Vendor Risk Management Analyst

• Cincinnati
• Columbus

The Vendor Risk Management Analyst supports the Vendor Relations Manager in executing the Vendor Risk Management (VRM) Program. This includes providing assistance for the processes of measuring, monitoring, and controlling vendor risk and pre-contract due diligence.

1)      Support vendor onboarding and ongoing due diligence by partnering with internal stakeholders to complete required reviews; collecting, evaluating, and documenting attestations and artifacts to validate vendors meet security, financial, compliance, and operational standards; performing risk assessments aligned to regulatory and operational frameworks. (25%)

2)      Assist in maintaining accurate vendor file information, and help prepare reports for executive leadership, committees, or auditors. Ensure proper policies, procedures, risk mitigation activities, and operating controls are followed. Reports gaps in policies, procedures, and operating controls to leadership to ensure member impact and risk is mitigated. (25%)

3)      Assist in facilitation of other VRM Program activities as needed. This includes issue management administration, processing risk acceptance documentation, and maintaining the schedule of VRM activities. (25%)

4)      Provide support for the maintenance of the vendor inventory, related performance scorecards, and vendor concentration risk. (10%)

5)      Support technology/systems that enable all VRM activities by overseeing user access administration, configuration, and maintenance. This includes all current and future Vendor Management software programs. (10%)

6)      Assist in other ad hoc VRM activities as needed. (5%)

The Vendor Risk Management Analyst must have a thorough knowledge of credit union products, policies, operations, and procedures as each relates to risk management.

The following is also required: 

This will require at least 1 day per month at HQ in Beavercreek and as requested by leadership.

1)      A Bachelor’s Degree in Business, Accounting/Finance, or related discipline, is required, and 2-5 years of experience in Risk Management, Audit, Internal Audit, Finance, or related discipline is preferred.

2)      Previous knowledge of Governance Risk and Compliance (GRC) platforms, regulatory standards, and industry best practices preferred.

3)      Previous experience in credit union/bank/financial institution environments preferred.

4)      Previous experience performing risk assessments and documenting and testing internal controls preferred.

5)      Experience in Microsoft Office (Word, Excel, PowerPoint, etc.).

6)      Excellent analytical, critical thinking, diagnostic, and troubleshooting skills.

7)      Ability to monitor and prioritize multiple activities.

8)      Ability to present complex concepts to a wide audience.

9)      Project management skills.

10)  Ability to communicate with employees at all levels of the organization.

11)  Strong interpersonal, verbal, technical, and written communication skills.