VENDOR RISK SPECIALIST I WHAT IS THE OPPORTUNITY? This position is part of CNB's Vendor Management Office and is responsible for enterprise wide third party risk evaluations and management services
This role will support third party risk assessments to ensure they are properly organized, conducted, reviewed, and documented
The role will also focus on tracking risk remediation plans to completion
CNB established the Vendor Management Office to support the third party risk management framework
What you will do Facilitate third party risk assessments for initial due diligence and ongoing oversight of third party vendor services
This includes collection of documents and analysis, third party risk assessment questionnaire requirements, reviewing audited reports of controls (i.e
SSAE18, SOC Type II, PCI AoC/RoC) and other information to support full evaluation of any potential outsourcing risks
Partner and coordinate closely with internal stakeholder areas (i.e
Information Security, Enterprise Risk Management, Business Continuity Program Office, Credit Administration, and Compliance) to facilitate and evaluate 3rd party service providers
Document remediation efforts/projects for material supplier risks and track to completion Measure and monitor progress of supplier risk management activities, including issues tracking and risk remediation efforts, monthly and quarterly status reporting, key supplier metrics and periodic publishing of reports and metrics Support facilitation and documentation of various reports, such as vendor scorecards and ongoing monitoring artifacts Perform data analysis and draw conclusions as it related to vendor and contract data Maintain vendor and contract data in systems Champion the enterprise Vendor Management purpose throughout the organization; train and advise internal CNB staff on the vendor management processes Provide risk awareness and training to colleagues in support of CNB's Third Party Risk Management Policies and Procedures Escalate issues (delays; significant gaps; uncooperative parties; etc.) to management as required; work to resolve issues as needed Support various ad hoc projects supporting program enhancements, process improvements, and other functions Ad hoc duties, as assigned Must-Have* Minimum of 4 years of third party risk management experience in the financial services industry, conducting risk assessments, and reporting on KRIs Minimum of 3 years of experience in risk and controls identification, appropriately scoping assessments, and performing assurance testing
Minimum of 2 years working with a GRC system, incorporating continuous improvement for the system and process
Skills and Knowledge Comprehensive knowledge of third party risk management processes and methodologies Comprehensive knowledge of the third-party risk management lifecycle: planning, due diligence, contracts, ongoing monitoring and termination Experience using third party risk management /Governance, Risk and Compliance (GRC) systems Experience with contracts, including master service agreements, statements of work, and license agreements
Industry recognized third party risk management or vendor management certification Six Sigma certification Experience assessing cloud servicing arrangements Strong project management skills (organizing, planning, reporting, documenting, driving tasks to closure, etc.) Strong analytical skills, working with data and drawing conclusions Excellent oral and written communication skills; ability to communicate with all levels of management; experience performing both detailed and executive-level documentation Advanced knowledge of Microsoft Office tools; specifically, Excel and PowerPoint Compensation Starting base salary: $87,027 - $138,965 per year
Exact compensation may vary based on skills, experience, and location
This job is eligible for bonus and/or commissions
*To be considered for this position you must meet at least these basic qualifications The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification
It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job
Benefits and Perks At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues
Get an inside look at our Benefits and Perks
ABOUT CITY NATIONAL City National Bank, a subsidiary of Royal Bank of Canada, is the largest bank headquartered in Los Angeles with $92.03 billion in assets as of April 30, 2024
Founded in 1954, City National provides personalized banking, investment and trust services in select markets including Los Angeles, Orange County, San Diego, the San Francisco Bay Area, New York City, Nashville, Atlanta, Delaware, Las Vegas, Washington D.C
and Miami.* In addition, the company and its investment affiliates manage or administer $96.83 billion in client investment assets
City National is dedicated to strengthening communities, and in 2023 alone, the company made more than $11 million in charitable contributions to nonprofits that support the communities it serves
*City National Bank does business in Miami and the state of Florida as CN Bank
For more information about City National, visit
EQUAL OPPORTUNITY EMPLOYER & REASONABLE ACCOMMODATION City National Bank is an equal opportunity employer committed to promoting and maintaining a diverse, equitable and inclusive working environment where differences are valued and encouraged
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other basis protected by the laws or regulations in the locations where we operate or in our Code of Conduct
READ MORE If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation for any part of the employment process
Please contact us via email or leave a message at
These contact methods are dedicated to applicants whose disability prevents them from successfully applying online
Only messages left for this purpose will be returned
Responses may take up to two business days.