Description

Summary:

The Analyst must be a motivated, meticulous and practical self-starter. This individual must maintain confidentiality, professionalism, a helpful attitude and be able to work with a wide variety of people from business owners to external stakeholders. A willingness to learn and adapt quickly, with a positive and upbeat mindset, is critical to success in this role.

Essential Duties and Responsibilities:

• Responsible for performing third-party risk assessments and analyzing the risk level of third-party engagements, both for onboarding new vendors and reassessments of existing vendors, as part of ongoing review and update cycles
• Partner with business units to ensure documentation is received and updated as needed
• Analyze due diligence documentation to arrive at risk level determinations against the Bank’s risk methodology and in accordance with regulatory and industry standards
• Assess the adequacy of due diligence documentation received from vendors as a level of quality control (QC) prior to passing on to subject matter experts (SMEs)
• Synthesize inputs from SMEs, vendor documentation, and business units to develop risk assessments and risk mitigation recommendations
• Author risk narratives to communicate what the key risks are for an engagement with a vendor that support why a certain risk level has been assigned
• Oversee the day-to-day risk mitigation, monitoring, analysis, and reporting as it relates to third-party relationships.
• Successfully completes vendor provided training
• Maintain certifications and keep current on regulatory requirements
• Serve as system administrator and onboarding back-up
• Perform other duties and responsibilities as assigned

Skills:

• Excellent verbal and written communication skills
• Must have strong computer skills and advanced knowledge of Microsoft Office applications
• Ability to quickly learn industry and job specific software
• Ability to independently complete assigned tasks in timeframe requested
• Strong critical thinking skills with the ability to make decisions under pressure
• Generalized quantitative and analytical skills
• General understanding of SOC reports, BCP/DR information, inherent risk and entity level controls
• Ability to prioritize requests and communicate effectively in a deadline driven environment
• Advanced organizational skills
• Understands fundamental risk theories, principles, and concepts (preferably in the context of third-party risk for financial institutions)
• Desires to seek job specific advanced training and certifications
• Ability to build strong partnerships with internal and external stakeholders
• Strong interpersonal and time management skills

Education/Experience:

• Bachelor’s degree and 2+ years of experience in TPRM, Compliance, Information Security, Quality Assurance/Control, Audit or other related Risk Management function
• Project Management experience considered a plus
• Banking experience preferred

FirstBank does not accept unsolicited resumes from agencies and staffing firms. Recruitment agencies and consultants may not submit resumes directly to managers. FirstBank will not pay fees to any third-party agency or company that does not have a signed agreement as an approved vendor. FirstBank in an Equal Opportunity Employer, including disability.