CrawlJobs Logo

Third Party Vendor Management Senior Analyst

Costa Rica, Heredia · Job Posted March 18, 2026
Apply Position
Job Link Share

Job Description

Individuals in Operational Risk establish and manage operational risk policies, propose strategies, and governance processes designed to minimize losses from inadequate controls, fraud, and potential bankruptcy. This includes supervision over technology operational risk, cyber risk, and fraud risk. These individuals are also responsible for the development of tools and infrastructure that support fraud monitoring and prevention, using advanced analytical and statistical skills to identify policy gaps and recommend changes to current policies. This role is crucial to the company as it fortifies against potential operational risks, thereby protecting the company's financial stability and reputation, and contributing towards the overall business resilience and success.

Job Responsibility

  • Represent business leadership in Third-Party Risk Management activities coordination and facilitation
  • Evaluate market conditions and provide insight into trends that could impact the business
  • Advise on third-party risk assessments and reassessments
  • Verify third-party compliance to required policies and controls
  • Partner with operations and tech teams for on-site visits of third parties when necessary
  • Maintain and update Exit Strategy Plans as required
  • Address escalations of non-performance and contractual issues with third parties when necessary
  • Monitor third-party performance and service level agreements
  • Ensure proper execution and upload of third-party contracts in Contract Management System
  • Review, prioritize, assess, and act on third-party risk management assessments results
  • Facilitate remediation of issues or gaps identified during ongoing monitoring
  • Define risk mitigation strategies based on business' risk appetite
  • Strive for supplier optimization and efficiency
  • Liaise with Third Party Utility for centrally conducted third-party risk management activities
  • Assess risk when making business decisions
  • Participate in the identification, measurement, monitoring, and reporting of risks
  • Assist in the development and implementation of operational risk management protocols
  • Engage in third-party risk management audits and product oversight reviews
  • Design strategies to improve current processes and advocate for risk reduction strategies
  • Support the development, execution, and analysis of reports
  • Promote operational risk management best practices
  • Is an enthusiastic and early adopter of change
  • takes ownership for helping others see a better future and stay positive during uncertainty
  • Demonstrates and inspires curiosity in seeking new ways to overcome challenges
  • actively applies learning from failures
  • Challenges self and others to seek out and communicate alternative views even when unpopular
  • welcomes diverse ideas to improve outcomes
  • Acts as a change catalyst by identifying and helping others see where new ideas could benefit the organization
  • Proactively seeks to understand and act in alignment with organizational decisions
  • helps others prioritize team and enterprise success over their own personal agenda
  • Focuses on highest-priority work aligned to business goals
  • helps others effectively manage competing priorities
  • Proactively identifies opportunities to streamline work
  • creates process improvements that enhance efficiency for self and the team
  • Takes personal accountability for escalating, identifying, and managing potential risk
  • implements controls that enhance the client experience and operational effectiveness
  • Anticipates problems and proactively identifies solutions that address the root causes and result in meaningful improvements
  • Sets high expectations and invests the necessary effort to deliver excellence and exceed performance goals
  • Role-models and helps others to do the right thing for clients and Citi in all situations, even when difficult
  • Engages key stakeholders early and often and actively looks for opportunities to improve collaboration in achieving common goals
  • Proactively seeks out opportunities to volunteer in Citi programs that support the community
  • advocates for solutions that meet the needs of Citi’s clients and the community
  • Enthusiastically promotes the unique needs and preferences of colleagues
  • makes active commitment to help colleagues achieve balance, well-being, and development
  • Leverages varied networks to recruit diverse talent
  • advocates for colleagues with diverse skillsets, styles, and experiences to gain career opportunities
  • Empathetically listens and understands others’ positions before acting on issues
  • works to amplify voices that are minimized in the workplace
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of teams and create accountability with those who fail to maintain these standards

Requirements

  • 5-8 years of experience
  • Knowledge in risk management, particularly Resilience and Third-Party Risk Management
  • Understanding of Third-Party Management policy and procedures
  • Familiarity with risk governance structures and risk appetite parameters
  • Ability to create, apply, and analyze MIS of reports
  • Background in the implementation of third-party and resilience risk processes across various sectors and regions
  • Experience in conducting comprehensive third-party and resilience risk management reviews
  • Knowledge of relevant regulations and standards related to risk management, and ability to ensure compliance
  • Adapt to work across a diverse organization, managing various sectors and regions
  • Utilize strong analytical skills to interpret complex data and present it in a clear and understandable manner
  • Identify and address potential risks, ensuring adherence to regulatory standards
  • Communicate effectively with various stakeholders, providing counsel and collaborating on risk management strategies
  • Utilize project management skills to oversee risk reviews and implement mitigation efforts
  • Challenge established practices, showing adaptability and critical thinking in diverse organizational contexts
  • Solve complex problems by identifying and addressing root causes leading to operational risk losses
  • Bachelor's/University degree or equivalent experience
  • Sourcing Experience is required
  • Contract & Vendor management is required
  • Stakeholder management
  • Advance English

Nice to have

  • Risk & Control is a plus
  • ARAVO is a plus

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Third Party Vendor Management Senior Analyst

8 matching positions

Third Party Vendor Management Lead Analyst

Individuals in Operational Risk establish and manage operational risk policies, ...
Location
Location
Costa Rica , Heredia
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of experience
  • Understanding of Third Party Risk management lifecycle and risk assessment processes
  • Thought leadership and clarity in presenting ideas to senior management
  • Proven technical knowledge of resilience and Third-Party Risk principles and processes, to include up to date knowledge of current technology solutions, including Cloud
  • Experience in implementing risk processes across a large and diverse organization
  • Knowledge of regulatory requirements underpinning resilience and the Third-Party Risk Management and Outsourcing Lifecycle (OCC/FRB/EBA/PRA/MAS, etc.)
  • Excellent analytical skills to interpret and present complex data
  • Proficiency in the use of MIS and other risk management tools
  • Excellent project management skills to oversee risk reviews and mitigation efforts
  • Strong communication skills to provide counsel and collaborate with various stakeholders
Job Responsibility
Job Responsibility
  • Represent business leadership to coordinate and facilitate Third-Party Risk Management activities
  • Evaluate current market conditions and provide insight on trends/issues that could impact the business by external third parties
  • Advise the BAO on risk assessment for third parties and reassess as required
  • identify significant relationship changes to trigger risk assessment updates
  • Verify compliance of third parties with required policies and controls
  • Partner with business operations, technology teams, and internal functions to conduct on-site visits of third parties, as required
  • Maintain and update Citi’s Exit Strategy Plans as required
  • collaborate with business contacts to establish risk mitigation activities when the exit strategy poses significant risk to Citi
  • Interact with third parties on escalations of non-performance and contractual issues to drive resolution when appropriate
  • Monitor third party performance and Service Level Agreements (SLAs) through Citi Performance Management Assessment (PMA) process
  • Fulltime
Read More
Arrow Right

Third Party Risk Analyst

Our team members are at the heart of everything we do. At Cencora, we are united...
Location
Location
Colombia , Bogota
Salary
Salary:
Not provided
cencora.com Logo
Cencora
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree – required
  • 3-5 years of work experience in similar position
  • Strong understanding of risk management principles and practices, particularly as they relate to third party relationships
  • Familiarity with contract negotiation, invoice processing or legal terms review preferred
  • Proficiency in data analysis and the ability to assess and interpret contracts, compliance documentation, and financial statements
  • Excellent written and verbal communication skills required for reporting findings, communicating with vendors and collaborating with internal stakeholders
  • The ability to identify and mitigate risks, as well as to develop effective risk mitigation strategies
  • Self-motivated, ability to work independently, strong organizational skills
  • Ability to multitask and work in a fast paced environment
  • Consistently delivers results and meets deadlines
Job Responsibility
Job Responsibility
  • Identify, measure, and report operational and Third-Party Risk Management risks
  • Support management of third-party risk onboarding and due diligence by ensuring appropriate risk assessments are completed
  • Assist Business Owners with due diligence documentation and evaluation of third-party relationships
  • Execute issue management end-to-end activities (issue identification, prioritization, assignment, remediation, closure) for matters pertaining to third parties
  • Ensure adequate, appropriate, and current third-party risk documentation is maintained in the Third Party Risk Management Software System
  • Leverage the Third-Party Risk Management Software System as the system of record and as a reporting tool to analyze vendors for risk analysis
  • Consult with business leaders to effectively manage change when required
  • Provide risk oversight for process improvement projects, as needed
  • Liaise with senior management and Third-Party Risk Management stakeholders
  • Oversee and / or develop ongoing monitoring activities in alignment with TPRM policy
  • Fulltime
Read More
Arrow Right

Cyber / Tech 2nd LOD Senior Lead Analyst, Senior Vice President

The Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi...
Location
Location
Poland , Warsaw
Salary
Salary:
340990.00 - 580610.00 PLN / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in technology and cyber risk assessments, metrics, enterprise technology services, risks, and controls within globally complex, dispersed, and diverse organizations
  • Advanced knowledge and experience leading control design and operating effectiveness evaluation, testing, and reporting with a track record of influencing effective risk mitigation strategies
  • Excellent presentation skills as well as the ability to effectively communicate complex topics to a broad audience
  • Advanced proficiency in creating written executive materials and mastery in verbal presentation to Executive audiences
  • Outstanding communication and influencing skills, with the ability connect with individuals throughout all levels of the organization and with external partners and vendors
  • Exceptional relationship management skills, including demonstrable experience managing through conflict and issue resolution with senior stakeholders
  • Proven ability to work within teams, manage cross-functional projects, influence executive-level strategic decision-making, and effectively translate technology / cyber risk insights to value-add risk mitigation solutions
  • Subject matter expert in one or more industry standard risk management frameworks (including ISO27001, COBIT, TOGAF and CRI for example), and an in-depth understanding of technology and cyber risk mitigation strategies
  • Deep knowledge of products within the coverage area (e.g, Markets, Banking), including a technical understanding of current and emerging trends as well as the ability to apply in-depth understanding of the business impacts of technical contributions
  • In-depth knowledge of technology and cyber risks and controls across various information system architecture and engineering domains including data protection, identity and access management, vulnerability management, network security, endpoint security, logging and monitoring, incident management, and third-party management
Job Responsibility
Job Responsibility
  • Manages internal projects on threat issues that support a variety of participants and stakeholders measuring the effectiveness and comprehensiveness of Citi’s first line defenses
  • Establishes and oversees the application of compliance and technology and cyber policies and procedures, technology and tools, and governance processes to provide credible challenge for minimizing losses from technology and cyber risks
  • Independently assesses technology and cyber risks and drive actions to address the root causes that persistently lead to operational risk losses by challenging both historical and proposed practices
  • Leads independent assurance activities to assess areas of concern including substantive and controls testing
  • Monitors, evaluates, and challenges Key Risks and associated Key Risk Indicators triggers and thresholds
  • Identifies potential risks associated with program/project delivery on a technical and detailed level
  • Leads various second line of defense technology and cyber assessments including risk assessments, control assessments, maturity assessments etc
  • Assesses technology and cyber risks associated with new initiatives and programs being proposed for implementation
  • Challenges the design, adequacy and strength of the control environment associated to technology and cyber and recommends actions to ensure the operational risk profile is in line with the technology and cyber risk appetite
  • Executes ad-hoc activities for the TCCORO organization, including but not limited to: researching and producing materials for presentations of deep dives into selected topics, coordinating deliverables related to audits and examinations, and maintaining associated data for executive reporting
What we offer
What we offer
  • Employer paid Defined Contribution Pension Plan contribution of 6% of employee’s pensionable earnings (PPE Program)
  • Employer paid Private Medical Care Package for employees and Private Medical Care Packages for certain family members available at preferential rates
  • Employer paid Life Insurance Program for employees and Life Insurance for certain family members available at preferential rates
  • Employee Assistance Program financed by Employer
  • Paid Parental Leave Program (maternity and paternity leave
  • statutory and 2 weeks additional paid paternity leave)
  • Sport Card for employees subsidised via Social Benefits Fund and Sport Cards for certain family members available at preferential rates
  • Additional benefits from Company’s Social Benefit Fund, in particular: Holidays Allowance, support for sport and cultural activities, team building events
  • Additional day off for volunteering
  • Cafeteria/ flex benefit
  • Fulltime
Read More
Arrow Right

InfoSec Vulnerability Senior Analyst / Analyst

Location
Location
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or Electronics & Communication Engineering or a related filed from a reputable university
  • Minimum 4 years of experience for the Senior Analyst and minimum of 2 years of experience for the Analyst in banking sector and information security field
  • Penetration Test and Vulnerability Management
  • Security controls, security baseline, technology best practices
  • Enterprise design and architecture
  • Has an integration knowledge across different security technologies and systems
  • Security control enforcement, measure of effectiveness and proposing compensating controls
  • CBE Digital channels regulations
Job Responsibility
Job Responsibility
  • Review on a weekly basis brand protect reports to ensure the bank's brand protection and verify the results with Business & Communication Teams in order to communicate with the concerned third party to take the corrective action
  • Validate discovery scan results against all the bank assets list to discover Live IPs that are not in the asset
  • Validate Wireless Scans results on quarterly basis and send detections (if any) to IT to close them and follow-up closure as per Information Security Policy
  • Validate Security Configuration Review on all Network Security Devices and report misconfiguration findings to IT for mitigation and follow-up till mitigation is completed
  • Validate the change management requests as received from the IT from Information Security perspective then take the suitable action
  • Analyze vulnerabilities to network, operating systems, applications, databases, and other information system components
  • Handle Asset Management including identification, verification and maintenance
  • Analyze and approve change requests that impact the organization on a daily basis
  • Follow up with Threat Intelligence for CBE alerts to proactively identify vulnerabilities that may impact the organization
  • Provides analysis of vulnerabilities to other teams to assist with overall vulnerability remediation efforts
Read More
Arrow Right

Delivery Senior Analyst

Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working within the Healthcare Provider domain, with a strong understanding of hospital workflows and operational support
  • Incident & Problem Management: Investigate, troubleshoot, and resolve L2/L3 incidents for COTS healthcare applications, ensuring timely restoration of services and adherence to SLAs
  • perform root cause analysis for recurring issues
  • Application Monitoring & Maintenance: Proactively monitor application health, interfaces, and batch jobs
  • perform regular maintenance, patch validation, and upgrades in coordination with vendors and internal teams
  • Change & Release Support: Assess, implement, and validate application changes (configurations, patches, upgrades) through controlled release processes, including impact analysis and rollback planning
  • Stakeholder & Vendor Coordination: Act as a liaison between business users, IT teams, and third-party vendors for issue resolution, enhancements, and escalations, particularly for regulated healthcare workflows
  • Compliance & Documentation: Maintain knowledge articles, runbooks, and audit documentation
  • ensure adherence to healthcare regulations (e.g., HIPAA), security standards, and data privacy requirements
  • Understanding of claims lifecycle, billing rules, payer edits, ERA/EOB reconciliation
Job Responsibility
Job Responsibility
  • Incident & Problem Management: Investigate, troubleshoot, and resolve L2/L3 incidents for COTS healthcare applications, ensuring timely restoration of services and adherence to SLAs
  • perform root cause analysis for recurring issues
  • Application Monitoring & Maintenance: Proactively monitor application health, interfaces, and batch jobs
  • perform regular maintenance, patch validation, and upgrades in coordination with vendors and internal teams
  • Change & Release Support: Assess, implement, and validate application changes (configurations, patches, upgrades) through controlled release processes, including impact analysis and rollback planning
  • Stakeholder & Vendor Coordination: Act as a liaison between business users, IT teams, and third-party vendors for issue resolution, enhancements, and escalations, particularly for regulated healthcare workflows
  • Compliance & Documentation: Maintain knowledge articles, runbooks, and audit documentation
  • ensure adherence to healthcare regulations (e.g., HIPAA), security standards, and data privacy requirements
Read More
Arrow Right

Digital Software Engineer Senior Analyst

Location
Location
India , Pune
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in product development/product management environment, with a strong background in developing single-page applications using Angular 19+
  • Strong analytical and quantitative skills
  • Data driven and results-oriented
  • Experience delivering with an agile methodology
  • Experience in affecting large culture change
  • Experience leading infrastructure programs
  • Skilled at working with third party service providers
  • Excellent written and oral communication skills
  • Knowledge of Node.js scripting, Webpack, esbuild, Unit Testing, Integration Testing, Modfed, and shell scripting
  • Experience with Angular Library package development
Job Responsibility
Job Responsibility
  • Accountable for executing and driving mid-size feature application design and development efforts to completion, serving as a development lead on medium-scale projects and supporting the execution of larger efforts, specifically focusing on complex Angular applications and component development
  • Proficient at operating with considerable autonomy and discretion as you will significantly influence the way an application is designed and developed by providing subject specific expertise and an advanced level of understanding of application programming principles, especially within the Angular framework and its ecosystem
  • Sought after due to ability to analyze and troubleshoot coding, application performance and design challenges, with a particular focus on optimizing Angular application performance, scalability, and maintainability
  • Capable of research in root cause of development and performance concerns as well as the resolution of defects in frontend Angular applications
  • Have a deep understanding of the technical requirements for the solutions being built, including Angular best practices, state management patterns (e.g., NgRx), and modular architecture
  • Understand engineering needs including those required to build, maintain, and operate the system through all phases of its life, with an emphasis on efficient Angular development workflows, build processes, and deployment strategies
  • Proficient in information modeling, data structures and algorithms, applied to frontend data handling and complex UI interactions within Angular
  • Understand maintenance characteristics, runtime properties and dependencies that exist in support of your system’s software
  • Demonstrate an advanced understanding of supported main system flows and possess a comprehensive understanding of how the system and others (i.e. architecture or infrastructure) collectively integrate to contribute towards achieving business objectives
  • Participate in design discussions as a Development Lead and as such will play the part of a key decision maker in driving design decisions, especially concerning Angular application architecture, component design, and integration patterns
  • Fulltime
Read More
Arrow Right

Delivery Senior Analyst

We are currently seeking a Delivery Senior Analyst to join our team in Noida, Ut...
Location
Location
India , Noida
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working within the Healthcare Provider domain, with a strong understanding of hospital workflows and operational support
  • Incident & Problem Management: Investigate, troubleshoot, and resolve L2/L3 incidents for COTS healthcare applications, ensuring timely restoration of services and adherence to SLAs
  • perform root cause analysis for recurring issues
  • Application Monitoring & Maintenance: Proactively monitor application health, interfaces, and batch jobs
  • perform regular maintenance, patch validation, and upgrades in coordination with vendors and internal teams
  • Change & Release Support: Assess, implement, and validate application changes (configurations, patches, upgrades) through controlled release processes, including impact analysis and rollback planning
  • Stakeholder & Vendor Coordination: Act as a liaison between business users, IT teams, and third-party vendors for issue resolution, enhancements, and escalations, particularly for regulated healthcare workflows
  • Compliance & Documentation: Maintain knowledge articles, runbooks, and audit documentation
  • ensure adherence to healthcare regulations (e.g., HIPAA), security standards, and data privacy requirements
  • Understanding of ambulatory clinical workflows (scheduling, charting, orders)
Job Responsibility
Job Responsibility
  • Investigate, troubleshoot, and resolve L2/L3 incidents for COTS healthcare applications
  • perform root cause analysis for recurring issues
  • Proactively monitor application health, interfaces, and batch jobs
  • perform regular maintenance, patch validation, and upgrades in coordination with vendors and internal teams
  • Assess, implement, and validate application changes through controlled release processes
  • Act as a liaison between business users, IT teams, and third-party vendors for issue resolution
  • Maintain knowledge articles, runbooks, and audit documentation
  • ensure adherence to healthcare regulations (e.g., HIPAA), security standards, and data privacy requirements
  • Fulltime
Read More
Arrow Right

Applications Support Senior Analyst – Assistant Vice President

We are seeking a highly experienced and strategic Asst. Vice President to lead c...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong attention to detail
  • Excellent project management skills
  • Strong Coordination skills - would need to work across various functions in Citi – Technology, Business, Legal, Compliance, procurement, Finance and respective Country offices
  • Strong oral, written and presentation skills
  • Strong financial, analytical and interpersonal skills and ability to articulate issues, formulate and present recommendations
  • Excellent influencing and negotiating skills
  • Self-drive, with a passion for change, acts with extreme sense of urgency and is passionate about delivering
  • Meticulous planner
  • MBA, M.Sc. Information Technology, B.E, MCA in Information Technology
Job Responsibility
Job Responsibility
  • Third-Party Management (TPM) Leadership: Provide comprehensive support to the SMBF Production Management business across all Third-Party Management (TPM) processes
  • Accountable for end-to-end management of all TPM activities across the entire supplier lifecycle: Planning, Due Diligence, Contracting, Ongoing Monitoring, and Termination
  • Act as a central coordinator among diverse stakeholders including Procurement, Legal, Compliance, Audit, Vendors, and Citi Business Units
  • Deliver periodic, insightful risk reports to the SMBF PS leadership team, detailing key third-party risks and proposed mitigation strategies
  • Oversee vendor risk assessments, audits, onboarding, document refreshers/reviews, and termination procedures, ensuring full compliance with regulatory and contractual requirements
  • Monitor, mitigate, and report regularly on Citi’s TPM controls and assessments pertaining to third-party relationships and vendor compliance with applicable legal, regulatory, and contractual obligations
  • Drive continuous process improvement initiatives to ensure accurate data collection, robust analysis, and effective planning for key TPM initiatives
  • Review and track vendor Continuity of Business (COB) plans and their annual test results
  • Application Onboarding Management: Leverage strong understanding of application transition best practices to provide solutions and track the onboarding of applications into SMBF Production Management
  • Implement, monitor, track, status report, and enable operational readiness for delivery teams during transitions
  • Fulltime
Read More
Arrow Right