CrawlJobs Logo
Citi Logo Citi · Finance

Third Party Risk Analyst Lead

United Kingdom, Belfast · Job Posted February 01, 2026
Apply Position
Job Link Share

Job Description

Individuals in Operational Risk establish and manage operational risk policies, propose strategies, and governance processes designed to minimize losses from inadequate controls, fraud, and potential bankruptcy. This includes supervision over technology operational risk, cyber risk, and fraud risk. These individuals are also responsible for the development of tools and infrastructure that support fraud monitoring and prevention, using advanced analytical and statistical skills to identify policy gaps and recommend changes to current policies. This role is crucial to the company as it fortifies against potential operational risks, thereby protecting the company's financial stability and reputation, and contributing towards the overall business resilience and success.

Job Responsibility

  • Represent business leadership to coordinate and facilitate Third-Party Risk Management activities
  • Evaluate current market conditions and provide insight on trends/issues that could impact the business by external third parties
  • Advise the BAO on risk assessment for third parties and reassess as required
  • identify significant relationship changes to trigger risk assessment updates
  • Verify compliance of third parties with required policies and controls
  • Partner with business operations, technology teams, and internal functions to conduct on-site visits of third parties, as required
  • Maintain and update Citi’s Exit Strategy Plans as required
  • collaborate with business contacts to establish risk mitigation activities when the exit strategy poses significant risk to Citi
  • Interact with third parties on escalations of non-performance and contractual issues to drive resolution when appropriate
  • Monitor third party performance and Service Level Agreements (SLAs) through Citi Performance Management Assessment (PMA) process
  • Verify proper execution and upload of Third-Party contracts (e.g., Statements of Work) in Citi’s Contract Management System (eSourcing), collaborate with the Enterprise Supply Chain (ESC) organisation if renegotiations are required
  • Review, prioritise, assess, and act on results of Third-Party Risk Management assessments/controls with support from various internal functions, in conjunction with business and operations teams
  • Facilitate remediation of issues or gaps identified as part of ongoing monitoring
  • Define risk mitigation strategies and risk exceptions based on the business’s risk appetite
  • Provide thought leadership to drive supplier optimisation and efficiencies based on third parties' risk profiles, performance, and market trends
  • Standardise SLAs performance monitoring measures for like services, where possible
  • Liaise with the ESC Third Party Utility to review and respond to centrally conducted third-party risk management activities
  • When making business decisions, assess risk, uphold the firm's reputation, and protect Citigroup, its clients, and assets
  • Is an enthusiastic and early adopter of change
  • takes ownership for helping others see a better future and stay positive during uncertainty
  • Demonstrates and inspires curiosity in seeking new ways to overcome challenges
  • actively applies learning from failures
  • Challenges self and others to seek out and communicate alternative views even when unpopular
  • welcomes diverse ideas to improve outcomes
  • Acts as a change catalyst by identifying and helping others see where new ideas could benefit the organisation
  • Proactively seeks to understand and act in alignment with organizational decisions
  • helps others prioritise team and enterprise success over their own personal agenda
  • Focuses on highest-priority work aligned to business goals
  • helps others effectively manage competing priorities
  • Proactively identifies opportunities to streamline work
  • creates process improvements that enhance efficiency for self and the team
  • Takes personal accountability for escalating, identifying, and managing potential risk
  • implements controls that enhance the client experience and operational effectiveness
  • Anticipates problems and proactively identifies solutions that address the root causes and result in meaningful improvements
  • Sets high expectations and invests the necessary effort to deliver excellence and exceed performance goals
  • Role-models and helps others to do the right thing for clients and Citi in all situations, even when difficult
  • Engages key stakeholders early and often and actively looks for opportunities to improve collaboration in achieving common goals
  • Proactively seeks out opportunities to volunteer in Citi programs that support the community
  • advocates for solutions that meet the needs of Citi’s clients and the community
  • Enthusiastically promotes the unique needs and preferences of colleagues
  • makes active commitment to help colleagues achieve balance, well-being, and development
  • Leverages varied networks to recruit diverse talent
  • advocates for colleagues with diverse skillsets, styles, and experiences to gain career opportunities
  • Empathetically listens and understands others’ positions before acting on issues
  • works to amplify voices that are minimised in the workplace
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of teams and create accountability with those who fail to maintain these standards

Requirements

  • Understanding of Third Party Risk management lifecycle and risk assessment processes
  • Thought leadership and clarity in presenting ideas to senior management
  • Proven technical knowledge of resilience and Third-Party Risk principles and processes, to include up to date knowledge of current technology solutions, including Cloud
  • Experience in implementing risk processes across a large and diverse organization
  • Knowledge of regulatory requirements underpinning resilience and the Third-Party Risk Management and Outsourcing Lifecycle
  • Excellent analytical skills to interpret and present complex data
  • Proficiency in the use of MIS and other risk management tools
  • Excellent project management skills to oversee risk reviews and mitigation efforts
  • Strong communication skills to provide counsel and collaborate with various stakeholders
  • Ability to challenge and scrutinize established practices
  • Strong collaboration skills to work with different risk SMEs
  • Problem-solving skills to identify and address root causes leading to operational risk losses
  • Bachelor's/University degree, Master's degree preferred
Citi - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Third Party Risk Analyst Lead

8 matching positions

Third Party Risk Analyst

Working at Citi is far more than just a job. A career with us means joining a te...
Location
Location
United Kingdom , Belfast
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge in risk management, particularly Resilience and Third-Party Risk Management
  • Understanding of Third-Party Management policy and procedures
  • Familiarity with risk governance structures and risk appetite parameters
  • Ability to create, apply, and analyse reports
  • Background in the implementation of third-party and resilience risk processes across various sectors and regions
  • Experience in conducting comprehensive third-party and resilience risk management reviews
  • Knowledge of relevant regulations and standards related to risk management, and ability to ensure compliance
  • Adapt to work across a diverse organisation, managing various sectors and regions
  • Utilise strong analytical skills to interpret complex data and present it in a clear and understandable manner
  • Identify and address potential risks, ensuring adherence to regulatory standards
Job Responsibility
Job Responsibility
  • Represent business leadership in Third-Party Risk Management activities coordination and facilitation
  • Evaluate market conditions and provide insight into trends that could impact the business
  • Verify third-party compliance to required policies and controls and advise on third-party risk assessments and reassessments
  • Partner with operations and tech teams for on-site visits of third parties when necessary
  • Maintain and update Exit Strategy Plans as required
  • Address escalations of non-performance and contractual issues with third parties when necessary
  • Monitor third-party performance and service level agreements
  • Ensure proper execution and upload of third-party contracts in Contract Management System
  • Review, prioritise, assess, and act on third-party risk management assessments results
  • Facilitate remediation of issues or gaps identified during ongoing monitoring
  • Fulltime
Read More
Arrow Right

Third Party Vendor Management Lead Analyst

Individuals in Operational Risk establish and manage operational risk policies, ...
Location
Location
Costa Rica , Heredia
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of experience
  • Understanding of Third Party Risk management lifecycle and risk assessment processes
  • Thought leadership and clarity in presenting ideas to senior management
  • Proven technical knowledge of resilience and Third-Party Risk principles and processes, to include up to date knowledge of current technology solutions, including Cloud
  • Experience in implementing risk processes across a large and diverse organization
  • Knowledge of regulatory requirements underpinning resilience and the Third-Party Risk Management and Outsourcing Lifecycle (OCC/FRB/EBA/PRA/MAS, etc.)
  • Excellent analytical skills to interpret and present complex data
  • Proficiency in the use of MIS and other risk management tools
  • Excellent project management skills to oversee risk reviews and mitigation efforts
  • Strong communication skills to provide counsel and collaborate with various stakeholders
Job Responsibility
Job Responsibility
  • Represent business leadership to coordinate and facilitate Third-Party Risk Management activities
  • Evaluate current market conditions and provide insight on trends/issues that could impact the business by external third parties
  • Advise the BAO on risk assessment for third parties and reassess as required
  • identify significant relationship changes to trigger risk assessment updates
  • Verify compliance of third parties with required policies and controls
  • Partner with business operations, technology teams, and internal functions to conduct on-site visits of third parties, as required
  • Maintain and update Citi’s Exit Strategy Plans as required
  • collaborate with business contacts to establish risk mitigation activities when the exit strategy poses significant risk to Citi
  • Interact with third parties on escalations of non-performance and contractual issues to drive resolution when appropriate
  • Monitor third party performance and Service Level Agreements (SLAs) through Citi Performance Management Assessment (PMA) process
  • Fulltime
Read More
Arrow Right

In-Business Risk 1LOD Lead Analyst

Citigroup Global Markets Inc. seeks an In-Business Risk 1LOD Lead Analyst for it...
Location
Location
United States , Tampa
Salary
Salary:
119200.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s degree, or foreign equivalent, in Finance, Statistics, Applied Mathematics or related field and 1 year of experience as a Business Risk Analyst, Data Analyst, Financial Analyst, Compliance Analyst, Graduate Associate or related position involving designing, evaluating and implementing control mechanisms to monitor for financial crimes
  • Alternatively, employer will accept a Bachelor’s degree in the stated fields and 3 years of the specified experience
  • Designing and evaluating control frameworks for financial crime risk assessment
  • Conducting financial data research, financial modeling, and preparing analytical reports and manuscripts
  • Performing quantitative analysis and interpreting large financial and economic datasets
  • Applying statistical methods to analyze datasets, identify financial crime patterns, and assess associated risks
  • Researching and analyzing derivatives, fixed income, swaps, foreign exchange, and structured products, including options, futures, bonds, treasury securities, credit instruments, interest rate swaps, currency swaps, credit default swaps, spot/forward FX products, spread products, and complex structured instruments
  • Developing automated processes for data analysis and financial research using Python and R
  • Extracting, transforming, and analyzing large datasets using SQL, and employing data management and visualization tools such as Tableau, Power BI, and Airflow
  • Researching institutional trading business practices, market structure, and financial crime risks
Job Responsibility
Job Responsibility
  • Design, evaluate, and implement control mechanisms to monitor financial crimes within Citi's Markets and Securities Services division
  • Develop analytical tools and data processes using programming languages such as Python and R to detect and manage risks associated with financial crimes like anti-money laundering, sanctions, and fraud
  • Regularly review existing financial crime monitoring controls to ensure effectiveness and continuously improve the controlling methodologies to address emerging risks
  • Collaborate closely with various stakeholders, including Sales, Trading, Operations, Legal, Compliance, and Technology departments, to identify, assess, and manage financial crime risks across multiple business platforms, specifically focusing on high-risk jurisdictions, third-party payments in foreign exchange, sanctions, and emerging market transaction monitoring
  • Manage control initiatives ensuring resources are properly allocated, execution timelines are met, and all initiatives align strategically with corporate policies and regulatory requirements
  • Conduct specialized reviews of transactional data to proactively uncover new and evolving financial crime patterns, subsequently develop and integrate preventative controls
  • Prepare and deliver comprehensive reports and presentations to senior management and compliance oversight teams, clearly articulating analytical insights, proposed enhancements, and the status of ongoing initiatives
What we offer
What we offer
  • medical, dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • discretionary and formulaic incentive and retention awards
  • Fulltime
Read More
Arrow Right

Resilience Risk 2nd LOD Lead Analyst, Vice President

Individuals in Operational Risk establish and manage operational risk policies, ...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of experience
  • Understanding of Third Party Risk management lifecycle and risk assessment processes
  • Thought leadership and clarity in presenting ideas to senior management
  • Proven technical knowledge of resilience and Third-Party Risk principles and processes, to include up to date knowledge of current technology solutions, including Cloud
  • Experience in implementing risk processes across a large and diverse organization
  • Knowledge of regulatory requirements underpinning resilience and the Third-Party Risk Management and Outsourcing Lifecycle (OCC/FRB/EBA/PRA/MAS, etc.)
  • Excellent analytical skills to interpret and present complex data
  • Proficiency in the use of MIS and other risk management tools
  • Excellent project management skills to oversee risk reviews and mitigation efforts
  • Strong communication skills to provide counsel and collaborate with various stakeholders
Job Responsibility
Job Responsibility
  • Provide strategic support in the formulation and implementation of operational risk management policies and procedures, prioritizing resilience and third-party risk management
  • Drive the identification, measurement, monitoring, and management of residual and emerging risks, ensuring consistent practices across the organization
  • Champion continuous improvement initiatives, incorporating lessons learned from resilience tests, simulations, and third-party risk analysis
  • Act as a liaison with internal and external stakeholders, fostering effective collaboration in risk management
  • Oversee and challenge key risk indicators and material operational risks, ensuring resilience and third-party risks stay within defined Risk Appetite parameters
  • Lead oversight reviews, addressing root causes of unintended losses and ensuring policy and regulatory compliance in resilience and third-party risk management
  • Assess the effectiveness of business and technology capabilities and controls across the organization, promoting the implementation of sound risk management processes
  • Develop, implement, and analyze reports to identify excessive risk areas, ensuring the effectiveness of risk mitigation efforts involving third parties
  • Facilitate the dissemination of operational risk management best practices, raising awareness of resilience and third risk-party among all staff
  • Assist risk management team leaders in staff development, fostering a high level of competence and morale in operational risk management
What we offer
What we offer
  • Global Benefits
  • support your well-being, growth and work-life balance
  • Fulltime
Read More
Arrow Right

Third-Party Cybersecurity Incident Analyst

This role is categorized as hybrid. This means the successful candidate is expec...
Location
Location
United States , Austin; Warren
Salary
Salary:
129400.00 - 212300.00 USD / Year
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Systems, Computer Science, Information Security, or related field
  • At least 7 years in information security with prior incident management, security operations, and cyber event analysis experience
  • Expert in cyber incident detection, investigation, and response, especially third-party and supply chain risk
  • knowledge of application, network, and OS security controls
  • understanding of vulnerability management and risk mitigation
  • Proven ability to lead complex cyber event activities, communicate technical findings to executives, and mentor team members
  • Strong investigative mindset
  • able to translate technical analysis into strategic business recommendations
  • highly detail-oriented and organized
  • Trusted with confidential and sensitive information at the enterprise level
Job Responsibility
Job Responsibility
  • Lead the triage, analysis, and escalation of critical third-party cybersecurity incidents, ensuring alignment with GM’s strategy
  • Assess incident impacts and urgency, guide containment actions, and provide expert advice to technical and non-technical stakeholders
  • Oversee investigations, incident tracking, and resolution, ensuring thorough documentation and reporting
  • Collaborate cross-functionally with Cyber Defense, GMIT, Legal, Purchasing, and leadership for effective response operations
  • Engage external partners to determine root causes and shape third-party risk management
  • Provide strategic support during high-priority and after-hours third-party incidents
  • Prepare and deliver executive-level reports and metrics to support informed decision-making
  • Mentor and guide others, fostering skill development across the team
  • Drive continuous improvement of incident response processes, tools, and methods
  • Coordinate communications with stakeholders and executive leadership, maintaining transparency and alignment during incidents
What we offer
What we offer
  • medical
  • dental
  • vision
  • Health Savings Account
  • Flexible Spending Accounts
  • retirement savings plan
  • sickness and accident benefits
  • life insurance
  • paid vacation & holidays
  • tuition assistance programs
  • Fulltime
Read More
Arrow Right

Third Party Vendor Management Senior Analyst

Individuals in Operational Risk establish and manage operational risk policies, ...
Location
Location
Costa Rica , Heredia
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of experience
  • Knowledge in risk management, particularly Resilience and Third-Party Risk Management
  • Understanding of Third-Party Management policy and procedures
  • Familiarity with risk governance structures and risk appetite parameters
  • Ability to create, apply, and analyze MIS of reports
  • Background in the implementation of third-party and resilience risk processes across various sectors and regions
  • Experience in conducting comprehensive third-party and resilience risk management reviews
  • Knowledge of relevant regulations and standards related to risk management, and ability to ensure compliance
  • Adapt to work across a diverse organization, managing various sectors and regions
  • Utilize strong analytical skills to interpret complex data and present it in a clear and understandable manner
Job Responsibility
Job Responsibility
  • Represent business leadership in Third-Party Risk Management activities coordination and facilitation
  • Evaluate market conditions and provide insight into trends that could impact the business
  • Advise on third-party risk assessments and reassessments
  • Verify third-party compliance to required policies and controls
  • Partner with operations and tech teams for on-site visits of third parties when necessary
  • Maintain and update Exit Strategy Plans as required
  • Address escalations of non-performance and contractual issues with third parties when necessary
  • Monitor third-party performance and service level agreements
  • Ensure proper execution and upload of third-party contracts in Contract Management System
  • Review, prioritize, assess, and act on third-party risk management assessments results
  • Fulltime
Read More
Arrow Right
New

Cyber / Tech 2nd LOD Senior Lead Analyst, Senior Vice President

The Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi...
Location
Location
Poland , Warsaw
Salary
Salary:
340990.00 - 580610.00 PLN / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in technology and cyber risk assessments, metrics, enterprise technology services, risks, and controls within globally complex, dispersed, and diverse organizations
  • Advanced knowledge and experience leading control design and operating effectiveness evaluation, testing, and reporting with a track record of influencing effective risk mitigation strategies
  • Excellent presentation skills as well as the ability to effectively communicate complex topics to a broad audience
  • Advanced proficiency in creating written executive materials and mastery in verbal presentation to Executive audiences
  • Outstanding communication and influencing skills, with the ability connect with individuals throughout all levels of the organization and with external partners and vendors
  • Exceptional relationship management skills, including demonstrable experience managing through conflict and issue resolution with senior stakeholders
  • Proven ability to work within teams, manage cross-functional projects, influence executive-level strategic decision-making, and effectively translate technology / cyber risk insights to value-add risk mitigation solutions
  • Subject matter expert in one or more industry standard risk management frameworks (including ISO27001, COBIT, TOGAF and CRI for example), and an in-depth understanding of technology and cyber risk mitigation strategies
  • Deep knowledge of products within the coverage area (e.g, Markets, Banking), including a technical understanding of current and emerging trends as well as the ability to apply in-depth understanding of the business impacts of technical contributions
  • In-depth knowledge of technology and cyber risks and controls across various information system architecture and engineering domains including data protection, identity and access management, vulnerability management, network security, endpoint security, logging and monitoring, incident management, and third-party management
Job Responsibility
Job Responsibility
  • Manages internal projects on threat issues that support a variety of participants and stakeholders measuring the effectiveness and comprehensiveness of Citi’s first line defenses
  • Establishes and oversees the application of compliance and technology and cyber policies and procedures, technology and tools, and governance processes to provide credible challenge for minimizing losses from technology and cyber risks
  • Independently assesses technology and cyber risks and drive actions to address the root causes that persistently lead to operational risk losses by challenging both historical and proposed practices
  • Leads independent assurance activities to assess areas of concern including substantive and controls testing
  • Monitors, evaluates, and challenges Key Risks and associated Key Risk Indicators triggers and thresholds
  • Identifies potential risks associated with program/project delivery on a technical and detailed level
  • Leads various second line of defense technology and cyber assessments including risk assessments, control assessments, maturity assessments etc
  • Assesses technology and cyber risks associated with new initiatives and programs being proposed for implementation
  • Challenges the design, adequacy and strength of the control environment associated to technology and cyber and recommends actions to ensure the operational risk profile is in line with the technology and cyber risk appetite
  • Executes ad-hoc activities for the TCCORO organization, including but not limited to: researching and producing materials for presentations of deep dives into selected topics, coordinating deliverables related to audits and examinations, and maintaining associated data for executive reporting
What we offer
What we offer
  • Employer paid Defined Contribution Pension Plan contribution of 6% of employee’s pensionable earnings (PPE Program)
  • Employer paid Private Medical Care Package for employees and Private Medical Care Packages for certain family members available at preferential rates
  • Employer paid Life Insurance Program for employees and Life Insurance for certain family members available at preferential rates
  • Employee Assistance Program financed by Employer
  • Paid Parental Leave Program (maternity and paternity leave
  • statutory and 2 weeks additional paid paternity leave)
  • Sport Card for employees subsidised via Social Benefits Fund and Sport Cards for certain family members available at preferential rates
  • Additional benefits from Company’s Social Benefit Fund, in particular: Holidays Allowance, support for sport and cultural activities, team building events
  • Additional day off for volunteering
  • Cafeteria/ flex benefit
  • Fulltime
Read More
Arrow Right

COB and CM Lead Analyst- Vice President

The role of the Enterprise Resilience Quality Review Senior Analyst is to strate...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree or equivalent work experience required
  • 10+ years experience in Resilience operations, Business, Technology, and/or Third Party
  • Knowledge and understanding of the banking or financial sector
  • Knowledge of standard Control Risk Management frameworks
  • Demonstrated leadership and adaptability
  • Excellent analytical, problem-solving, strategy, and follow-up skills with attention to details
  • Excellent written and verbal communication, organizational, and facilitation skills
  • Expert ability to use tools to parse, merge, analyze, and present metrics and trends
Job Responsibility
Job Responsibility
  • Lead and conduct standardized quality reviews on plans & testing documentation with a focus on overall risk mitigation
  • Relationship management with ER, Business, and Technology to close observations and mitigate risk to an acceptable level
  • Support Regulatory and Internal Audits for Quality Assurance commitments as needed
  • Complete assessment documentation
  • Document and communicate identified issues to stakeholders
  • Track issues through resolution and validate corrective actions taken
  • Assist in QA forecast and schedule preparation
  • Perform routine updates on monthly operations reports
  • Analyze root cause of identified issues to spot common themes and suggest program-level improvements
  • Establish/improve operational processes and implement tools (AI) as applicable
  • Fulltime
Read More
Arrow Right