GRC Analyst

SHAZAM
Des Moines, IA Full Time
POSTED ON 5/6/2024 CLOSED ON 7/5/2024

What are the responsibilities and job description for the GRC Analyst position at SHAZAM?

SHAZAM recognizes that community financial institutions build better communities, and this drives our passion to strengthen financial institutions. We are a trusted partner to our valued customers providing answers, choice, and innovation with an impeccable level of customer service – a level unmatched in the industry.

And here’s the best part - we’re a national company that offers a small-company feel, a cultural balance that’s hard to come by but very real at SHAZAM. Your growth and development are top priorities and you’ll be surrounded by talented individuals and postured to make a real difference in the company. As a team member at SHAZAM, you’ll be an essential part of our mission as we work together strengthening community financial institutions.

What we’re looking for:

SHAZAM is looking for a GRC Analyst to join our team. In this position, you'll be responsible for the third-party risk management (TPRM) program, including the assessment of both third party/vendor risk and risks associated with new technologies and processes. This role also handles maturing a third-party risk management framework and risk assessment program across a complex-cross-functional team of stakeholders. You will develop and carry out program strategy and objectives and manage the full TPRM lifecycle, including program metrics.

What you'll do:
  • As a GRC Analyst, you will play a critical role in ensuring the security and compliance of our organization's relationships with third-parties.
  • You will be responsible for further development, implementation, and maintenance of a comprehensive third-party risk management program, ensuring that potential risks associated with vendors are identified, assessed, and mitigated effectively.
  • Ensure the program is aligned with industry best practices and regulatory requirements through periodic gap analysis.
  • Collaborate with and lead a cross-departmental team of risk identification and controls experts to ensure SHAZAM’s risk appetite and tolerance is adhered to.
  • Identify and assess potential risks associated with third-party vendors and suppliers, including but not limited to cybersecurity, data privacy, regulatory compliance, financial stability, and operational resilience.
  • Collaborate with internal stakeholders, including Legal, IT, Compliance, and other business units, to establish and enforce standardized third-party risk management policies, procedures, and contractual requirements.
  • Develop and maintain a centralized repository of vendor-related information, including contracts, risk assessments, audit reports, and remediation plans.
  • Develop and maintain program reporting and metrics.
  • Conduct thorough due diligence and risk assessments of prospective and existing third-party vendors, considering their risk profile, performance, and ability to meet contractual obligations.
  • Monitor and evaluate the ongoing performance and compliance of third-party vendors through periodic risk assessments, audits, and performance metrics.
  • Implement and maintain an effective third-party risk reporting framework, providing regular updates to management, highlighting key risk areas and recommending appropriate mitigation strategies.
  • Provide guidance, training, and support to internal teams on third-party risk management practices, policies, and procedures.
What you need:
  • 5 years proven experience in third-party risk management, preferably in a regulated industry.
  • Bachelor's degree in business administration, finance, information technology, or a related field or equivalent work experience.
  • In-depth knowledge of third-party risk management principles, methodologies, and frameworks, with a strong understanding of industry standards and best practices.
  • Strong analytical and problem-solving skills, with the ability to assess complex risk scenarios, develop mitigation strategies, and make informed decisions.
  • Excellent communication and interpersonal skills, with the ability to influence and collaborate effectively with stakeholders at all levels of the organization.
  • Detail-oriented mindset, with the ability to manage multiple priorities and projects simultaneously, while maintaining a high level of accuracy and attention to detail.
  • Proficiency in using third-party risk management tools and platforms, as well as experience in leveraging data analytics for risk assessment and reporting.
  • Strong project management skills, with the ability to lead and execute initiatives independently and within established timelines.
  • A commitment to continuous learning and professional development in the field of third-party risk management.
  • Third-party risk management certifications are a strong plus.
What’s in it for you:
  • Supportive, collaborative, inclusive, and diverse workforce.
  • Career learning, development, and growth opportunities.
  • Culture of respect and dignity, teamwork, honesty, and integrity.
  • Excellent benefits:
    • Health, dental, and vision insurance
    • 401(k) retirement plan with company match
    • Flexible spending and health savings accounts
    • Life insurance and short- and long-term disability provided at no cost
    • Time away from work – PTO, VTO, paid parental leave, and company holidays
    • Educational assistance
    • Professional Certification Bonus program
Actual compensation is based on various factors, such as geographic location, experience, education, and/or skill level, and is finalized at the time of offer.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Visa Sponsorship: This position is not eligible for sponsorship for work authorization by ITS, Inc. Therefore, if you require sponsorship for work authorization now or in the future, we cannot consider your application at this time.
Business Analyst/Quality Analyst
DKMRBH Inc -
Des Moines, IA
Support Analyst
Control Systems Software, LLC -
Urbandale, IA
Business Analyst
Hollstadt Consulting -
Des Moines, IA

For Employer
Looking for Real-time Job Posting Salary Data?
Keep a pulse on the job market with advanced job matching technology.
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a GRC Analyst?

Sign up to receive alerts about other jobs on the GRC Analyst career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$74,176 - $98,434
Income Estimation: 
$131,419 - $196,178
Income Estimation: 
$98,879 - $133,291
Income Estimation: 
$94,726 - $125,433
Income Estimation: 
$95,986 - $129,447
Income Estimation: 
$74,176 - $98,434
Income Estimation: 
$131,419 - $196,178
Income Estimation: 
$98,879 - $133,291
Income Estimation: 
$94,726 - $125,433
Income Estimation: 
$95,986 - $129,447
Income Estimation: 
$95,986 - $129,447
Income Estimation: 
$131,419 - $196,178
Income Estimation: 
$121,610 - $163,752
Income Estimation: 
$124,091 - $154,474
Income Estimation: 
$86,935 - $112,302

Sign up to receive alerts about other jobs with skills like those required for the GRC Analyst.

Click the checkbox next to the jobs that you are interested in.

  • SAP Asap Methodology Skill

    • Income Estimation: $151,672 - $199,860
    • Income Estimation: $160,434 - $212,550
  • Audit Management Skill

    • Income Estimation: $126,538 - $179,879
    • Income Estimation: $128,849 - $163,685
This job has expired.
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Not the job you're looking for? Here are some other GRC Analyst jobs in the Des Moines, IA area that may be a better fit.

GRC Issue Management Specialist

Berkley Technology Services, Urbandale, IA