Third-Party Risk Management Advisor

The Role

Fusion is seeking a Third-Party Risk Management Advisor to join our Professional Services team. In this role, the TPRM Advisory provides expertise and best practice guidance in managing and mitigating risks associated with third-party relationships. The role's primary focus will be providing thought leadership and best practices related to the security, compliance, and overall resilience of the Client's third-party network. This person will build trusted relationships within our client community and provide a subject matter and technology approach tied to our TPRM offerings. In this role, you will:

• Apply strategic and critical thinking to develop recommendations and risk management strategies that address client challenges in TPRM including governance, roles and responsibilities, risk and control self-assessments (RCSAs), risk mitigation efforts, TPRM assessment lifecycle, and operational resilience capabilities
• Support the delivery process for climate risk materiality assessments, framework alignment and submission, and gap analysis and assessments
• Suggest opportunities to the Client to introduce automation and innovative methodologies to enhance the efficiency of their operational risk assessment framework
• Engage in continual learning to stay current on the requirements of various operational risks / TPRM / climate / ESG standards, legislation, and reporting frameworks and emerging risks; communicate that information both internally to Clients
• Provide guidance to Clients regarding risk evaluation criteria, control procedures, and risk mitigation strategies
• Deliver education to Client stakeholders and internal colleagues on third-party risk management principles and practices

Requirements

• Bachelor's degree in Risk Management, Business Administration, or a related field; relevant certifications (e.g., CRISC, CTPRP, CTPRM) are a plus
• Minimum 5-7 years of direct experience in TPRM or vendor management as a practitioner, consultant, technologist, product manager or similar role within a highly regulated industry
• In-depth knowledge of third-party risk management frameworks, standards, and regulations (e.g., ISO 27001, NIST, GDPR)
• Effective communication, interpersonal, and presentation skills to engage with stakeholders at all levels of an organization
• Strong bias to action
• Innovative thinker and collaborative partner who is highly organized
• Well-developed problem-solving skills with ability to identify and drive execution of potential solutions
• Ability to work independently and as part of a team, prioritize tasks, and meet deadlines in a high-growth environment
• Demonstrated ability to challenge concepts and plans in a professional, respectful manner
• Curious nature with a passion for continual learning and quickly building product knowledge
• Proficient in using third-party risk management platforms and tools
• Salesforce.com or Force.com experience preferred but not required
• Operational Resilience program knowledge preferred

Disclaimers

This position may be performed remotely anywhere within the United States except for the states of New York, California, and Colorado.

Fusion Risk Management, Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, disability religion, sex, sexual orientation, gender identity or national origin. Nothing in this job posting should be construed as an offer or guarantee of employment.