Third Party Risk Analyst

Third Party Risk Analyst<\/b><\/b><\/div><\/div>Support critical third -party risk and vendor governance activities within a fast -paced insurance environment. This hybrid opportunity offers exposure to compliance, audit, supplier monitoring, and emerging risk initiatives while collaborating with cross -functional teams. Enjoy a flexible work model with on -site collaboration days on Tuesday, Wednesday, and Thursday in Toronto.<\/div><\/div>What is in it for you:<\/b><\/div><\/div>• Salaried: $40 -46 per hour.<\/div>• Incorporated Business Rate: $46 -53 per hour.<\/div>• 6 -month contract with the potential for permanent employment.<\/div>• Full -time position: 37.50 hours per week.<\/div>• Day schedule, 37.50 hours per week.<\/div>• Hybrid: 3 days/week in Toronto office.<\/div><\/div>Responsibilities: <\/b><\/div><\/div>• Conduct inherent risk assessments to evaluate third -party risk based on service criticality, data sensitivity, and regulatory impact.<\/div>• Perform financial due diligence, including analysis of supplier financial health and credit ratings.<\/div>• Conduct adverse and negative media reviews to identify reputational, legal, or operational risks.<\/div>• Assess supplier risk posture and identify areas requiring additional due diligence or mitigation.<\/div>• Support contract owners and business stakeholders through training and guidance on third -party risk management practices.<\/div>• Support ongoing supplier monitoring and governance activities across the vendor lifecycle.<\/div>• Conduct ongoing monitoring activities to ensure suppliers maintain effective control environments.<\/div>• Support governance activities, including periodic supplier reviews and documentation of risk posture.<\/div>• Track and manage issues, risk findings, and policy exceptions while ensuring timely resolution.<\/div>• Monitor supplier risk indicators, including financial performance, adverse media, and emerging global risks.<\/div>• Ensure adherence to internal third -party risk management policies and standards.<\/div>• Support regulatory compliance activities, including alignment with OSFI B -10 or equivalent guidelines.<\/div>• Assist with internal and external audits, including documentation and remediation tracking.<\/div>• Maintain accurate and complete risk assessment documentation and audit trails.<\/div>• Partner with business units, procurement teams, and risk functions to support vendor oversight activities.<\/div>• Communicate risk assessment outcomes and recommendations clearly to stakeholders.<\/div>• Contribute to the enhancement of third -party risk management processes, tools, frameworks, dashboards, and metrics.<\/div>• Stay informed on emerging risks, regulatory changes, and industry best practices.<\/div><\/div>What you will need to succeed:<\/b><\/b><\/div><\/div>• Degree in a related field or equivalent combination of education and experience.<\/div>• 2–5 years of experience in Third -Party Risk Management, Vendor Risk, Compliance, Audit, or Operational Risk.<\/div>• Experience conducting inherent risk assessments and due diligence activities.<\/div>• Experience performing financial reviews and adverse media reviews.<\/div>• Strong understanding of the vendor risk lifecycle, including onboarding, monitoring, and governance activities.<\/div>• Knowledge of risk -based assessment methodologies.<\/div>• Familiarity with regulatory guidelines such as OSFI B -10 is considered an asset.<\/div>• Experience reviewing SOC reports, ISO certifications, or equivalent control documentation is preferred.<\/div>• Experience using TPRM tools or platforms such as Archer, Ivalua, or ProcessUnity is considered an asset.<\/div>• Understanding of cybersecurity and information security risk concepts.<\/div>• Exposure to emerging technology risks such as AI, cloud, and global risk landscape considerations.<\/div>• Strong analytical, audit, compliance, and risk assessment skills.<\/div>• Excellent stakeholder communication and relationship management abilities.<\/div>• Strong attention to detail and ability to assess control environments.<\/div>• Training and facilitation skills.<\/div><\/div>Why Recruit Action?<\/b><\/div><\/div>Recruit Action (agency permit: AP -2504511) provides recruitment services through quality support and a personalized approach. As part of the screening process, some applications may be reviewed using artificial intelligence tools. Only candidates who meet the hiring criteria will be contacted.<\/div><\/span>