Enterprise Third Party Risk Analyst (REMOTE)

Job Summary

This role serves as an analyst with experience applying broad audit, risk management or consulting techniques. TPRM is a critical function needed to both ensure value creation and management of financial, information security, legal, operational, regulatory/contractual, reputation and strategic risks. The role helps ensure the GuideWell enterprise employs a responsive, targeted enterprise-wide framework to evaluate, respond to, and monitor third party risk. The incumbent is an individual contributor who assists the TPRM team in the performance of its goals and objectives.

What You Will Be Doing:

• The essential functions listed represent the major duties of this role, additional duties may be assigned.
• Supports TPRM team as part of executing the third-party risk management program, including ensuring policies and procedures are followed to enable effective oversight of the overall Enterprise Third-party Risk Management program.
• Interacts with third-parties, as needed, to perform reviews relating to the following control and process areas: information technology/security, operational, business resiliency, and regulatory/contractual compliance.
• Analyzes third-party risk as part of due diligence reviews for potential business partners to determine the adequacy of financial, operational and IT internal controls.
• Able to develop understanding of applicable laws, regulations, other government mandates, professional standards, conformance to industry best practices and relevance to the Company's business and IT and Information Security environments.
• Identifies and escalates complexities associated with coordination across multiple areas, conflicting efforts, and limited resources.

What You Must Have:

4+ years related work experience OR 2+ years of relevant Big Four work experience may be considered

Related Bachelor's degree or additional related equivalent work experience Accounting, Finance, Risk Management, Accounting Information Systems, Computer Information Systems or related field

Awareness of information security concepts, practices, and tools. Awareness of health care industry practices and applicable regulatory requirements. Proven ability to maintain confidentiality regarding sensitive information. Strong business-focused problem-solving skills. Excellent interpersonal skills with a demonstrated ability to establish relationships with team members.

What We Would Prefer:

Any of the following: Certified Information Systems Auditor (CISA) or Certified Internal Auditor (CIA) or Certified Third-Party Risk Management Professional (C3PRMP) or Certified Third-Party Risk Professional (CTPRP) Experience at a regional or international accounting and/or consulting firm. Familiarity with a Governance, Risk and Compliance suite of tools, preferably RSA Archer Third-party Risk Management use case.

General Physical Demands

Sedentary work: Exerting up to 10 pounds of force occasionally to move objects. Jobs are sedentary if traversing activities are required only occasionally.

Physical/Environmental Activities

Must be able to travel to multiple locations for work (i.e. travel to attend meetings, events, conferences). Occasionally

We are an Equal Opportunity/Protected Veteran/Disabled Employer committed to creating a diverse, inclusive and equitable culture for our employees and communities.