Third Party Risk Officer (TPRO)
eTeam UK
Krakow, PL
2 d. temu

Tittle- Third Party Risk Office (TPRO)

Job description :

We are currently seeking an experienced individual to join this team in the role of Third Party Risk Officer (TPRO)to be the senior coordinator and point of contact for Third Party Risk related matters for BU.

The overall purpose of the TPRO is to ensure that the other Third Party governance roles are co-ordinated and performing effectively.

The TPRO should provide risk management support, subject matter expertise, leadership and direction for Third Party Risk related matters for each BU

TPRO Support - Support the TPRO by coordinating all Third Party Risk related matters for his / her Global Business or Global Function (GB / GF)

Monitoring and Control - Collate and analyse management information on Third Party Risk & produce monthly reports on behalf of his / her GB / GF -

Including MI acquired from Tableau, TPM, GTP-U and Group TPR (2LOD)

Governance and Reporting - ensure adoption and implementation of the Technology execution plan to ensure compliance through data quality initiatives, continuous monitoring and remediation of overdue tasks / issues

Education - Provide advice, guidance and risk management support to noteworthy stakeholders

Support and Guidance - Identify and support TPEMs and risk owners under the revised Supplier Management model

Ongoing - Build strong relationships and maintain transparent communication channels with all relevant stakeholders

Examples of the types of tasks that the TPRO roles will undertake are as follows :

  • Analysis of approved spend from Cost Board, ZBB analysis, AP records and working with SL to ensure all engagements are covered
  • Correct each engagement's L4 managing area and cancellation
  • Identify additional TPROs
  • Identification of primary TPEMs for live engagement in Archer for relevant Service Line
  • Established meeting with TPRO and all primary TPEM's
  • Train TPEMs on Stage 1 - Primary TPEM followup - (Frequent checks)
  • Complete IRQs for live contracts
  • Audit Management Action completed for CSM 1
  • Stock Migration Wave II (Transition of contracts from various database to Archer)
  • Complete aged IRQs >
  • 90 days (from engagement creation)

  • Complete pre-contract control tasks for live BAU engagements
  • Complete overdue post-contract control tasks
  • Distribute MI / Reports for each engagement to CIOs
  • Assign appropriate risk owner to high and very high risk engagements
  • Update risk assessments and controls on High and very high risk engagements
  • Complete RRQs on live contracts
  • Complete aged IRQs >
  • 60 days (from engagement creation / refresh trigger)

  • Complete aged IRQs >
  • 30 days (from engagement creation / refresh trigger)

  • Assign a third party contact person to all engagements (Vendor name and email id)
  • Remove inappropriate contract types - Cancellation of records
  • Assign accountable executive to strategic and operational critical engagements
  • Reassessment of all high risk engagements in Archer
  • Review and update all fields relating to risk impact / service usage
  • Appropriately remediate identified missing fields, field warnings and inconsistencies of records in Archer
  • Re-assign TPEM and TPRO roles from contractors to perms
  • Handholding for TPEMS - Ongoing
  • Deep dive summary report for RRQ high Risk Engagements
  • Aplikuj
    Dodaj do ulubionych
    Usuń z ulubionych
    Mój adres email
    Klikając przycisk "Kontynuuj", wyrażam zgodę neuvoo na przetwarzanie moich danych i wysyłanie powiadomień e-mailem, zgodnie z zasadami przedstawionymi przez neuvoo. W każdej chwili mogę wycofać moją zgodę lub zrezygnować z subskrypcji.
    Formularz wniosku