CrawlJobs Logo

Third Party Vendor Management Lead Analyst

Costa Rica, Heredia · Job Posted March 18, 2026
Apply Position
Job Link Share

Job Description

Individuals in Operational Risk establish and manage operational risk policies, propose strategies, and governance processes designed to minimize losses from inadequate controls, fraud, and potential bankruptcy. This includes supervision over technology operational risk, cyber risk, and fraud risk. These individuals are also responsible for the development of tools and infrastructure that support fraud monitoring and prevention, using advanced analytical and statistical skills to identify policy gaps and recommend changes to current policies. This role is crucial to the company as it fortifies against potential operational risks, thereby protecting the company's financial stability and reputation, and contributing towards the overall business resilience and success.

Job Responsibility

  • Represent business leadership to coordinate and facilitate Third-Party Risk Management activities
  • Evaluate current market conditions and provide insight on trends/issues that could impact the business by external third parties
  • Advise the BAO on risk assessment for third parties and reassess as required
  • identify significant relationship changes to trigger risk assessment updates
  • Verify compliance of third parties with required policies and controls
  • Partner with business operations, technology teams, and internal functions to conduct on-site visits of third parties, as required
  • Maintain and update Citi’s Exit Strategy Plans as required
  • collaborate with business contacts to establish risk mitigation activities when the exit strategy poses significant risk to Citi
  • Interact with third parties on escalations of non-performance and contractual issues to drive resolution when appropriate
  • Monitor third party performance and Service Level Agreements (SLAs) through Citi Performance Management Assessment (PMA) process
  • Verify proper execution and upload of Third-Party contracts (e.g., Statements of Work) in Citi’s Contract Management System (eSourcing), collaborate with the Enterprise Supply Chain (ESC) organization if renegotiations are required
  • Review, prioritize, assess, and act on results of Third-Party Risk Management assessments/controls with support from various internal functions, in conjunction with business and operations teams
  • Facilitate remediation of issues or gaps identified as part of ongoing monitoring
  • Define risk mitigation strategies and risk exceptions based on the business’s risk appetite
  • Provide thought leadership to drive supplier optimization and efficiencies based on third parties' risk profiles, performance, and market trends
  • Standardize SLAs performance monitoring measures for like services, where possible
  • Liaise with the ESC Third Party Utility to review and respond to centrally conducted third-party risk management activities
  • When making business decisions, assess risk, uphold the firm's reputation, and protect Citigroup, its clients, and assets. This involves adhering to laws, rules, and policies, applying ethical judgment, and managing control issues transparently
  • Is an enthusiastic and early adopter of change
  • takes ownership for helping others see a better future and stay positive during uncertainty
  • Demonstrates and inspires curiosity in seeking new ways to overcome challenges
  • actively applies learning from failures
  • Challenges self and others to seek out and communicate alternative views even when unpopular
  • welcomes diverse ideas to improve outcomes
  • Acts as a change catalyst by identifying and helping others see where new ideas could benefit the organization
  • Proactively seeks to understand and act in alignment with organizational decisions
  • helps others prioritize team and enterprise success over their own personal agenda
  • Focuses on highest-priority work aligned to business goals
  • helps others effectively manage competing priorities
  • Proactively identifies opportunities to streamline work
  • creates process improvements that enhance efficiency for self and the team
  • Takes personal accountability for escalating, identifying, and managing potential risk
  • implements controls that enhance the client experience and operational effectiveness
  • Anticipates problems and proactively identifies solutions that address the root causes and result in meaningful improvements
  • Sets high expectations and invests the necessary effort to deliver excellence and exceed performance goals
  • Role-models and helps others to do the right thing for clients and Citi in all situations, even when difficult
  • Engages key stakeholders early and often and actively looks for opportunities to improve collaboration in achieving common goals
  • Proactively seeks out opportunities to volunteer in Citi programs that support the community
  • advocates for solutions that meet the needs of Citi’s clients and the community
  • Enthusiastically promotes the unique needs and preferences of colleagues
  • makes active commitment to help colleagues achieve balance, well-being, and development
  • Leverages varied networks to recruit diverse talent
  • advocates for colleagues with diverse skillsets, styles, and experiences to gain career opportunities
  • Empathetically listens and understands others’ positions before acting on issues
  • works to amplify voices that are minimized in the workplace
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of teams and create accountability with those who fail to maintain these standards

Requirements

  • 6-10 years of experience
  • Understanding of Third Party Risk management lifecycle and risk assessment processes
  • Thought leadership and clarity in presenting ideas to senior management
  • Proven technical knowledge of resilience and Third-Party Risk principles and processes, to include up to date knowledge of current technology solutions, including Cloud
  • Experience in implementing risk processes across a large and diverse organization
  • Knowledge of regulatory requirements underpinning resilience and the Third-Party Risk Management and Outsourcing Lifecycle (OCC/FRB/EBA/PRA/MAS, etc.)
  • Excellent analytical skills to interpret and present complex data
  • Proficiency in the use of MIS and other risk management tools
  • Excellent project management skills to oversee risk reviews and mitigation efforts
  • Strong communication skills to provide counsel and collaborate with various stakeholders
  • Ability to challenge and scrutinize established practices
  • Strong collaboration skills to work with different risk SMEs
  • Problem-solving skills to identify and address root causes leading to operational risk losses
  • Bachelor's/University degree, Master's degree preferred
  • Sourcing Experience is required
  • Contract & Vendor management is required
  • Stakeholder management
  • Advance English
  • Risk & Control is a plus
  • ARAVO is a plus

Nice to have

  • Risk & Control is a plus
  • ARAVO is a plus

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Third Party Vendor Management Lead Analyst

8 matching positions

Third Party Vendor Management Senior Analyst

Individuals in Operational Risk establish and manage operational risk policies, ...
Location
Location
Costa Rica , Heredia
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of experience
  • Knowledge in risk management, particularly Resilience and Third-Party Risk Management
  • Understanding of Third-Party Management policy and procedures
  • Familiarity with risk governance structures and risk appetite parameters
  • Ability to create, apply, and analyze MIS of reports
  • Background in the implementation of third-party and resilience risk processes across various sectors and regions
  • Experience in conducting comprehensive third-party and resilience risk management reviews
  • Knowledge of relevant regulations and standards related to risk management, and ability to ensure compliance
  • Adapt to work across a diverse organization, managing various sectors and regions
  • Utilize strong analytical skills to interpret complex data and present it in a clear and understandable manner
Job Responsibility
Job Responsibility
  • Represent business leadership in Third-Party Risk Management activities coordination and facilitation
  • Evaluate market conditions and provide insight into trends that could impact the business
  • Advise on third-party risk assessments and reassessments
  • Verify third-party compliance to required policies and controls
  • Partner with operations and tech teams for on-site visits of third parties when necessary
  • Maintain and update Exit Strategy Plans as required
  • Address escalations of non-performance and contractual issues with third parties when necessary
  • Monitor third-party performance and service level agreements
  • Ensure proper execution and upload of third-party contracts in Contract Management System
  • Review, prioritize, assess, and act on third-party risk management assessments results
  • Fulltime
Read More
Arrow Right

Cyber / Tech 2nd LOD Senior Lead Analyst, Senior Vice President

The Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi...
Location
Location
Poland , Warsaw
Salary
Salary:
340990.00 - 580610.00 PLN / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in technology and cyber risk assessments, metrics, enterprise technology services, risks, and controls within globally complex, dispersed, and diverse organizations
  • Advanced knowledge and experience leading control design and operating effectiveness evaluation, testing, and reporting with a track record of influencing effective risk mitigation strategies
  • Excellent presentation skills as well as the ability to effectively communicate complex topics to a broad audience
  • Advanced proficiency in creating written executive materials and mastery in verbal presentation to Executive audiences
  • Outstanding communication and influencing skills, with the ability connect with individuals throughout all levels of the organization and with external partners and vendors
  • Exceptional relationship management skills, including demonstrable experience managing through conflict and issue resolution with senior stakeholders
  • Proven ability to work within teams, manage cross-functional projects, influence executive-level strategic decision-making, and effectively translate technology / cyber risk insights to value-add risk mitigation solutions
  • Subject matter expert in one or more industry standard risk management frameworks (including ISO27001, COBIT, TOGAF and CRI for example), and an in-depth understanding of technology and cyber risk mitigation strategies
  • Deep knowledge of products within the coverage area (e.g, Markets, Banking), including a technical understanding of current and emerging trends as well as the ability to apply in-depth understanding of the business impacts of technical contributions
  • In-depth knowledge of technology and cyber risks and controls across various information system architecture and engineering domains including data protection, identity and access management, vulnerability management, network security, endpoint security, logging and monitoring, incident management, and third-party management
Job Responsibility
Job Responsibility
  • Manages internal projects on threat issues that support a variety of participants and stakeholders measuring the effectiveness and comprehensiveness of Citi’s first line defenses
  • Establishes and oversees the application of compliance and technology and cyber policies and procedures, technology and tools, and governance processes to provide credible challenge for minimizing losses from technology and cyber risks
  • Independently assesses technology and cyber risks and drive actions to address the root causes that persistently lead to operational risk losses by challenging both historical and proposed practices
  • Leads independent assurance activities to assess areas of concern including substantive and controls testing
  • Monitors, evaluates, and challenges Key Risks and associated Key Risk Indicators triggers and thresholds
  • Identifies potential risks associated with program/project delivery on a technical and detailed level
  • Leads various second line of defense technology and cyber assessments including risk assessments, control assessments, maturity assessments etc
  • Assesses technology and cyber risks associated with new initiatives and programs being proposed for implementation
  • Challenges the design, adequacy and strength of the control environment associated to technology and cyber and recommends actions to ensure the operational risk profile is in line with the technology and cyber risk appetite
  • Executes ad-hoc activities for the TCCORO organization, including but not limited to: researching and producing materials for presentations of deep dives into selected topics, coordinating deliverables related to audits and examinations, and maintaining associated data for executive reporting
What we offer
What we offer
  • Employer paid Defined Contribution Pension Plan contribution of 6% of employee’s pensionable earnings (PPE Program)
  • Employer paid Private Medical Care Package for employees and Private Medical Care Packages for certain family members available at preferential rates
  • Employer paid Life Insurance Program for employees and Life Insurance for certain family members available at preferential rates
  • Employee Assistance Program financed by Employer
  • Paid Parental Leave Program (maternity and paternity leave
  • statutory and 2 weeks additional paid paternity leave)
  • Sport Card for employees subsidised via Social Benefits Fund and Sport Cards for certain family members available at preferential rates
  • Additional benefits from Company’s Social Benefit Fund, in particular: Holidays Allowance, support for sport and cultural activities, team building events
  • Additional day off for volunteering
  • Cafeteria/ flex benefit
  • Fulltime
Read More
Arrow Right

Lead Cyber Security Analyst

Lead Cyber Security Analyst | Asset Manager | £140k + Bonus. You will take end-t...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience as a Cyber Lead in a small-to-mid sized organisation or Senior/Lead engineer from a cyber security vendor or MSP
  • Azure cloud experience is essential
  • Familiarity with Zero Trust networking concepts (Azure-based)
  • Broad knowledge of modern InfoSec tooling and practices
  • Exposure to AI and its impact on cyber security is a strong plus
Job Responsibility
Job Responsibility
  • Owning and evolving security policies, standards and procedures
  • Managing and challenging third party security vendors and MSPs
  • Leading audit and assurance activities
  • Oversight of DLP, penetration testing, vulnerability management, and incident response
  • Advising the business on emerging risks, including AI-driven security threats
What we offer
What we offer
  • Bonus
  • Fulltime
Read More
Arrow Right

Lead Cyber Security Analyst

Lead Cyber Security Analyst/InfoSec Officer | Asset Manager | £200k TC. I’m work...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience as a Cyber Lead in a small-to-mid sized organisation or Senior/Lead engineer from a cyber security vendor or MSP
  • Azure cloud experience is essential
  • Familiarity with Zero Trust networking concepts (Azure-based)
  • Broad knowledge of modern InfoSec tooling and practices
  • Exposure to AI and its impact on cyber security is a strong plus
Job Responsibility
Job Responsibility
  • Owning and evolving security policies, standards and procedures
  • Managing and challenging third party security vendors and MSPs
  • Leading audit and assurance activities
  • Oversight of DLP, penetration testing, vulnerability management, and incident response
  • Advising the business on emerging risks, including AI-driven security threats
  • Fulltime
Read More
Arrow Right

Avp-analyst (digital finance & artificial intelligence risk management)

At Moody's, we unite the brightest minds to turn today’s risks into tomorrow’s o...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
moodys.com Logo
Moody's
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 9+ years of experience, including 5+ years in technology governance, risk, and control, covering self assessments, control evaluation, and regulatory compliance within financial services, with a strong focus on AI and digital finance
  • Broad technology experience across digital finance, AI, data, and large scale systems, operating in highly regulated, global environments with significant complexity
  • Hands on experience with GRC platforms (e.g., OpenPages or similar) and strong proficiency with the Microsoft Office suite
  • Proven ability to navigate product and tool development, particularly at the intersection of technology and data, partnering closely with engineering and business teams
  • Strong stakeholder management skills, building and sustaining effective relationships between business, technology, risk, and compliance stakeholders
  • Demonstrated capability to evaluate and prioritize strategic initiatives, balancing competing stakeholder needs and driving alignment across AI, digital finance, technology, and data priorities
  • Highly effective, independent contributor with strong analytical thinking, communication skills, adaptability, and experience leading or contributing to large, cross functional global initiatives
  • Master’s or Bachelor’s in a technology discipline (Computer Science, Information Management, Computer Engineering, Cyber Security or equivalent)
  • Relevant certification is desirable, e.g., CISSP, CISM, CISA. Working knowledge of Risk Management life cycles based on established frameworks: NIST, ORX, ISO 27001
Job Responsibility
Job Responsibility
  • Implement and maintain risk controls for digital finance and AI processes as first line of defense (1LOD) for Digital Economy team
  • Identify, assess, and mitigate operational and technology risks across AI models, platforms, and digital finance tools
  • Collaborate with business units to embed risk management practices into day-to-day operations and ensure compliance with governance standards
  • Maintain complete, accurate, and timely documentation of controls, RCSAs, mitigation plans, and all risk activities within GRC tools to support effective monitoring and reporting
  • Monitor emerging AI and digital finance risks, escalate issues promptly, and drive timely remediation actions
  • Develop and track Key Risk Indicators (KRIs) and ensure adherence to tolerance levels
  • Support risk governance through committee reporting and by maintaining policies and procedures aligned with enterprise risk, regulatory, and compliance requirements
  • Provide training and guidance to business teams on AI and digital finance risk management practices
  • Partner with technology and vendor teams to manage risks related to platforms, models, third party dependencies, and data usage
  • Drive continuous improvement of risk processes, reducing complexity while enhancing efficiency, scalability, and control effectiveness
Read More
Arrow Right

Technical Product Manager / Business Systems Analyst

We are seeking a highly motivated Technical Product Manager / Business Systems A...
Location
Location
United States , Austin
Salary
Salary:
40.00 - 50.00 USD / Hour
solomonpage.com Logo
Solomon Page
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Technical Product Management, Business Systems Analysis, or related technical platform roles
  • Strong understanding of modern web-based enterprise application architecture
  • Experience with API-first platforms and integrations, including REST APIs, SOAP, GraphQL, and event-driven systems
  • Strong understanding of distributed systems and enterprise integration patterns
  • Experience integrating third-party enterprise platforms and SaaS solutions
  • Familiarity with AI/LLM ecosystems including OpenAI, AI agent frameworks, conversational AI platforms, and Agent Assist solutions
  • Proven experience creating PRDs, BRDs, functional specifications, and user stories
  • Strong Agile/Scrum delivery experience
  • Experience with SQL and data-driven decision making
  • Strong analytical, troubleshooting, debugging, and problem-solving skills
Job Responsibility
Job Responsibility
  • Drive product ownership for customer support platform modernization initiatives
  • Translate business challenges and operational needs into scalable technical solutions and detailed product requirements
  • Partner with engineering teams to define APIs, workflows, system integrations, and platform capabilities
  • Collaborate with customer support operations, product managers, UX teams, architects, and third-party vendors to deliver unified support experiences
  • Create and manage PRDs, BRDs, user stories, acceptance criteria, functional specifications, MVP definitions, and release plans
  • Lead integration initiatives involving Genesys Cloud, AI-powered platforms, CRM systems, case management platforms, workflow orchestration tools, and internal/external APIs
  • Drive adoption of AI-enabled capabilities such as Agent Assist, Conversational AI, Intelligent Routing, Workflow Automation, and Knowledge Augmentation
  • Work closely with engineering teams on technical feasibility, release management, observability, production support, scalability, platform reliability, and technical debt prioritization
  • Analyze operational data and support workflows to identify optimization opportunities
  • Coordinate delivery and execution across geographically distributed teams
What we offer
What we offer
  • medical
  • dental
  • 401(k)
  • direct deposit
  • commuter benefits
  • Fulltime
Read More
Arrow Right

Senior Business Analyst

We are seeking a proactive, high calibre Senior Business Analyst to act as a vit...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 19, 2026
Flip Icon
Requirements
Requirements
  • Minimum of 7 years as an IT/Business Systems Analyst, combined with at least 3 years of experience in an IT management or delivery-focused role
  • Full project lifecycle exposure with demonstrated experience applying Agile, Waterfall, Prince2, or Incremental methodologies
  • Proven capability in executing Request for Information (RFI) and Request for Proposal (RFP) processes, alongside effective third-party vendor management
  • Outstanding stakeholder management, negotiation, and workshop facilitation skills
  • Experience leading or mentoring small-to-medium project teams is highly advantageous
  • A holistic, critical thinker with a high level of autonomy who can comfortably challenge organisational boundaries to ensure successful project delivery
  • Candidates must have critical retail & POS experience (Mandatory)
  • Recent Retail Sector Expertise: You must have dedicated experience working within the retail, wholesale, or consumer driven sectors within the last 2 to 3 years
  • POS Implementation Track Record: Proven, hands on experience successfully delivering multiple Point of Sale (POS) uplift, migration, or implementation projects across a complex retail network
Job Responsibility
Job Responsibility
  • Analyse and map business processes
  • Define robust system requirements
  • Facilitate cross-functional workshops
  • Drive strategic technology initiatives that elevate customer experience, boost engagement, and deliver superior operational value
  • Champion project management methodologies
  • Ensure seamless execution of IT strategy, architecture, and solution delivery
  • Collaborate with internal teams and external vendors to deliver comprehensive BA artifacts, including Business Requirements Documents (BRDs), Acceptance Criteria, Requirements Traceability Matrices, As-Is/To-Be process maps, data mapping, and RAID logs
  • Utilise established Project Portfolio Management (PPM) frameworks to ensure initiatives are accurately scoped, estimated, documented, and aligned with organisational goals
  • Function as a proactive partner to the business, translating complex technical concepts for non-technical stakeholders and ensuring the delivery of exceptional customer service
Read More
Arrow Right

Risk Analyst

We are looking for an experienced Risk Analyst to support claims risk management...
Location
Location
United States , Richmond
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 5 years of experience in risk analysis, claims management, insurance operations, or a closely related field
  • Working knowledge of claims administration, liability coverage, and coordination with third-party insurance carriers
  • Experience performing audits, claims reviews, or compliance assessments within risk management or insurance environments
  • Ability to analyze financial, operational, and statistical data and translate findings into practical recommendations
  • Familiarity with enterprise risk management concepts, risk assessment methods, and corporate compliance practices
  • Strong written communication skills with experience preparing reports, summaries, and other business documentation
  • Proficiency in Microsoft Excel for tracking, analysis, reconciliation, and reporting tasks
Job Responsibility
Job Responsibility
  • Lead coordination of claims risk management initiatives to promote consistent practices, effective program oversight, and reliable administrative support across assigned activities
  • Develop and maintain reports, forecasts, billing documentation, analytical summaries, and other written materials, presenting findings to stakeholders when needed
  • Review operational and statistical information to identify trends, assess issues, and support informed decisions related to claims and risk management programs
  • Partner with colleagues, departments, and third-party vendors to verify information, resolve questions, and maintain accurate communication across involved parties
  • Track financial activity connected to claims programs, including monitoring expenses, processing reconciliations, and supporting documentation accuracy
  • Conduct reviews of claims-related operations and prepare concise recommendations aimed at improving compliance, efficiency, and risk controls
  • Respond to inquiries from internal and external stakeholders by providing timely updates, research, and issue resolution support as required
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right