Risk Tiering & Initial Analysis: Review incoming Third-Party Risk Assessment (TPRA) tickets via Jira to determine preliminary risk levels (No, Low, Medium, or High) based on spend, data types, and vendor location.
Multi-Disciplinary Review: Evaluate vendor responses across several key domains: Privacy, Corporate Compliance, ESG & Sustainability, and Health & Safety.
Risk Mitigation: Actively engage with vendors and internal Business Partners to resolve identified "red flags." This includes requesting clarifying information or supplemental questionnaires for medium and high-risk areas.
Cross-Functional Collaboration: Escalate complex risks to Legal and TPRA Leads; coordinate with the Contracts (PCA) team to ensure risk findings are reflected in final agreements.

Procurement Process Knowledge: A strong understanding of the Source-to-Pay lifecycle and how risk management integrates into the purchasing process.
Risk Methodology: Experience applying tiered risk frameworks to determine revalidation frequencies (e.g., annual for High, triennial for Low).
Analytical Rigor: Ability to review complex documents (e.g., Trust Centers, Security Portals) to find compliance gaps.
Professional Communication: Ability to use Slack, Gmail, and formal reminders to move unresponsive vendors through the process.
Attention to Detail: Precision in logging closure notes and revalidation dates to ensure audit readiness.
AI Research: Experience using AI tools to conduct independent research on vendor risk areas when vendor responses are lacking.
Global Compliance: Knowledge of specific international high-risk country lists and embargoed regions.
ESG Specialization: Familiarity with EcoVadis or CDP disclosure scorecards.

Procurement Operations Specialist

Key skills