IT - Data Analyst I

Genesis10 is currently seeking a Data Analyst I for a 6 month contract role with our client in the retail industry in Richfield, MN. This role is hybrid.

Tell us about your department:
The Third-Party Risk Management team evaluates the overall risk posture of all our Goods Not For Resale (GNFR) vendors. This includes assessing responses to our vendor risk questionnaires and comparing them against the expectations outlined in our Vendor Privacy and Security Policy (contract addendum).

While Information Security remains a primary focus, our reviews also encompass other critical risk domains such as business continuity and disaster recovery (BCDR), financial stability, ethics and legal compliance, labor and environmental practices, and brand/reputational risk. We leverage both internal and external subject matter experts to support our assessments and address any concerns that arise.

When we identify gaps between contractual obligations and vendor performance-particularly in non-Information Security areas-we document these as findings. These findings require remediation by the vendor and must be communicated effectively to business owners, Procurement, and the vendors themselves. As such, analysts must be adept at tailoring communications for diverse audiences.

Our team collaborates closely with Information Security, other Enterprise Risk and Compliance (ERC) teams, Procurement, Legal, and business stakeholders to ensure a comprehensive and aligned approach to third-party risk management.

As an Analyst on the Third-Party Risk Management (TPRM) team, you'll help protect the interests of Client and its customers by identifying areas of risk or reputational harm arising from third party partnerships. You'll play a critical role to ensure that customer, company, and employee information is secure. You'll also enable technology and business teams throughout Client to innovate, drive sales and provide superior customer care by using a multi-disciplinary risk approach. In this role, you'll review vendor-returned assessments, identify gaps in vendor controls and support program documentation.

Project Description:
This initiative is designed to support the Third-Party Risk Management team by conducting comprehensive risk assessments of both new and existing Goods Not For Resale (GNFR) vendors. The primary objective is to evaluate vendor risk profiles and ensure alignment with our organizational standards and policies.

What you'll do

• Assist in evaluating and categorizing third-party relationships as part of the risk assessment process
• Analyze completed risk assessments and supporting documentation to ensure vendor compliance with Client policies and standards
• Analyze data to provide insights for risk evaluation and decision-making
• Identify and communicate any gaps in vendor controls to the business team and third-party; develop and ensure completion of remediation efforts
• Maintain organized and up-to-date documentation related to third-party risk assessments and TPRM team processes
• Participate in training sessions and workshops to enhance your knowledge and skills

Basic qualifications

• 1 year of experience with one or more of the following areas: labor, environment, financial, business resiliency, bodily injury, compliance/legal or information security
• Basic familiarity with risk management concepts and principles
• Microsoft Office skills (e.g., Outlook, Excel, PowerPoint, Word)
• 2 years of experience performing risk assessments or audits
• Minimum 2+ years of experience in the TPRM risk category Information Security
• Familiarity with the Payment Card Industry Data Security Standard (PCI DSS), NIST Cyber Security Framework (CSF), and ISO 27000 series
• Strong interpersonal and communication skills with the ability to develop productive working relationships with technical and non-technical teams
• Ability to work in a fast-paced environment within a team
  

Preferred qualifications

• Previous experience in risk (e.g. previous jobs, internship, coursework, advanced degree)
• 1 year of experience as an auditor or consultant with a focus on assessing third party risk
• Experience using eGRC tools (e.g. Archer, Riskonnect)
• Ability to navigate ambiguity in a fast-paced environment
• Detail oriented, curious, questioning
• Willingness to adapt, absorb new information, and stay updated on industry best practices
• Certifications such as Security+/CISSP/CISA are a plus
• Ability to develop business relationships and trust and work collaboratively in a team
• Effective communication skills, including ability to use office communication tools effectively (including chat, email, in person)
• Experience in the TPRM risk categories Business Resiliency, Finance, Ethics/Compliance, or Insurance.
• Ability to work with a start-up mentality inside of a large organization to provide security recommendations with the business strategy and goals in mind.

Compensation:
Hourly W2 pay: $33.00 to $37.00/hour

We have access to additional contract, contract-to-hire, and direct hire positions with various rate ranges.

If you have the qualifications described and are interested in this exciting opportunity, apply today!

Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year-in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.

Benefits of Working with Genesis10:

• Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
• The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
• Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
• Medical, Dental, Vision
• Health Savings Account
• Voluntary Hospital Indemnity (Critical Illness & Accident)
• Voluntary Term Life Insurance
• 401K
• Sick Pay (for applicable states/municipalities)
• Commuter Benefits (Dallas, NYC, SF, and Illinois)
• Remote opportunities available

For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.

Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.