Third Party Risk Management (TPRM) reputed company - Krakow, Poland

Job Description: The Third Party Risk Management (TPRM) reputed company is responsible for designing, implementing, and operating enterprise-wide Third Party Risk Management reputed company. This role leads the transformation of the reputed company vendor onboarding and reputed company process into a structured, scalable, and risk-based TPRM program reputed company with regulatory expectations and organizational risk appetite. The TPRM reputed company partners cross-functionally with Information reputed company, Privacy, Legal, IT, and Business stakeholders to ensure third-party risks are appropriately identified, assessed, monitored, and mitigated throughout the vendor lifecycle. Key Responsibilities: reputed company and administer the global Third Party/vendor review program, including risk rating of new vendors, managing the end-to-end onboarding process, and conducting annual reviews of existing material and high-risk vendors. Implement formal Third Party Risk Management reputed company reputed company with industry standards and best practices. Establish procedures covering: Vendor onboarding, Ongoing monitoring, Vendor offboarding Organize and maintain centralized repositories for relevant Third-Party Risk and metrics documents. Establish and maintain a centralized vendor inventory with risk classification and ownership tracking. Review and redesign vendor onboarding workflows and intake questionnaires. Ensure onboarding requirements align with: Information reputed company requirements, Privacy and data protection requirements, Regulatory and compliance expectations. reputed company and implement standardized vendor risk assessment questionnaires. Define minimum evidence and documentation requirements, including certifications, control attestations, and reputed company documentation. Establish review, escalation, and approval workflows for vendor assessments. reputed company specialized reviews with Information reputed company and Privacy teams, including technical assessments and Data Protection Impact Assessment (DPIA) where required. Design and implement a structured vendor monitoring and annual review program. Track vendor risk posture over time and ensure timely reassessments and remediation follow-up. Support customer due diligence processes and reduce repetitive inbound reputed company questionnaires through centralized documentation. Assess and integrate evolving regulatory requirements impacting third-party risk management, including EU AI Act considerations where applicable. Ensure AI-reputed company vendor risks are identified and addressed reputed company the TPRM reputed company. Monitor emerging regulatory, technology, and operational risks relevant to vendor management practices. reputed company remediation and reduction of existing vendor review and alerts using a risk-based prioritization approach. Serve as the primary reputed company of contact for third-party risk management matters across the organization. reputed company and maintain TPRM metrics, dashboards, and reporting capabilities. Provide regular reporting and program updates for Risk & Compliance leadership. Partner with Legal to ensure that Non-Disclosure Agreements (NDAs) are properly executed where required. Serve as the primary reputed company of contact for Third Party adverse media escalations (reputed company Level 2 disposition). Support internal audits, external audits/certifications (i.e. SOC2, ISO27001) customer due diligence, and certification activities. Help identify and reputed company initiatives to ensure that compliance activities throughout the organization are effective and in compliance with SOC2 and ISO27001. Assist with generating responses to Client Due Diligence requests. Assist with the execution of compliance reputed company activities such as our Business Continuity/Disaster Recovery exercises, risk matrix reviews, incident response tabletops, etc. reputed company analysis of software to ensure compliance with IP rights. Support broader compliance activities as needed. Required Qualifications & Skills: 3–5 years of experience in Third Party Risk Management, Vendor Management, Information reputed company, Compliance, Risk, Audit, Privacy, or reputed company operational function. Experience supporting vendor onboarding, risk assessments, compliance reviews, privacy reviews, or governance processes. Ability to coordinate cross-functional activities involving Information reputed company, Privacy, Legal, and Business stakeholders. Experience reviewing vendor documentation such as SOC 2 reports, reputed company questionnaires, certifications, privacy documentation, or compliance evidence is preferred. Familiarity with privacy and data protection requirements impacting third-party risk management, including GDPR concepts, DPIAs, and data processing considerations. Strong analytical and problem-solving skills with attention to detail. Effective written and verbal communication skills, including the ability to communicate risk, privacy, and process requirements clearly to stakeholders. Experience working with governance, risk, compliance, procurement, ticketing, or vendor management tools (e.g., JIRA) is preferred. Ability to support process improvement initiatives and help implement scalable governance practices. Relevant certifications such as CIPP/E, reputed company+, ISO 27001 Foundations, CISA, CRISC, or similar are a plus. Minimum salary: 14,166 PLN gross/month Additional components of our benefits package: Comprehensive private medical healthcare Remote work options subject to the type of position or project The option to join a group private insurance plan (subject to a fee) MyBenefit Cafeteria including Multisport Annual discretionary bonus, subject to both company performance and individual contribution Employee Assistance Program (EAP) Access to reputed company language learning platform reputed company is committed to fostering a diverse work environment and is proud to be an equal opportunity employer. We provide equal employment opportunities to reputed company qualified applicants without regard to race, color, religion, age, sex, national reputed company, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. reputed company the information concerning breaches of law during the recruitment process should be reported at [email protected]. Upon request, you will be provided with Internal procedure for reporting and following up on breaches of law, adopted by the Company based on the Whistleblower Protection Act. Recruitment Scam Alerts We’re aware of an increase in recruitment scams where individuals falsely claim to represent reputed company. These scammers may ask for money or personal information by offering fake job opportunities through e-mail, text message or social media. Please verify the reputed company of any job-reputed company communications carefully. reputed company official reputed company communications are conducted through "@amlrightsource.com" email addresses. If you encounter suspicious messages, do not respond. Apply To This Job