Third Party Risk Analyst

We are looking for an outstanding team member to drive results and help build and operate a next generation Third Party Risk Management (TPRM) program on Smartsheet’s Risk team. In this role, you will support and collaborate with team members in the development and implementation of new TPRM capabilities aligned with our goals. 

This position reports to the Manager, Third Party Risk Management located in WA state and is remote-eligible.

You Will:

• Assess risk exposure related to third parties through enhanced risk management practices and help provide transparency into Smartsheet’s third party risk exposure.
• Support the day to day execution of the Information Security Risk Assessment process for existing and potential vendors.
• Document, organize, and track activities that result from vendor security assessments.
• Gather and organize vendor review results and data to support risk reporting and monitoring processes.
• Identify process improvement initiatives to support the Vendor Risk Management Program and related activities, and help implement and improve on the program.
• Support additional activities related to the broader risk program and team.
• Have an understanding of emerging technologies including, but not limited to, mobile and cloud technology.

You Have:

• 2+ years prior work experience in risk management, information security, third party risk management, audit and/or compliance efforts.
• 2+ years prior work experience with the review of vendors, systems, or solutions as part of an internal risk assessment, procurement process, or other program.
• 2+ years practical experience with one or more risk or other industry regulatory frameworks (NIST, ISO, COSO, COBIT, AICPA TSP/SOC, PCI, etc).
• Experience with vendor risk management tools (e.g. Coupa, Archer, AuditBoard)
• Experience assessing or reviewing SOC reports, penetration testing results, or other security control attestations.
• Experience working with operational risks across multiple lines of business, legal entities, and/or jurisdictions.
• Ability to build strong internal relationships.
• Ability to assess the potential risk of an escalated issue and use business skills to evaluate impact and alternatives.
• Effective judgment, decision making, and critical thinking skills.
• Adaptability to the changing landscape of regulatory compliance requirements.

This full-time position reports to a Manager of Solution Services.

You Will: 

• Lead multiple concurrent engagements to implement Smartsheet across a variety of client industries and use cases, ensuring your clients are gaining the most value from the Smartsheet platform
• Collaborate with customer stakeholders to drive timelines, manage scope, and change requests 
• Design, demonstrate, and build Smartsheet solutions that fit within new & existing customer business needs
• Gain and maintain deep technical knowledge of Smartsheet including premium products
• Identify product and services expansion opportunities for Smartsheet with the customer's user base
• Serve as an advisor on best practices and capabilities of the Smartsheet platform at scale across a variety of industries and business functions
• Meet or exceed key performance indicator (KPI) targets aligned to the role  
• Accomplish other tasks as assigned

You Have: 

• Bachelor’s degree or equivalent combination of relevant work experience and education (minimum 2 years)
• Hands-on working experience in the configuration, customization, and implementation of SaaS applications
• Project Management skills: timeline, scope management, project execution.           
• Strong communication skills with the ability to explain technical subjects to non-technical end user personnel
• Experience with problem solving and risk resolution
• Highly motivated and resourceful team-player
• Willing to travel periodically (up to 10%) based on customer and business need

Perks & Benefits:

• Fully paid Health & Life insurance for full-time employees and family members
• Equity - Restricted Stock Units (RSUs) for eligible roles
• Monthly stipend to support your work and productivity
• Asociacion Solidarista with employee and employer contributions as well as potential alliances with entities such as universities, gyms, etc.
• 12 days paid Vacation + Flexible Time Away Program
• 20 weeks fully paid Maternity Leave
• 12 weeks fully paid Paternity/Adoption Leave
• Personal paid Volunteer Day to support our community
• Opportunities for professional growth and development including access to Udemy online courses
• Company Funded Perks including a counseling membership and your own personal Smartsheet account
• Teleworking options from any registered location in Costa Rica (role specific)