Skip to main content



The health and safety of our colleagues and candidates for employment are our highest priority. Accordingly, Citi continues to monitor the COVID-19 situation closely. We have implemented precautionary measures across our firm globally, including conducting all candidate interviews virtually on a temporary basis until further notice where needed.

Global Third Party Risk Oversight Manager

Job Req ID 22577134 Location(s) Rutherford, New Jersey; Wilmington, Delaware; Jacksonville, Florida; Tampa, Florida; New York, New York; Irving, Texas Job Category Risk Management
Apply Now

Job Description:


The mandate of the Independent Operational Risk Management function to drive comprehensive and consistent practices designed to identify, measure, monitor, report and manage risks while promoting the implementation of actions to address root causes which may lead to unintended losses.  This position will be part of a high-caliber team challenging Citi’s effort to mitigate Third Party Operational Risk.

As a member of the broader Operational Resilience and Third Party Risk team within Operational Risk Management, the role applicant will be a proactive and pragmatic risk manager who understands the risk of supply chain, third party, and outsourcing exposure and can expertly articulate views, provide challenge and risk opinions at various levels in the organization.  Excellent communication skills are required to guide, influence and build relationships across all line of defense. The role also requires attention to detail and comprehensive experience in all aspects of Third Party Risk Management and the Third Party Lifecycle.

The role is to serve as an Independent Third Party Risk leader focused on oversight of Citi’s Global Third Party Risk Management Control/ Due Diligence/ Risk Assessment framework.  Primary responsibilties include:

  • Implement program to challenge effectiveness of Citi’s Third Party Risk Control and Due Diligence program at the Enterprise level
  • Oversee challenge of Third Party Risk Due Diligence assessment considerations and tiering, assessment execution
  • Oversee challenge of application/execution of assessments by type of vendor service (SaaS, Business Process Outsourcing, etc.), both for new and existing services (on-going monitoring)
  • Oversee challenge of enterprise processes for accepting risk associated with adverse assessment outcomes
  • Partner with relevant ORM SMEs to challenge methodology and design of specific assessment (TPISA, Cob, Fraud, etc.)
  • Challenge adoption of evolving risks (Cloud, Environmental/Social Risks, etc.) within the assessment program

Develop methodology for assigning aggregate control design and effectiveness rating across various assessment based on outcomes

Key Responsibilities:


  • Conduct and participate in various end to end third party risk management reviews across the global portfolio
  • Support development of third party risk related strategy, policy, projects and analytics
  • Support Third Party thematic and product oversight reviews as required
  • Support Third Party Risk Oversight tools development
  • Ensure Risk Governance framework operates efficiently, and operational losses are operating within the defined Risk Appetite parameters
  • Develop, implement, and analyze MIS reports to identify areas of excessive risk and to ensure that mitigation efforts are having the desired effect(s).
  • Analyzes operational risk data (typically losses, metrics or assessment results) to identify areas of excessive risk and to ensure that mitigation efforts are having the desired effect(s).
  • Guide and assist in the implementation of sound and effective third party risk processes across the enterprise, sectors, and regions
  • Provide counsel on third party related risk issues, ensuring an independent review of policy compliance. 
  • SME challenge in Third Party risk-related scenarios
  • Collaborate with other horizontal Risk SMEs (Compliance Risk, Credit Risk, Fraud, Technology, etc.) as needed to manage risks across the Third Party Risk Lifecycle
  • Aid in the development of risk analytics and reporting related to Third Party lifecycle and concentration risk
  • Guide and assist in the implementation of sound and effective Third Party Risk processes and monitoring across all sectors and regions
  • Provide support and advise on Third Party Risk management related policies, ensuring an independent review of policy compliance. 
  • Facilitate and disseminate best practices across all LoBs


  • Assist Third Party Risk Oversight management and their teams to manage staff including training and career development plans and to ensure high morale among prevention, detection, and recovery staff
  • Champion third party risk awareness and best practice sharing with various stakeholders and aid in the development of third party risk management training modules.
  • Raise the level of third party risk awareness among global, sector, and country third party risk officers and other related staff.


  • 5-10 years of in Operational Risk Management, Third Party Risk Oversight, Information Security, or Business Continuity/Operational Resiliency
  • Skilfull understanding of Third Party Risk management lifecycle and risk assessment processes
  • Thought leadership and clarity in presenting ideas to senior management.
  • Proven technical knowledge of Third Party Risk principles and processes, to include up to date knowledge of current technology solutions, including Cloud and hybrid third party solutions
  • Knowledge of regulatory requirements underpinning the Third Party Risk Management and Outsourcing Lifecycle (OCC/FRB/EBA/PRA/MAS, etc)
  • Demonstrated analytical skills with follow-up and problem-solving capability.



  • Ability to work effectively with individuals with diverse backgrounds and positions
  • Ability to work independently
  • Ability to communicate complex analytical ideas effectively and persuasively
  • Ability to influence and establish relationships with key stakeholders from remote locations
  • Self-starting with the ability to multitask and prioritize

Functional Background:

  • Project management
  • Understanding of Financial Servcies systems and processes
  • Policy formulation

Technical Skills:

  • Deep understanding of operational, third party and technology risk management and assessment
  • Thorough understanding of global thrid party risk practices and industry trends
  • Understanding and management of various drivers and metrics and the impact on Citi’s Third Party Risk framework 


  • Strong business drive and ability to mobilize organizational commitment and support for global and regional programs
  • Regulatory Risk and Compliance
  • Leadership skills and ability to deliver results, working with cross-functional and virtual teams
  • Good business understanding and working knowledge of Risk, Operations and Technology


  • Undergrad in Business Administration, Finance, Risk, or any other computationally intensive discipline.
  • Graduate degree or TP certification is a plus.

Exceptional candidates who do not meet these criteria may be considered for the role provided they have the necessary skills and experience.


Job Family Group:

Risk Management


Job Family:

Operational Risk


Time Type:

Full time


Primary Location:

Rutherford New Jersey United States


Primary Location Salary Range:

$125,540.00 - $188,310.00


Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting


Effective November 1, 2021, Citi requires that all successful applicants for positions located in the United States or Puerto Rico be fully vaccinated against COVID-19 as a condition of employment and provide proof of such vaccination prior to commencement of employment.

Apply Now
  • Join our team
    of 220,000+
    strong diverse employees

  • Socially minded employees volunteering in communities across 90 countries

  • Meaningful career opportunities thanks to a physical presence in over 95 markets

We foster a culture that embraces all individuals and encourages diverse perspectives, where you can make an impact and grow your career. At Citi, we value colleagues that demonstrate high professional standards, a strong sense of integrity and generosity, intellectual curiosity, and rigor. We recognize the importance of owning your career, with the commitment that if you do, we promise to meet you more than half way.

Saved Jobs

You have no saved jobs

Previously Viewed Jobs

You have no viewed jobs