Key Responsibilities

Vendor Governance & Oversight

• Support the organization's vendor governance program across a diverse portfolio of technology and service providers
• Coordinate periodic vendor reviews, assessments, and attestations
• Track vendor changes, service updates, technology enhancements, and risk-related disclosures
• Maintain accurate records related to vendor products, services, and risk classifications
• Ensure vendor information is properly documented and routed through established review processes
• Partner with Vendor Management teams to support third-party risk management requirements and ongoing oversight activities

Risk Management & Governance Operations

• Support technology governance and risk management workflows across multiple programs
• Review submissions, documentation, and assessment materials for completeness and accuracy
• Assist with intake, triage, and tracking of technology-related requests and reviews
• Maintain workflow records and ensure timely follow-up with internal stakeholders and external vendors
• Support governance teams through documentation, reporting, and administrative coordination

Monitoring & Review Support

• Assist with periodic reviews of vendor relationships and technology solutions
• Track changes that may require additional risk assessment or governance review
• Monitor action items, remediation activities, and follow-up requirements
• Ensure review results and supporting documentation are accurately maintained

Documentation, Audit & Compliance Support

• Maintain vendor inventories, governance records, and supporting documentation
• Support audit readiness by collecting evidence and organizing documentation
• Assist with preparation for internal audits, compliance reviews, and external assessments
• Maintain records that support technology governance, security, and risk management programs
• Ensure documentation is complete, accurate, and audit-ready

Technology Risk & Compliance Support

• Support initiatives related to:
  • Information security governance
  • Technology risk management
  • Data privacy and protection controls
  • IT controls and risk registers
  • Third-party risk management
• Assist with tracking risk findings, remediation efforts, and control documentation
• Help ensure governance activities align with organizational policies and compliance requirements

Reporting & Cross-Functional Coordination

• Prepare reports, dashboards, and governance materials for leadership review
• Support ongoing reporting related to vendor oversight, technology risk, and compliance activities
• Coordinate with:
  • Vendor Management teams
  • Information Technology teams
  • Security and Risk teams
  • Compliance and Audit stakeholders
  • External vendors and service providers

Qualifications

Experience

• 3+ years of experience in one or more of the following areas:
  • Vendor management
  • Third-party risk management
  • Information technology
  • Information security
  • Risk management
  • Compliance or audit support
• Experience supporting vendor reviews, risk assessments, compliance activities, or governance programs preferred
• Experience working with technology vendors and third-party service providers is highly desirable

Technical Knowledge

• Familiarity with:
  • Third-party risk management practices
  • Technology governance processes
  • Security and compliance frameworks
  • Vendor due diligence and assessment processes
  • Data privacy and information security concepts
• Experience using governance, risk, compliance, vendor management, or workflow management platforms preferred

Professional Skills

• Strong organizational and documentation skills
• Exceptional attention to detail and process discipline
• Ability to manage multiple priorities and deadlines simultaneously
• Strong written and verbal communication skills
• Ability to work independently while coordinating across multiple stakeholder groups
• Comfortable working in a structured, process-driven environment

Education

• Bachelor's degree in Information Systems, Business, Cybersecurity, Risk Management, or a related field preferred
• Equivalent professional experience will be considered