Vendor Risk Analyst

We’re looking for a highly motivated, collaborative and technically experienced Third-Party Risk Analyst with ability to understand and influence the Vendor Risk Assessment (VRA) processes, effectively communicate ServiceNow’s controls including intent. The successful candidate must be reliable, resourceful and have a “can-do” attitude.You will be a key member of our team and play an important role in defining the Vendor Risk Assessment framework for a leading cloud company. In this role you will be required to demonstrate ability to analyze difficult problems, think out-of-box and provide pragmatic solutions and recommendations.ServiceNow VRA focuses on the security practices of the third parties used.  The Third-Party Risk Analyst will be involved in driving this process forward and measuring Vendor Risk Assessment process compliance.What you get to do in this role: Perform new and recurring third party risk assessments.Review of third party provided audit reports and supporting collateral e.g., SOC reports and other certifications, or review of third-party security whitepapers.Using the ServiceNow platform to issue and review questionnaires completed by third parties describing their environment and controls.Collaborate with the Procurement Organization and the other risk organizations such as Security and Privacy.Work in a self-directed, collaborative, and constructive manner with our internal stakeholders.Lead or assist with successful completion of vendor risk assessment activitiesWork with vendors to address any remediation activities required following completion of the assessment.