Apply on Employer Site

KPMG US · 11 hours ago

Director, Third Party Risk Management

Pittsburgh, PA

Full-time

Hybrid

Senior Level, Lead/Staff

10+ years exp

KPMG is a leading advisory firm experiencing significant growth in its Advisory practice. The Director in Third-Party Risk Management will lead the TPRM strategy and engage with clients to enhance their risk management frameworks while fostering team development and innovation.

Financial Services

No H1B

Responsibilities

Lead and develop the TPRM strategy and roadmap for multiple client engagements, ensuring alignment with regulatory requirements and industry best practices

Design and implement enterprise-wide third-party risk frameworks, and oversee the creation and optimization of governance structures, policies, and procedures

Innovate solutions to enhance KPMG's TPRM service offerings and establish KPIs to measure program effectiveness and maturity

Lead and mentor a team of TPRM professionals, fostering a culture of innovation and continuous improvement across multiple engagements

Build and maintain strong C-suite relationships with client executives, identify new business opportunities, and develop proposals and pricing strategies

Contribute to thought leadership by producing whitepapers, hosting webinars, and presenting at industry events on emerging TPRM trends and technologies

Qualification

Third-party risk managementVendor lifecycle managementRisk assessment methodologiesVendor contract managementRegulatory compliance knowledgeRisk appetite developmentLeadershipCollaborationIntegrity

Required

Ten years of in-depth understanding of third-party risk domains, including operational, financial, strategic, compliance, reputational, and cyber/information security risks, preferably in a consulting

Expertise in vendor lifecycle management processes, including onboarding, risk assessment and due diligence, contracting, ongoing monitoring, and offboarding

Proficiency in risk assessment methodologies, risk scoring models, concentration risk analysis, and fourth-party risk management; familiarity with TPRM technology platforms such as ServiceNow VRM, Archer, ProcessUnity, OneTrust and Aravo

Strong knowledge of vendor contract management, SLA development, and regulatory requirements, including OCC Bulletin 2013-29, FFIEC guidance, EBA Guidelines, GDPR, CCPA, LGPD and DORA

Experience in developing risk appetite statements, tolerance thresholds, and preparing for regulatory examinations and responses

Ability to travel as per need of client up to 50%

Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)

Act with integrity, professionalism, and personal responsibility to uphold KPMG's respectful and courteous work environment