Job Requisition ID: 27519

• Flexible work arrangements - work in a way that suits you best.
• Rewards platform - your hard work won't go unnoticed at Deloitte.
• Training and development - at Deloitte we believe in investing in our best assets, the people! You will have access to world class training and funding towards industry and other professional certifications.

Position Summary

When you join Cyber & Strategic Risk as a specialist in Third-Party Risk Management (TPRM), you will see how we work with some of the largest organisations in the world, across a variety of industries, assisting them to develop and operationalise third-party programs. Our client list includes eminent organisations across industries, e.g. technology, mining, banking, insurance, oil and gas and public sector.

The work you perform will help you develop an understanding of:

• the different third-party relationships an organisation may have across different industries;
• the drivers which affect behaviours of business partners, suppliers and customers; and
• the operational processes and controls required by an organisation to effectively manage and monitor its third-party relationships.

Our portfolios of services include a broad variety of solutions for our clients, including:

• designing and implementing broad third-party governance and risk management frameworks/processes,
• developing third-party risk and control assessments,
• creating strategies related to operational and financial compliance
• assisting with third party management technology (e.g., GRC solutions)

Enough about us, let’s talk about you:

• You would be supporting the design and implementation of third-party risk operating models and technology platforms, identifying, evaluating, and providing solutions to evaluate complex business and technology risks
• Design policies and procedures that support the successful implementation of third-party risk management operating models
• Perform analysis to identify contract compliance issues such as those related to software entitlement analysis or royalty compliance and cost recovery
• Facilitate process walkthrough discussions to document end-to-end business processes and functional requirements
• Consider the application of legal and regulatory requirements to company’s risk management practices.
• Design technology enhancement requirements to support third-party risk management processes.
• Participate in designing, building, testing, integrating, and implementing third party tools/platforms (such as ServiceNow, Coupa Risk, Archer, Aravo etc) to help develop practical solutions
• Participate in client projects around configuring and enhancing Software Asset Management (SAM), SaaS / Cloud Management and Software License Compliance tools (such as ServiceNow, Productiv, Flexera, Big Fix Inventory, IBM License Metric etc) to help develop accurate reporting.
• Work and consult with client technical/functional teams to design and implement solutions enhancements to optimise performance
• Drive execution of third-party compliance/software inspections (virtual or onsite)
• Track and communicate engagement performance and planning to Deloitte engagement management, ensuring project milestones remain on track and are completed on time
• Create architecture PoV documents to describe the architecture types (app, data, integration, security), purposes, guiding principles, preferred architecture patterns, related technologies, and role
• Perform sophisticated data analysis to understand client’s business and identify risk
• Understand client’s business environment and basic risk management approaches

Skills Required:

• 2+ years’ experience within professional services or related roles within industry
• 2+ years of demonstrated experience with risk management across the third-party engagement lifecycle (pre-contracting, contracting and post contracting) and an understanding of the associated organisational infrastructure
• Demonstrated solid functional and technical knowledge of the various TPRM tools program components and be able to resolve both functional and technical issues
• Experience in change management and/or managed service solution design and implementation a plus Bachelor’s in Business Administration, Supply Chain, Accounting/Finance, Engineering, Computer Science, Information Management Systems or related fields
• Experience in one of more of the following would be advantageous:
  • Business process and organisational design (e.g. process mapping, workflows, governance structures across the three lines of defence, process and enterprise level RACIs)
  • Procurement / supply chain process assessment and design
  • Third party assessment experience, including things such as compliance inspections, IRQ and current state assessments
  • Third Party Risk Management tools and technology solutions (e.g. GRC enablement solutions, etc.)
  • Framework testing (e.g. Process UAT, design of testing scripts and testing plans, etc.)
  • Software compliance, entitlement models (perpetual, term, SaaS), install / usage discovery and metering, and licence optimisation across multiple software vendors

Why Deloitte?
At Deloitte, we create positively differentiated work experiences that enable our people to feel valued and achieve their full potential. We value difference and embrace people with diverse backgrounds and thinking styles. Knowing that people work best in different ways, we are happy to discuss alternative arrangements if the working pattern you are looking for is not specifically indicated.

Next Steps

Sound like the sort of role for you? Apply now.

By applying to this job, you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte employee experience globally.

At Deloitte, we know we’re at our best when we look out for one another; prioritise respect, fairness, development and wellbeing; foster an inclusive culture and embrace diversity in all forms. All qualified applicants will receive consideration for employment regardless of their background, experience, identity, ability or thinking style, and if you need assistance or an accommodation during the application process for accessibility reasons this is available upon request.

The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.