Third Party Risk Lead
Old National Bank · Chicago, IL · 3 wk ago
Management$82k–$165k/yrFull-time
Responsibilities
The Third ‑ Party Risk Management (TPRM) Lead is responsible for executing third ‑ party risk management activities across a portfolio of vendors, with primary focus on Critical, Very High, and High risk third ‑ party relationships, in support of the Bank’s Third ‑ Party Risk Management policies, standards, and program.
This role serves as a subject ‑ matter expert and escalation point within the TPRM team, ensuring complex risk assessments, issues, and remediation activities are executed in alignment with regulatory expectations and Bank standards.
- Provide guidance and support to business segments on third ‑ party risk management expectations, requirements, and best practices throughout the third ‑ party lifecycle.
- Actively support implementation and ongoing execution of the Third ‑ Party Risk Management (TPRM) Program across the third ‑ party relationship portfolio.
- Conduct formal third ‑ party reviews in accordance with TPRM policies, standards, and procedures.
- Identify, document, track, and report third ‑ party risks and issues through remediation, exception or formal risk acceptance.
- Maintain third ‑ party records, assessment results, issues, and supporting documentation within the system of record.
- Support management of the centralized third ‑ party risk management platform, ensuring accurate, timely, and complete documentation.
- Assist with preparation of management reporting, metrics, and dashboards related to third ‑ party risk.
- Support the review of third‑party agreements by providing standard contract requirements informed by third‑party risk assessments.
- Aid in internal and external audits, regulatory exams, and independent reviews related to third‑party risk management activities.
- Mentor and provide knowledge-sharing support to other third‑party risk management team members.
- Execute special projects and additional assignments as requested to support Third ‑ Party Risk Management and Enterprise Risk Management objectives.
- Contribute to the ongoing development, implementation, and maturation of third ‑ party risk management processes, training materials, and support resources.
- Develop and maintain effective working relationships with stakeholders across the Bank to promote collaboration and consistent application of third ‑ party risk management expectations.
Qualifications And Education Requirements
- Bachelor’s degree in business, project management, accounting, or related field.
- 6+ years of experience in third ‑ party risk management, operational risk, audit, or related risk disciplines.
- Demonstrated ability to drive the End-to-End third-party lifecycle, including intake/onboarding, due diligence, ongoing monitoring, issue management/remediation and exit planning.
- This includes foundational understanding of risk management concepts, including exposure to policies, standards, and procedures.
- General knowledge of banking operations and technology processes; prior experience in a regulated environment preferred.
- Familiarity with key third ‑ party risk and regulatory requirements (e.g., GLBA, SOX, PCI, HIPAA) and related compliance expectations.
- Basic understanding of information security, cybersecurity concepts, and technology risks impacting third ‑ party relationships.
- Strong attention to detail with the ability to analyze information, identify issues, and document risks clearly.
- Ability to manage multiple tasks and priorities in a fast ‑ paced environment while meeting timelines.
- Effective written and verbal communication skills, including the ability to prepare documentation and support risk reporting.
- Demonstrated ability to work collaboratively and build productive working relationships across teams.
- Proficiency in Microsoft Office applications, including Word, Excel, PowerPoint, and Visio.