Search Results

< Back Vendor Management Consultant Apply Now Des Moines, IA Job Type Contract Organization Wells Fargo Application Deadline December 16, 2024 About the Role Location: Charlotte, NC Des Moines, IA Phoenix, AZ Duration: 12 months Work Engagement: W2 Benefits on offer for this contract position: Health Insurance, Life insurance, 401K and Voluntary Benefits Summary: In this contingent resource assignment, you may: Consult on or participate in moderately complex initiatives and deliverables within Technology Business Services Consulting and contribute to large-scale planning related to Technology Business Services Consulting deliverables. Review and analyze moderately complex Technology Business Services Consulting challenges that require an in-depth evaluation of variable factors. Contribute to the resolution of moderately complex issues and consult with others to meet Technology Business Services Consulting deliverables while leveraging solid understanding of the function, policies, procedures, and compliance requirements. Collaborate with client personnel in Technology Business Services Consulting. Requirements Qualifications: Applicants must be authorized to work for ANY employer in the U.S. This position is not eligible for visa sponsorship. Prior experience with third party vendors. Strong understanding of budgets. Previous banking/financial services experience. Excellent communication skills both written and verbal. Good presentation skills. Posses a creative mindset. About the Company Wells Fargo & Company (NYSE: WFC) is a diversified, community-based financial services company with approximately $1.9 trillion in assets. Wells Fargo’s vision is to satisfy our customers’ financial needs and help them succeed financially. Founded in 1852 and headquartered in San Francisco, Wells Fargo provides banking, investment and mortgage products and services, as well as consumer and commercial finance, through more than 7,300 locations, 12,000 ATMs, the internet (wellsfargo.com) and mobile banking, and has offices in over 40 countries and territories to support customers who conduct business in the global economy. With approximately 250,000 team members, Wells Fargo serves one in three households in the United States. Wells Fargo & Company was ranked No. 41 on Fortune’s 2022 rankings of America’s largest corporations. News, insights and perspectives from Wells Fargo are also available at Wells Fargo Stories. Apply Now < Prevous Next >

< Back Vendor Management Contracts & Systems Generalist Apply Now Remote Job Type Full Time Organization Tower Hill Insurance Group Application Deadline December 20, 2024 About the Role Tower Hill Insurance Group has an exciting opportunity for a talented Vendor Management Contracts & Systems Generalist who enjoys intellectual challenges and is seeking a rewarding career with a company that is experiencing growth. Not only is Tower Hill Insurance one of Florida's most trusted names in homeowners insurance, but it offers great opportunities for career advancement and personal growth, along with very competitive benefits and rewards. We are growing at a consistent pace and seek professional individuals with drive, team mentality, who want to make an impact, and are committed to a long-term career in the insurance industry. The Vendor Management Contracts and Systems Generalist is responsible for managing relationships with our vendors, ensuring timely delivery of goods and services, negotiating contracts, maintaining accurate records, and proactive maintenance of vendor systems and process. This position plays a crucial role in supporting the department's operational activities. This role ensures smooth and efficient operations through effective system maintenance management, adherence to posted guidelines, and maintenance of essential tools. ESSENTIAL DUTIES AND RESPONSIBILITIES Identify potential vendors based on business needs and industry standards. Lead the onboarding process for new vendors, ensuring compliance with company policies and standards. Negotiate contracts with vendors to secure favorable terms and conditions. Regularly review and update existing contracts to align with evolving business requirements. Provide financial analysis and audit work in support of one or more service contracts. Identify, catalogue, and monitor a contract’s financial requirements and commitments. Establish key performance indicators (KPIs) for vendors and monitor performance against benchmarks. Monitor and analyze vendor performance to ensure compliance with service level agreements (SLAs) and drive continuous improvement. Cultivate strong, positive relationships with vendors and business partners. Serve as the main point of contact for vendor-related matters. Identify and assess potential risks associated with vendor relationships and develop risk mitigation strategies. Evaluate pricing structures and negotiate cost-effective agreements while collaborating with vendors to identify cost-saving opportunities. Oversee the daily administration and operation of the Source-to-Pay (S2P) system, ensuring it supports business processes efficiently. Collaborate with cross-functional teams to implement system configurations, updates, and enhancements. Troubleshoot and resolve system-related issues in coordination with IT and external vendors. Conduct regular audits to ensure system data integrity and accuracy. Develop and maintain documentation of system processes, configurations, and troubleshooting guidelines. Provide training and support to staff on S2P system functionalities and best practices. Monitor system performance, identifying opportunities for improvement, automation, and increased efficiency. Stay informed on innovations in S2P systems and recommend upgrades or process enhancements as necessary. Develop, update, and maintain vendor-related guidelines, policies, and procedures, ensuring they are accessible and communicated effectively. Maintain a repository of resources, such as templates, checklists, and FAQs, to support department operations and improve efficiency. Stay current on industry trends and best practices to bring innovation and value to the organization’s vendor management and procurement functions. Requirements Requirements To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. EDUCATION Bachelor’s Degree in Business, Finance, Supply Chain Management or related field required. Master’s Degree preferred. EXPERIENCE Minimum of three (3) to five (5) years of relevant experience in vendor management, contract negotiation, and relationship building at a strategic level required. Previous experience in insurance or finance industry preferred. Familiarity with industry best practices and emerging trends in vendor management a plus. CERTIFICATIONS N/A LICENSES N/A Preferred work arrangement hybrid on-site, but remote candidates will be considered based on qualifications and experience. About the Company Founded in 1972, Tower Hill Insurance is a leader among residential and commercial property insurers. We are headquartered in Gainesville, Florida, and have offices in Lexington (KY), Palm Beach Gardens (FL), Dallas (TX), and Cincinnati (OH). Through our network of insurance agencies, Tower Hill offers homeowners, mobile homeowners, rental property, condominium, renters, commercial, and flood coverage. Our purpose is to deliver peace of mind and fulfill our promise to provide excellent service with compassion and empathy. We are a family-run company, and our employees strive every day to uphold our values of commitment, service excellence, integrity, teamwork, and profitable growth. Our affiliated insurance companies include the following carriers: Tower Hill Insurance Exchange, Tower Hill Prime, and Tower Hill Specialty. Apply Now < Prevous Next >

< Back Senior Implementation Project Manager Apply Now US Remote Job Type Full TIme Organization ProcessUnity Application Deadline December 7, 2024 About the Role What You’ll Do: Lead and oversee multiple high-profile client implementations and internal projects, ensuring timely and successful delivery of complex initiatives Serve as the primary point of contact for clients during the implementation process, cultivating strong relationships with key stakeholders to ensure long-term customer satisfaction and success Develop and execute comprehensive project plans, outlining tasks, dependencies, and timelines, ensuring projects are delivered on time and within budget Understand customer requirements and system capabilities to provide strategic guidance and ensure full alignment between customer objectives and system functionality Proactively track, assess, and communicate project goals, plans, potential risks, timelines, action items, and budgets to all internal and external stakeholders Collaborate closely with Implementation Consultants to ensure seamless project execution and alignment with the overall project approach Lead regular touchpoints and executive-level status meetings with customers, providing clear, strategic, and professional communication Effectively manage changes in project scope, developing contingency plans to mitigate risks Apply project management best practices and business acumen to deliver high-quality work Contribute to the development of best practices, standards, and methodologies that enhance the efficiency of future implementations Participate in product training, knowledge transfer sessions, and other strategic initiatives to continuously develop your expertise in ProcessUnity solutions Requirements Desired Experience & Skills: Bachelor’s degree (highly preferred) and 5+ years of project management experience, specifically in leading complex, customer-facing software implementation projects for external clients Extensive experience leading large-scale software implementation projects for external clients (not internal IT) Proven ability to manage multiple high-priority projects simultaneously, with a track record of delivered projects on time, within budget, and meeting customer expectations High analytical and emotional intelligence, with the ability to build trust and foster relationships with clients Technical aptitude to understand the capabilities of ProcessUnity’s platform and align them with customer business needs Ability to translate business requirements into actionable project plans and execute on those plans A desire to continuously learn and integrate new skills, technologies, and ideas to drive success About the Company ProcessUnity is a leading provider of cloud-based risk and compliance management solutions. We specialize in helping organizations manage third-party risk, cybersecurity risk, and enterprise risk through our comprehensive and user-friendly platform. By streamlining risk assessment and mitigation processes, we enable businesses to enhance their risk management strategies to ensure regulatory compliance. Apply Now < Prevous Next >

< Back Security Services Specialist Apply Now Multiple Locations Job Type Full Time Organization IBM Application Deadline December 21, 2024 About the Role 1. Software Development Lifecycle (SDLC) Knowledge – Familiarity with how software is designed, developed, tested, deployed, and maintained. 2. Regulatory and Compliance Knowledge – NIST Cybersecurity Framework (CSF) – Executive Order 14028 (Improving the Nation’s Cybersecurity) – SPDX or CycloneDX for SBOM formats 3. Risk Management – Ability to identify and assess risks associated with software components, including vulnerabilities in third-party libraries. – Third party cyber risk assessments 4. Communication and Collaboration – Skills in collaborating with developers, third parties and stakeholders to ensure compliance and resolve issues. Requirements Technical Expertise: 1. Software Composition Analysis (SCA) Tools 2. Programming and Scripting Languages – Knowledge of languages like Python, Java, JavaScript, or C++ to trace dependencies and identify vulnerabilities. 3. Dependency and Package Management – Experience with package managers (e.g., npm, Maven, Pip, Gradle) and dependency trees. 4. Vulnerability Databases – Familiarity with CVE (Common Vulnerabilities and Exposures), NVD (National Vulnerability Database), or OSV (Open Source Vulnerabilities). 5. SBOM Standards and Tools – SPDX (Software Package Data Exchange) – CycloneDX – Experience with tools that generate or analyze SBOMs (Dependency Track) 6. Open Source Software (OSS) Licensing – Ability to analyze licensing terms and identify compliance issues in OSS components. 7. Security Frameworks – Knowledge of security best practices (e.g., OWASP Top 10, secure coding standards). Preferred Technical and Professional Expertise Cloud and Container Security – Familiarity with cloud-native and containerized environments (e.g., Docker, Kubernetes). Database and Data Analysis – Capability to query and analyze data from SBOM reports or vulnerability scans. Continuous Integration/Continuous Deployment (CI/CD) – Understanding of CI/CD pipelines and how SBOMs integrate into DevSecOps workflows About the Company At IBM, work is more than a job – it’s a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you’ve never thought possible. Are you ready to lead in this new era of technology and solve some of the world’s most challenging problems? If so, lets talk. Apply Now < Prevous Next >

< Back INDUSTRY ROUNDTABLE Q3 Industry Roundtable: Insurance (All Industries) Tuesday, August 12, 2025 Date Tuesday, August 12, 2025 Time 10:00 - 11:00 AM CT Intended Audience TPRA Practitioner Members in the Insurance Sector (Across All Industries) Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Expand your horizons with this cross-industry roundtable designed for TPRM professionals in insurance and related fields. Facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA, these quarterly discussions tackle shared challenges across industries—from compliance hurdles to vendor transparency. Participant-led agendas foster diverse insights and collaborative problem-solving, making this event an invaluable forum for all practitioners. SPEAKER(S) INFORMATION CPE CREDIT These meetings are roundtables with topics chosen each quarter by attendees and participants, facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA. About These Meetings Industry Roundtables (previously called Special Interest Calls) are industry-specific meetings where the agendas are set each quarter by its participants and facilitated by community members. Any TPRA Practitioner Member belonging to the industry noted above may join the calls. Who Should Attend All TPRA Practitioner Members in the related industry are invited to these events. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

< Back INDUSTRY ROUNDTABLE Q1 Industry Roundtable: Insurance (All Industries) Tuesday, February 11, 2025 Date Tuesday, February 11, 2025 Time 10:00 - 11:00 AM CT Intended Audience TPRA Practitioner Members in the Insurance Sector (Across All Industries) Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Expand your horizons with this cross-industry roundtable designed for TPRM professionals in insurance and related fields. Facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA, these quarterly discussions tackle shared challenges across industries—from compliance hurdles to vendor transparency. Participant-led agendas foster diverse insights and collaborative problem-solving, making this event an invaluable forum for all practitioners. SPEAKER(S) INFORMATION CPE CREDIT These meetings are roundtables with topics chosen each quarter by attendees and participants, facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA. About These Meetings Industry Roundtables (previously called Special Interest Calls) are industry-specific meetings where the agendas are set each quarter by its participants and facilitated by community members. Any TPRA Practitioner Member belonging to the industry noted above may join the calls. Who Should Attend All TPRA Practitioner Members in the related industry are invited to these events. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

< Back Manager, Third Party Vendor Management Apply Now Atlanta, GA (Remote) Job Type Full Time Organization Inhabit Application Deadline December 19, 2024 About the Role The Manager, Third Party Vendor Management will oversee the procurement and management of third-party vendors, ensuring that all service level agreements (SLAs) are met and maintained. This role will be pivotal in running the Request for Proposal (RFP) process, monitoring vendor performance, and collaborating with legal teams to finalize terms of agreements. The position will also focus on strategic solutions that benefit the entire enterprise, such as consolidating call center services. The ideal candidate will have a strong understanding of RFP processes and vendor performance management, demonstrate e xcellent communication and interpersonal skills, and have excellent negotiation and contract management skills. Responsibilities What You Will Do (Functions and Responsibilities ) Lead and manage the RF(x) process for selecting key vendors. Develop and implement RF(x) strategies to ensure competitive and fair vendor selection. Evaluate vendor proposals and make recommendations based on cost, quality, and service. Monitor vendor/supplier performance through key performance indicators (KPIs) and established SLAs. Conduct regular reviews and audits of vendor services to ensure compliance with contractual terms and implement any corrective actions as needed. Work closely with the legal department to draft, review, and finalize terms of agreements with vendors. Ensure all contracts comply with Inhabit’s policies and regulatory requirements while negotiating contract terms to achieve the best possible outcomes for Inhabit. Develop and implement enterprise-wide services and strategic solutions, consolidating services such as off-shore call centers to create efficiencies and cost savings. Collaborate with various business units to understand their needs and provide centralized solutions. Proactively identify cost-saving opportunities and implement strategies to reduce procurement expenses. Prepare and present regular reports on sourcing activities, supplier performance, and cost savings to senior management. Facilitate legal review and Third Party Risk Management Assessment processes. Requirements What We are Looking For (Minimum Qualifications) Develop, lead and implement sourcing strategies from concept to execution across all functional areas, including corporate initiatives. Support business owners to strategically manage vendor relationships and performance metrics (SLOs). Lead negotiations of pricing, other commercial terms, and terms and conditions. Ability to analyze data to identify potential opportunities for cost savings, cost avoidance and process improvement. Excellent negotiation and contract management skills. Able to work independently as well as collaborate with legal teams and other departments. Strong analytical and problem-solving skills. Excellent communication and interpersonal skills Proficiency in procurement software and tools. Knowledge of industry regulations and compliance standards. Able to develop and implement long-term sourcing strategies. Meticulous in managing contracts, supplier performance, and procurement processes. Flexible and able to adapt to changing market conditions and business needs. Experience & Education Bachelor’s degree in business administration, supply chain management, or a related field. Minimum of 5 years of experience in procurement, vendor management, or a related role. Excels in negotiation and influence of parties both internal and external. Critical thinker with great problem-solving skills. Strong time-management and multi-tasking skills. Great communication, interpersonal and networking skills. Project management and leadership skills. About the Company Inhabit operates a unique collective of tech-forward companies serving the residential, commercial, and short-term rental industries. Our team members deliver best-in-class software solutions and services while fostering innovation and collaboration with business leaders and industry experts. Inhabit believes that property managers are central to the success of the residential and short-term rental markets and delivers products built to empower them, their investors, and communities. Come help build the company you want to Inhabit. To learn more, visit Apply Now < Prevous Next >

< Back Operational Risk Specialist III (AVP), Vendor Risk Apply Now Hybrid Job Type Full-Time Organization Eastern Bank Application Deadline December 31, 2024 About the Role The primary responsibilities of the AVP Vendor Risk Analyst are to support the monitoring and reporting requirements of Eastern’s Third Party Risk Management and New Initiative programs. This incumbent will report directly to the VP, Third-Party Risk Manager. This role will provide support to the first line of defense across all five (5) life-cycle phases (Risk Assessment, Due Diligence, Contracting, Oversight and Termination), assisting all with understanding and complying with Bank's TPRM regulatory requirements. A successful candidate will ensure risks introduced by the business units through the Third-Party Risk Management and New Initiative programs are effectively identified, assessed, mitigated, and reported within the Bank. The role will support continuous improvement of the Third Party and New Initiative risk management frameworks, tools, policies, and procedures to ensure the bank is complying with relevant regulations and guidance. Assist in the inventory management and tracking of all third-party relationships across the Bank and ensuring the accuracy of the risk management system. Help define program criteria and train business units on the third-party life cycle. This includes contracting, monitoring vendor performance, and enforcing appropriate vendor management tools to ensure high quality services and contractual commitments are received throughout the duration of the engagement. Maintain/enhance tools for use in vendor management, including vendor tracking, analytics, and performance management tools. Handle escalation issues with vendors and works with other business units to manage and proactively work to identify, resolve issues, and develop solutions. This includes findings management in the GRC tool. Monitor negative media events and vendor industry developments. Actively remain current with industry standards, regulatory guidance, trends, competitive intelligence on vendor management best practices and provide recommendations accordingly. Ensure risk assessments are completed for all new vendors and review for reasonableness. Execute and oversees annual third-party vendor risk assessments and monitoring and coordinates with all business unit vendor owners to ensure review completion. Supports execution an analysis of annual third-party SOX/SOC reviews and provides effective challenge. Ensure policy standards and regulatory requirements for associated programs are adhered to and make recommendations for policy updates based upon regulatory guidance and corporate standards. Assist with internal auditors and external examiners to support risk related audits and examinations. Attend & participate in third-party and new initiative meetings. Manages the Engagement and New Initiative modules of the Bank’s GRC tool. Supports providing effective challenge on New Initiatives and ensuring program requirements and stakeholder feedback is addressed prior to launch Requirements PROBLEM SOLVING & DECISION MAKING : The AVP Vendor Risk Analyst plays a supportive role in making critical decisions that impact the Third Party and New Initiative Risk Management frameworks. This position requires a high level of problem-solving skills and the ability to analyze complex risk issues to develop effective solutions. The AVP Vendor Risk Analyst will need to work both independently and in collaborative environments and will require strong organizational and communication skills. The AVP Vendor Risk Analyst will work closely with management and collaborate with various stakeholders to establish and advance the risk frameworks and standards, ensuring alignment with industry best practices, and bank’s overall objectives. The decisions made by the AVP Vendor Risk Analyst directly impact the implementation of risk management initiatives and drives a risk focused culture within the organization. The role will require analysis and reporting on risk assessments to inform internal and external stakeholders. Program responsibilities are visible to management and the regulators. Education and Experience Bachelor's Degree or equivalent experience. Advanced degree is a plus. 3-5 years of proven experience in risk management, internal audit, bank operations, or banking industry, or other related risk or control function Strong foundation in Third Party Risk Management a plus Skills/Knowledge Ability to apply risk management concepts to a business setting. Strong analytical and problem-solving skills, with the ability to analyze complex risk management issues, provide effective solutions, strategic risk insights, lead change, and escalate significant concerns to their manager. Effective communication and interpersonal skills to collaborate with stakeholders at all levels of the bank and convey complex concepts to diverse audiences. Ability to lead and influence cross-functional teams and drive change management initiatives within a midsize bank setting. Detail-oriented with excellent organizational and project management skills. Proficient Microsoft Office and knowledge of GRC Systems (e.g., Archer) Effective written and oral communication About the Company At Eastern Bank, we pride ourselves on supporting our employees by offering tremendous opportunity for individual growth. As an inclusive company, we work to ensure that our valued employees are treated fairly, recognized for their individuality, and encouraged to reach their fullest potential. These values have earned us a reputation as a great place to work and provide a strong reason why you should consider a career with us. We are proud to offer comprehensive compensation plans and a benefits program called Total Rewards that includes medical, dental, vision, life and disability insurance, retirement, vacation and tuition reimbursement. Eastern Bank is an Equal Opportunity Employer of women, people of color, LGBTQIA+, religion, national origin, citizenship, neurodivergence, age, Veterans, individuals with disabilities, or any other characteristic protected by law. At Eastern Bank, we are dedicated to building a diverse, equitable, inclusive and authentic workplace. If you’re excited about this role but your experience doesn’t fully align with every qualification, we still encourage you to apply! You may be just the right candidate for this position or others across the company. Our Recruitment team is waiting to chat with YOU. Apply Now < Prevous Next >

< Back TPRM Auditor Apply Now India (Remote) Job Type Full Time Organization VISO TRUST Application Deadline December 18, 2024 About the Role Key Responsibilities Analyzing security program related language and documents, recording text annotations for the training of machine learning models and ensuring quality assurance on the conclusions drawn by automated assessments Conducting domestic and global third party risk assessments including coordinating intake of new third parties and new engagements, third party security reviews, interacting with internal and external stakeholders, reporting on assessment outcomes and tracking remediation efforts Working closely with Product, Engineering, Customer Success and Machine Learning teams to contribute to automation logic and model training and ensure the success of reviews performed on the platform Apply VISO TRUST methodology to to evaluate control presence and determine risk Document assessment procedures for subsequent automation Review business and technical assessments, questionnaires and related documentation Schedule and conduct review calls with third parties: ensure and track questionnaires sent to third parties, track and report on abandoned third parties, receive and review questionnaires responses and finalize reports Coordinate other due diligence that needs to be done in addition to security questionnaire when needed Collaborate with VISO Audit, Product, Engineering and Machine Learning personnel to develop continued program process and platform improvements Report on assessment outcomes, risk levels, and remediation progress Requirements Key Skills, Qualifications & Experience Strong analytical/critical thinking skills Excellent written, verbal communication and organizational skills Ability to perform policy and standard gap analyses based on leading security frameworks Knowledge of common control and policy taxonomies and hierarchies and related language Knowledge of common third party assurance related documents, their structure and analysis, such as AICPA SOC reports, PCI DSS ROC, HiTrust, ISO 27001 Statements of Applicability, etc. Deep knowledge and experience with regard to the VISO TRUST technology platform and it’s unique approach to text extraction and automated risk determination Bachelor’s degree with a major in Information Security or equivalent combination of education and experience, ie. CISSP, CISA, CIPP, CRISC, CEH, and/or CISM 3-5 years of experience with third party cyber risk management Have performed IT risk assessments against OWASP, PCI, GLBA, NIST, ISO, SIG/AUP or other standards Strong knowledge base in information security, risk management, privacy, operations, enterprise networking, systems evaluation, and architecture Ability to discern business relevant risk associated with technology control deficiencies, and to identify the corresponding remediation which is required to mitigate the business impact Knowledge of security, risk and privacy regulatory frameworks such as NIST, SOX, PCI, HIPAA, ISO, Safe Harbor, CSA, etc. Self-starter who can function independently with limited direction but work closely with others when necessary. Knowledge of security, risk and privacy regulatory frameworks such as NIST, SOX, PCI, HIPAA, ISO, Safe Harbor, CSA, etc. Self-starter who can function independently with limited direction but work closely with others when necessary About the Company A rationalized vendor security due diligence platform. VISO TRUST puts reliable, comprehensive, actionable vendor security information directly in the hands of decision-makers who need to make informed risk assessments. Apply Now < Prevous Next >

< Back TPRM, Analyst Apply Now Sioux Falls, SD (Onsite) Job Type Full TIme Organization BitGo Application Deadline December 19, 2024 About the Role Responsibilities: Contribute to the functioning and optimization of BitGo’s full cycle Third-Party Risk Management/Procurement Program Serve as the lead point of contact for third party vendors/suppliers for BitGo while monitoring their performance Enhance and distribute due diligence forms for our suppliers/vendors to complete as part of their onboarding process Work cross-functionally with all corresponding departments (Compliance, Legal Ops.,Info. Security, Finance, etc.) to ensure their corresponding vendors are up to par/compliant with applicable laws and regulations Support the Strategic Sourcing/Procurement Lead for any new vendor/supplier needs Maintain a regimented/consistent sourcing process that can serve as an internal guide for all newly selected vendors/suppliers moving forward Maintain a proper documentation system for Third Party Risk Mgmt./Procurement Develop a strong understanding of all service offerings at BitGo (custody, prime brokerage, portfolio/tax solutions) Exemplify a willingness to take on additional responsibilities as needed Requirements BitGo is looking for people who are passionate about their craft, take full ownership for their work and projects, and believe in a transparent and collaborative culture with the goal of making BitGo successful. 2+ years of relevant Third Party Risk Mgmt./Procurement experience Knowledge of risk management and control frameworks (e.g. COSO, ISO 31000, AICPA SOC) Knowledge of information security and privacy standards and regulations (e.g., ISO 27001/27701, NIST, FFIEC, CCPA, EU GDPR) Experience with GRC systems and automation tools for managing business datasets High attention to detail, accuracy, and thoroughness. Strong problem-solving, investigative, and analytical skills, with aptitude for discriminating between useful and less useful details Ability to work independently and manage through ambiguous situations, with minimal supervision High level of commitment to quality work product and organizational ethics, integrity, and compliance Ability to interface with top management. Strong interpersonal skills and the ability to effectively communicate, both written and verbally A college degree in business, public policy, or a technical field. (BA/BS) You are knowledgeable and enthusiastic about blockchain technology and cryptocurrencies About the Company BitGo is the leading infrastructure provider of digital asset solutions, offering custody, wallets, staking, trading, financing and settlement out of regulated cold storage. Founded in 2013, BitGo is the first digital asset company to focus exclusively on serving institutional clients.BitGo is dedicated to advancing a digital financial services economy that is borderless and accessible 24/7. With multiple Trust companies around the world, BitGo is the preferred security and operational backbone for more than 1,500 institutional clients in 50 countries, including many of the world’s top brands, cryptocurrency exchanges and platforms. BitGo also secures approximately 20% of all on-chain Bitcoin transactions by value and is the largest independent digital asset custodian. For more information, please visit www.bitgo.com . BitGo is looking to hire an Analyst / Sr. Analyst to focus on Third-Party Risk Management/Procurement reporting to the Global TPRM Manager. This is a great opportunity to occupy a highly collaborative/cross-functional role where you’ll be able to apply your expertise within the aforementioned categories of enterprise risk management. Apply Now < Prevous Next >

< Back INDUSTRY ROUNDTABLE Q2 Industry Roundtable: Insurance (All Industries) Tuesday, May 13, 2025 Date Tuesday, May 13, 2025 Time 10:00 - 11:00 AM CT Intended Audience TPRA Practitioner Members in the Insurance Sector (Across All Industries) Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Expand your horizons with this cross-industry roundtable designed for TPRM professionals in insurance and related fields. Facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA, these quarterly discussions tackle shared challenges across industries—from compliance hurdles to vendor transparency. Participant-led agendas foster diverse insights and collaborative problem-solving, making this event an invaluable forum for all practitioners. SPEAKER(S) INFORMATION CPE CREDIT These meetings are roundtables with topics chosen each quarter by attendees and participants, facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA. About These Meetings Industry Roundtables (previously called Special Interest Calls) are industry-specific meetings where the agendas are set each quarter by its participants and facilitated by community members. Any TPRA Practitioner Member belonging to the industry noted above may join the calls. Who Should Attend All TPRA Practitioner Members in the related industry are invited to these events. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

< Back INDUSTRY CALL Q3 Industry Roundtable: Financial Institutions Monday, July 14, 2025 Date Monday, July 14, 2025 Time 1:00 - 2:00 PM CT Intended Audience TPRA Practitioner Members in the Finance Sector (including FinTech) Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Delve into the unique complexities of third-party risk management within the financial sector at this interactive roundtable. Facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA, this quarterly gathering invites financial professionals to collaborate, share cutting-edge strategies, and address emerging industry risks. With agendas shaped by participants, each session delivers highly relevant insights to tackle the ever-evolving challenges of the financial world. SPEAKER(S) INFORMATION CPE CREDIT These meetings are roundtables with topics chosen each quarter by attendees and participants, facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA. About These Meetings Industry Roundtables (previously called Special Interest Calls) are industry-specific meetings where the agendas are set each quarter by its participants and facilitated by community members. Any TPRA Practitioner Member belonging to the industry noted above may join the calls. Who Should Attend All TPRA Practitioner Members in the related industry are invited to these events. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.