Serve as a key contributor to the development and maturation of the Credit Union’s Third-Party Risk Management (TPRM) program, ensuring alignment with strategic goals and regulatory requirements. Assess, monitor, and mitigate third-party risks while supporting comprehensive due diligence and managing risk frameworks. Collaborate with internal teams—including Office of General Counsel, IT, and Procurement—to address and resolve risk-related issues. Track and manage remediation efforts, analyze TPRM KPIs and KRIs to provide actionable insights, and support procurement reporting and analytics to enhance program effectiveness.
• Regardless of seniority or role, uphold UNFCU’s mission, core values, and guiding principles by providing an exceptional service experience to colleagues and members alike through consistent demonstration of our service excellence behaviors.
• Support the TPRM framework to ensure alignment with organizational objectives and regulatory requirements, with primary responsibility for tracking of end to end third party risk assessment process, which includes risk reviews, documenting findings in the risk register, coordinating follow-ups with the third parties and the business unit owners, and facilitating the collaboration and documentation of the related risk acceptance with the business unit owner.
• Assist in maintaining TPRM & Vendor Management processes, ensuring oversight, tracking, and documentation are in full compliance with TPRM policy.
• Collaborate with risk domain SMEs (i.e., Third party risk assessor, Procurement team, Office of General Counsel, Information Security, Enterprise Risk Management, Compliance etc.) to align various risks, third party security events, and business unit goals with UNFCU risk appetite and support the VP TPRM with any escalations.
• Serve as a designated alternate to the TPRM analyst in the vendor management review and sign off in the Vendor Management tool.
• Partner with TPRM analyst to engage in TPRM policy compliance discussions with the business unit owners.
• Partner with Procurement Manager on Quarterly Third-Party Performance survey discussions with the business unit owner and informing VP TPRM, as necessary.
• Support the Procurement team in Contract Management activities including the development and execution of the Contract Management Program.
• Serve as the primary liaison between TPRM and Business Continuity teams to ensure third-party business continuity risks are identified, assessed, and addressed.
• Ensure third-party continuity risks are integrated into UNFCU’s resilience planning and remediation efforts.
• Support the VP TPRM and the Procurement Manager as needed in TPRM and Procurement KPI/KRI Reporting & Analytics.
• Support the planning, execution, and documentation of Third-Party Risk assessments completed by the UNFCU third party risk assessor, across business units.
• Lead the TPRM Issue Management process. Maintain, track, and report all third-party issues & events in collaboration with UNFCU Incident Management team.
• Collaborate with business unit owners to communicate findings, develop risk mitigation strategies, and provide insights that support the TPRM Framework.
• Support ongoing monitoring and risk-remediation activities by assisting in tracking vendor exceptions and issues, updating risk profiles, and documenting remediation steps.
• Lead, execute & document the third-party termination process in collaboration with the business unit owner, Office of General Counsel, Information security teams and the third party.
• Partner with VP TPRM to proactively identify and implement opportunities to enhance TPRM processes, reporting mechanisms, and the overall control environment driving efficiency and effectiveness within key focus areas.
• Stay informed with industry updates, new regulations, and best practices in risk management to ensure the ongoing effectiveness of the TPRM Framework and its alignment with regulatory expectations and industry benchmarks.
• Perform additional responsibilities and ad-hoc projects as required to support the TPRM & Procurement Department.
• Ensure compliance with federal and state laws and regulations and UNFCU’s Code of Ethics & Business Conduct.
• Bachelor’s degree or equivalent
• 4 years TPRM experience with Procurement expertise.
• Advanced Microsoft Office proficiency; skilled in data visualization and reporting tools (Power BI, Tableau) to generate actionable insights.
• Skilled in assessing third-party risks, managing security control evaluations, and implementing risk mitigation strategies.
• Knowledgeable in data privacy and enterprise/member data management, collaborating with business units and key stakeholders including Procurement, Office of General Counsel, and Information Security.
• Strong verbal, written, and interpersonal skills; able to present metrics and reports to leadership while working effectively both independently and in team settings.
• Detail-oriented and proactive, skilled at managing multiple projects under pressure while prioritizing effectively.
• Experienced in challenging business unit decisions using TPRM principles, data classification, and regulatory guidance, and driving process improvements and operational efficiencies.
• Highly motivated and results-oriented
• Excellent communication skills
• Experience in creating and presenting data visualization
• Expert in Third Party Risk Management practices
Software Powered by iCIMS
www.icims.com