Senior Director, Enterprise Third Party Risk

Benefits

Additional Information

Job Description The Senior Director, Enterprise Third Party Risk Leader, will lead an expanded third-party risk management E2E process, including leading a Central Risk Management team and driving a holistic, effective and efficient third-party risk management approach for the enterprise. This leader will shape and maintain an integrated and enterprise view of third-party risk exposure across a holistic set of risk dimensions , collecting inputs from function and business leads and reporting to key stakeholders. The role will also maintain a comprehensive understanding of the company's business strategies, organizational structures, resources and risks, policies and procedures and have responsibility for deploying cross-functional leadership of fit-for purpose risk practices across the Vertex risk community of risk subject matter experts, business owners, and executive leadership. The leader will work collaboratively with internal Stakeholders, develop sound third party risk strategies, utilize knowledge and expertise of processes, leverage best practices and drive risk visibility and ultimately risk management actions. The leader will partner with Business Owners and Risk SMEs to effectively and efficiently manage third party risks through actions including risk mitigation and risk acceptance, alongside a transparent enterprise governance process for managing and underwriting risks. As a senior member of the Strategic Sourcing group, this leadership role will be expected to provide strategic input in the future direction of the function. They will possess high-level business partnering acumen and subject matter expertise in third-party risk management processes and tools. Working collaboratively with strategic sourcing teams and internal Business Stakeholders, the leader is expected to ensure their teams' activities are aligned with Business priorities and objectives. This role will communicate with senior-most Executives and be viewed as a trusted business advisor crucial to their business. The role will effectively articulate the vision and value to the business. Key Duties & Responsibilities Leadership responsibility for coordinating all aspects of a central enterprise risk management program and team, ensuring that the end-to-end (E2E) third party risk management processes are implemented and sustained, team members are fulfilling their roles and responsibilities, and reports are consistent with Corporate and risk policies Oversee supplier criticality assessments for all suppliers using a unified and holistic approach deployed along the supplier life cycle , and leverage the criticality dimensions for fit for purpose risk process prioritization Oversee third party risk assessment and regular updates for critical suppliers along the supplier life cycle leveraging a central risk tool , working with business leads to provide required inputs and ensuring other metrics are automated and updated Maintain centralized supplier risk repository for visibility to third party risks and action plans, timelines and ownership , including creating regular reports on multi-dimensional supplier risk with the CRM team Maintain and regularly update risk appetite matrix and list of risk mitigation actions , syndicating with and eliciting input from business leads as needed Coordinate, support preparation of, and participate in joint reviews of mitigation actions , working with business leads and risk SMEs and escalating when necessary Ensure E2E process is supported by appropriate tools and technology solutions in partnership with DTE , including standing up a centralized supplier risk register and automating risk assessment and tracking activities Coordinate, support preparation of, and participate in escalation governance committees (i.e., cross-functional governance meetings, executive level governance meetings) Manage and lead within a matrix of dedicated and assigned resources across a hybrid centralized and federated risk management operating model. Work with HR and Communications team to coordinate and launch training and communications plan for ongoing process awareness across the enterprise Collaborate with Executive leaders, function leads, and business leads to role model new processes Partner with strategic sourcing and business owners to ensure understanding of supplier landscape existing and future potential and integrate into the third-party risk management strategy to drive enterprise risk visibility and actions to manage risks through actions focus on immediate mitigations, mitigation plans with future timelines, and risk acceptance strategies. Own the enterprise third party risk management process, policies and procedures , and effective execution of same in partnership with risk SMEs and business owners, including effective governance, RACIs, and inherent and residual risk monitoring and reporting. Partner with key stakeholders to develop relevant risk metrics and KPIs, including process

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Vertex Pharmaceuticals? Share your experience