Citi Group VP Global Third Party Risk Oversight Officer Hybrid 

United States, Florida, Tampa 

677906283

Job Description:

As a member of the broader Operational Resilience and Third Party Risk team within Operational Risk Management, the role applicant will be a proactive and pragmatic risk manager who understands the risk of supply chain, third party, and outsourcing exposure and can expertly articulate views, provide challenge and risk opinions at various levels in the organization. Excellent communication skills are required to guide, influence and build relationships across all line of defense. The role also requires attention to detail and comprehensive experience in all aspects of Third Party Risk Management and the Third Party Lifecycle.

The role is to serve as an Independent Third Party Risk leader focused on oversight of Citi’s Global Third Party Risk Management Control/ Due Diligence/ Risk Assessment framework. Primary responsibilties include:

• Implement program to challenge effectiveness of Citi’s Third Party Risk Control and Due Diligence program at the Enterprise level
• Oversee challenge of Third Party Risk Due Diligence assessment considerations and tiering, assessment execution
• Oversee challenge of application/execution of assessments by type of vendor service (SaaS, Business Process Outsourcing, etc.), both for new and existing services (on-going monitoring)
• Oversee challenge of enterprise processes for accepting risk associated with adverse assessment outcomes
• Partner with relevant ORM SMEs to challenge methodology and design of specific assessment (TPISA, Cob, Fraud, etc.)
• Challenge adoption of evolving risks (Cloud, Environmental/Social Risks, etc.) within the assessment program

Develop methodology for assigning aggregate control design and effectiveness rating across various assessment based on outcomes

Key Responsibilities:

Process:

• Conduct and participate in various end to end third party risk management reviews across the global portfolio
• Support development of third party risk related strategy, policy, projects and analytics
• Support Third Party thematic and product oversight reviews as required
• Support Third Party Risk Oversight tools development
• Ensure Risk Governance framework operates efficiently, and operational losses are operating within the defined Risk Appetite parameters
• Develop, implement, and analyze MIS reports to identify areas of excessive risk and to ensure that mitigation efforts are having the desired effect(s).
• Analyzes operational risk data (typically losses, metrics or assessment results) to identify areas of excessive risk and to ensure that mitigation efforts are having the desired effect(s).
• Guide and assist in the implementation of sound and effective third party risk processes across the enterprise, sectors, and regions
• Provide counsel on third party related risk issues, ensuring an independent review of policy compliance.
• SME challenge in Third Party risk-related scenarios
• Collaborate with other horizontal Risk SMEs (Compliance Risk, Credit Risk, Fraud, Technology, etc.) as needed to manage risks across the Third Party Risk Lifecycle
• Aid in the development of risk analytics and reporting related to Third Party lifecycle and concentration risk
• Guide and assist in the implementation of sound and effective Third Party Risk processes and monitoring across all sectors and regions
• Provide support and advise on Third Party Risk management related policies, ensuring an independent review of policy compliance.
• Facilitate and disseminate best practices across all Lines of Business

People:

• Assist Third Party Risk Oversight management and their teams to manage staff including training and career development plans and to ensure high morale among prevention, detection, and recovery staff
• Champion third party risk awareness and best practice sharing with various stakeholders and aid in the development of third party risk management training modules.
• Raise the level of third party risk awareness among global, sector, and country third party risk officers and other related staff.

Knowledge/Experience:

• 5-10 years of in Operational Risk Management, Third Party Risk Oversight, Information Security, or Business Continuity/Operational Resiliency
• Skilfull understanding of Third Party Risk management lifecycle and risk assessment processes
• Thought leadership and clarity in presenting ideas to senior management.
• Proven technical knowledge of Third Party Risk principles and processes, to include up to date knowledge of current technology solutions, including Cloud and hybrid third party solutions

• Knowledge of regulatory requirements underpinning the Third Party Risk Management and Outsourcing Lifecycle (OCC/FRB/EBA/PRA/MAS, etc)
• Demonstrated analytical skills with follow-up and problem-solving capability.

Management:

• Ability to work effectively with individuals with diverse backgrounds and positions
• Ability to work independently
• Ability to communicate complex analytical ideas effectively and persuasively
• Ability to influence and establish relationships with key stakeholders from remote locations
• Self-starting with the ability to multitask and prioritize

Functional Background:

• Project management
• Understanding of Financial Servcies systems and processes
• Policy formulation

Technical Skills:

• Deep understanding of operational, third party and technology risk management and assessment
• Thorough understanding of global thrid party risk practices and industry trends
• Understanding and management of various drivers and metrics and the impact on Citi’s Third Party Risk framework

Competencies:

• Strong business drive and ability to mobilize organizational commitment and support for global and regional programs
• Regulatory Risk and Compliance
• Leadership skills and ability to deliver results, working with cross-functional and virtual teams
• Good business understanding and working knowledge of Risk, Operations and Technology

Education:

• Undergrad in Business Administration, Finance, Risk, or any other computationally intensive discipline.
• Graduate degreee or TP certification is a plus.

Anticipated Posting Close Date:

View the " " poster. View the .

View the .

View the