Vendor Risk Analyst

We are seeking a detail-oriented and analytical Vendor Risk Management Analyst to join our team. The Vendor Risk Management Analyst will be responsible for assessing, monitoring, and mitigating risks associated with third-party vendors to ensure compliance with organizational policies, industry standards, and regulatory requirements. This role plays a critical part in safeguarding the organization’s operations, data, and reputation by identifying potential risks and implementing effective vendor risk management strategies.

Key Responsibilities

1. Conduct comprehensive risk assessments of third-party vendors, including evaluating their security practices, financial stability, and compliance with regulatory requirements.
2. Maintain a vendor risk management framework, including policies, procedures, and tools to assess and monitor vendor risks. 
3. Complete onsite or remote audits of vendors to ensure that controls work as expected and procedures are followed correctly. 
4. Monitor vendor performance risk levels on an ongoing basis, security posture, and ongoing compliance to ensure continued alignment with organizational standards and risk levels and identifying and addressing any changes in risk profiles or compliance issues.
5. Collaborate with internal stakeholders, such as procurement, legal, IT, and compliance teams, to ensure vendor contracts include appropriate risk mitigation measures.
6. Prepare detailed reports and presentations on vendor risk assessments, findings, and recommendations for senior management and other stakeholders.
7. Stay up to date with industry trends, regulatory changes, and best practices in vendor risk management to continuously improve the organization’s risk management processes.
8. Support the development and delivery of training programs to educate internal teams on vendor risk management policies and procedures.

Key Competencies (knowledge and abilities required to perform a role effectively, comprising skills, competencies and behaviors)

• Strong analytical and problem-solving skills with the ability to assess complex vendor risk scenarios.
• Excellent communication and interpersonal skills to collaborate effectively with internal and external stakeholders.
• Knowledge of regulatory requirements and industry standards related to vendor risk management (e.g., GDPR, ISO 27001, SOC 2).
• Proficiency in using vendor risk management tools and software.
• Strong organizational skills and attention to detail to manage multiple vendor assessments simultaneously.
• Ability to work independently and make informed decisions in a fast-paced environment.
• High ethical standards and a commitment to maintaining confidentiality and integrity.

Accreditations (Education, Certifications and/or Experience)

• Bachelor’s degree in Business Administration, Risk Management, Information Security, or a related field.
• 0-4 years of experience in vendor risk management, third-party risk assessment, or a related role.
• Relevant certifications such as Certified Third Party Risk Professional (CTPRP), Certified Information Systems Auditor (CISA), or Certified Risk and Information Systems Control (CRISC) are preferred.
• Experience with risk management frameworks and tools is a plus.

OUR BENEFITS As a Chubb corporate employee, you have access to one of the most comprehensive benefit plans in the business, designed to meet your needs and help you reach your financial goals. More details can be found here. Chubb is committed to supporting its employees with a comprehensive compensation package that is appropriate in the market where they work. Below are several of the many benefits we offer our employees: 

• Health insurance
• Dental insurance
• Tuition reimbursement
• A company-match 401(k) plan
• Disability insurance
• Life insurance
• Employee referral bonuses

ABOUT COMBINED INSURANCE

Combined Insurance Company of America is a Chubb company and a leading provider of supplemental accident, health, disability, and life insurance products in North America. Headquartered in Chicago, with satellite office in Columbia, SC, Combined is celebrating over 100 years in business. We are committed to making the world of supplemental insurance easy to access and understand. The company has an A+ rating by the Better Business Bureau and an A + (Superior) financial strength rating by A.M. Best. We are ranked by VIQTORY as the number one Military Friendly® Employer in 2023 (over $1 billion revenue category), marking Combined's twelfth consecutive year on the Top 10 list. We pride ourselves on approaching all situations with a Positive Mental Attitude (PMA) and encouraging collaboration.

ABOUT CHUBB Chubb is a world leader in insurance. With operations in 54 countries, Chubb provides commercial and personal property and casualty insurance, personal accident and supplemental health insurance, reinsurance, and life insurance to a diverse group of clients. The company is distinguished by its extensive product and service offerings, broad distribution capabilities, exceptional financial strength, underwriting excellence, superior claims handling expertise and local operations globally.
Connect with us on Twitter, Facebook, LinkedIn, and Instagram
#combined