Regional Vendor Risk Governance Manager

**_We are a _**_leading financial services provider committed to making decisions easier and lives better for our customers and _**_colleagues around the world. From our environmental initiatives to our community investments, we lead with values throughout our business. _**_To help us stand out, we help you step up, because when colleagues are healthy, respected and meaningfully challenged, we all thrive. Discover how you can grow your career, make impact and drive real change with our Winning Team today. _**

**Working Arrangement**

Hybrid

**The Opportunity**

The Senior Manager, Vendor Governance reports to the Sr Director, Vendor Governance Management in North America (Business Unit) and is responsible for ensuring effective risk management of the Company’s vendors globally.

The incumbent will have a deep understanding of relevant risk management principles and best practices. The individual is accountable for driving and monitoring compliance to the Company’s Outsourcing and Third-Party Risk Management Policy. As a critical element of the first line of defense, the manager will monitor and manage vendor risk, including conducting risk stratifications and developing risk mitigation plans for vendors deemed to be highest or heightened risk.

**Responsibilities**:

- Ensure Pre-Screening Questionnaires and Inherent risk questionnaires are completed on a timely manner and required actions are taken.
- Complete pre-contract due diligence of highest or heightened risk vendors. Assess impact of risk assessments on vendor evaluation and selection.
- Complete pre-contract clause review of highest or heightened risk vendors. Assess if any mandatory risk clauses are required, and action are taken to address the risk.
- Participate in the Global Vendor Management Program, by ensuring that the business has provided scorecards and performance reviews; provide guidance and expertise to business
- Review any concerns in the score cards or performance reviews with the business, ensure actions are taken to mitigate the risks
- Prepare and complete annual risk governance for highest risk vendors, Appendices as per established policy, etc.
- Participate in investigation and mitigation of data breaches for highest and heightened vendors
- Reassess the risks associated with highest and heightened risk vendors prior to the renewal of contract agreements.
- Proactively monitor all vendors for emerging risks and provide business partners with visibility
- Ensure completion and compliance for all activities related to outsourcing regulatory governance.
- Monitor risk incidents and remediation resolution including development and execution of corrective action plans and ensure follow-on reporting and monitoring. Evaluate and process complaints, appeals and grievances. Collaborate with the business to develop disaster recovery and business continuity plans for highest risk vendors.
- Escalate vendor risk issues and compliance problems that have not been adequately addressed.
- Engage Information Risk Management and other risk Subject Matter Experts such as Legal, Compliance, Operational Risk Management, Investigative Services and Tax, as applicable.
- Perform data aggregation, data analytics and reporting activities. Provide and maintain vendor risk reporting mechanisms, and track and report outcomes from vendor management activities. Collect, organize, and distribute reports and documents and recommend enhancements to reporting and audit tools.
- Aggregate key risk metrics and performance metrics and provide to the Strategic Procurement Office for reporting to the Enterprise Risk Committee, Operational Risk Committee and Board Risk Committee
- Stay informed about the latest developments in the vendor risk management field.
- Assist and manage any adhoc projects, as requested

**Who we are looking for**
- 5+ years’ experience in vendor management or third-party risk, Operational or Enterprise Risk, Internal Audit or Corporate Procurement or Contracts
- 5+ years in a professional environment
- Graduate degree
- Problem analyzer and decision maker - effectively searches and uses industry and market insights; able to assimilate, synthesize, and present complex information in a value-added form; attention to detail; evaluates feasibility and practicality of ideas and options; takes ownership and makes informed and timely decisions.
- Skilled communicator - communicates complexity with clarity and ease; articulates a clear view of concepts, ideas, and objectives; able to interface with different stakeholders at all levels; represents the company externally with confidence; skilled in both oral and written communication.
- Proven innovator - expert in identifying and implementing change management and business process transformation; consistently challenges the status quo; takes balanced risks to promote growth of ideas; comfortable in high pressure environments.
- Knowledge of risk and control practices, procedures and princip