Third Party Risk Analyst

We are looking for a Third Party Risk Analyst to support enterprise Third-Party Risk Management (TPRM) initiatives. This role will focus on assessing, monitoring, and governing supplier/vendor risks across the vendor lifecycle while ensuring alignment with internal policies and regulatory expectations.

• Conduct inherent risk assessments based on service criticality, data sensitivity, and regulatory impact
• Perform supplier due diligence including financial reviews and adverse media screening
• Evaluate supplier risk posture and identify mitigation requirements
• Support ongoing vendor monitoring and governance activities
• Track risk findings, issues, and policy exceptions through resolution
• Review supplier risk indicators including financial performance and emerging/global risks
• Assist with audit and compliance activities, including documentation and remediation tracking
• Partner with business stakeholders, procurement teams, and risk functions
• Provide guidance and training to contract owners on third‑party risk management practices
• Support enhancements to TPRM processes, reporting, dashboards, and frameworks

• 2–5 years of experience in Third‑Party Risk Management, Compliance, Audit, or Operational Risk
• Hands‑on experience conducting inherent risk assessments and vendor due diligence
• Strong understanding of vendor risk lifecycle (onboarding, monitoring, governance)
• Experience with financial reviews and adverse media screening
• Solid analytical, communication, and stakeholder management skills

• Familiarity with OSFI B-10 or similar regulatory frameworks
• Experience reviewing SOC reports, ISO certifications, or control documentation
• Experience with TPRM tools such as Archer, Ivalua, or Process Unity
• Understanding of cybersecurity and information security risks
• Exposure to emerging technology risks including AI and cloud environments

Canada Job Posting:
The Company offers a total rewards package in accordance with all applicable federal, provincial, and local laws and requirements. Benefit eligibility and offerings vary based on role, employment status, and work location.

For contractor positions, benefits are limited to those entitlements and protections required by applicable law, which may include (as applicable) vacation pay, public holidays, leaves of absence, and other legally mandated benefits or payments.

We may use AI‑enabled and/or automated tools to support parts of our recruitment process, including application screening, interview scheduling, and candidate communications. These tools are used to enhance consistency and efficiency. All hiring decisions involve human review and are not based solely on automated processing.