Robert Half Management Resources is currently looking for a Third Party Risk Analyst to support vendor due diligence efforts and help strengthen third-party oversight for a Financial Services client in Columbus, OH. This contract position (potential for contract to hire) focuses on assessing prospective vendors, identifying risk exposure, and recommending next steps based on evaluation results. The role is based onsite at the client's location in Columbus, OH (hybrid, 1-2 days remote schedule is possible).
Responsibilities:
• Conduct risk reviews for prospective vendors and gather the information needed to complete initial third-party assessments.
• Assign risk ratings by analyzing inherent risk factors, control environments, and potential business impact.
• Determine when elevated risk findings require deeper follow-up reviews or additional assessment activities.
• Partner with internal stakeholders to clarify vendor services, risk considerations, and assessment requirements.
• Maintain organized assessment records, track review progress, and summarize findings for business partners and decision-makers.
• Use Excel to analyze assessment data, manage reporting, and support risk documentation with accuracy and consistency.
• Contribute to broader enterprise risk management efforts by identifying gaps, trends, and areas requiring stronger controls.
• Support evaluations involving platforms such as Archer, Ariba, or Coupa when relevant to vendor risk workflows.
• At least 2 years of experience in a third-party risk, vendor risk, or related risk assessment role.
• Minimum 3+ years of overall experience in business analysis, risk management, or a comparable function.
• Hands-on experience performing inherent risk reviews and control assessments is required.
• Strong Excel skills with the ability to organize data, track assessments, and produce clear analysis.
• Familiarity with risk concepts such as residual risk, control effectiveness, and enterprise risk management.
• Ability to evaluate information critically, identify gaps, and make sound risk-based recommendations.
• Experience with Archer, Ariba, or Coupa is preferred but not required.