Job Overview:

The Vendor Third-Party Advisor is responsible to collaborate with a variety of Cardinal Health business units to discover new vendors being considered for use within Cardinal Health and evaluate the risk of that relationship.  This position will be required to review IT risk assessments, third-party certification and audit reports against a given vendor.  Upon this review, the Vendor Third-Party Advisor will be required to provide layman’s terms descriptions of issues to the business as well as provide an overall opinion of risk to Cardinal Health.  Based on the business’s decision to move forward with a given vendor, this role is also responsible to work with the vendor to close risk gaps to protect Cardinal Health and its data.  This individual is required to quickly learn the various Cardinal Health business units, work autonomously and to escalate issues as they are encountered to meet timelines set forth by the business.

The Vendor Third-Party Risk Advisor will be a dedicated resource managing vendor analysis for all facets of Cardinal Health.  Key interactions points will exist within Legal, Compliance and Indirect Procurement. 

This position is a day shift position that will work with US and Manila based teams and our eGRC (Archer) Vendor Third Party risk portal. 

Key responsibilities include:

Solid knowledge in the areas of risk-based reporting across various dimensions (information security, business continuity, etc.), data analysis, KRIs, etc.,Solid knowledge into technology regulatory requirements in the US and/or regions representedAssess new or changing regulations to advise on adjustments required within TPRM programEvaluate and monitor third party risks to ensure risks are appropriately identified, addressed and risk ratedConduct due diligence and timely executions of third-party risk assessments to evaluate controls of third-party suppliersFacilitates the analysis of, and makes recommendations towards, effective strategies to address vendor risksCommunicate identified gaps and recommended solutions, or compensating controls, to business managers as well as various members of leadershipSupport TPRM leadership with additional risk management program activitiesUnderstand when issues need to be escalated and/or communicated to Cardinal Health leadershipStay aware of best practices for risk analysis processes and functions from an industry and strategic standpointKnow emerging trends and remain vigilant in awareness of new threatsMediate between vendors and business leaders utilizing knowledge of IT risk within the organizationDemonstrate excellent listening, communication, and facilitation skills

Qualifications:

Bachelor’s Degree in related field or equivalent work experience4+ years experience in related field preferred2+ years’ experience in risk management or auditHigh proficiency with data analysis and business intelligence tools, i.e. Microsoft Excel, Power BI, Tableau, etc.Ideal candidate will have excellent communication skills with associates at all levels across the enterprise and the ability to influence others without authorityPrior experience managing risk within third parties, specifically data risk awareness and ability to communicate potential risk impacts a plusPrior experience in contract negotiation a plus

What is expected of you and others at this level:

Demonstrates consistent growth in skills and effectiveness in shaping and influencing strategic directionApplies comprehensive knowledge and an understanding of risk, compliance and potential impacts to provide approval of vendors for use within Cardinal HealthPropose technical solutions to a wide range of problems to both allow the vendor to meet the businesses needs and minimize exposure of Cardinal Health and its dataWork directly with team lead and legal counsel to recommend proper technical contract languageMay contribute to the development of policies and procedures

Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply.

Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law.

Apply