
• Exposure to third party risk and operational risk management;
• Knowledge of third-party risk management lifecycle and risk assessment processes;
• Strong critical thinking, and analytical skills;
• Strong attention to detail, accuracy, and adherence to deadlines;
• Microsoft Office skills: proficient in Excel, Word, and Power Point;
• Excellent verbal, written and interpersonal communication skills;
• Ability to manage multiple projects simultaneously;
• Ability to exercise sound judgment and work independently.

Requirement: Full vaccination against COVID-19 is required as a condition of employment, unless a legally required exception applies.

Columbia Bank and its affiliates is an Equal Opportunity Employer

Affirmative Action Employer/Males/Females/Protected Veterans/Individuals with Disabilities