Overview
Risk Analyst Jobs in Toronto, Ontario, Canada at Dexian
Title: Risk Analyst
Company: Dexian
Location: Toronto, Ontario, Canada
Job Title – Third Party Risk Analyst
Period – 6 months
Location – Toronto, ON
Work mode : Hybrid – 3 days
Role Summary
We are seeking a Third Party Risk Analyst to support the organization’s Third-Party Risk Management (TPRM) program. This role is responsible for assessing and monitoring third-party risks across the vendor lifecycle, ensuring alignment with internal policies, regulatory expectations, and risk appetite.
The ideal candidate will have a strong background in third-party risk management, compliance, and audit, with experience conducting inherent risk assessments and supporting governance activities, including financial reviews, adverse media monitoring, and stakeholder training.
Key Responsibilities
Risk Assessment & Due Diligence
• Conduct inherent risk assessments to evaluate third-party risk based on service criticality, data sensitivity, and regulatory impact
• Perform financial due diligence, including analysis of supplier financial health and credit ratings
• Conduct adverse/negative media reviews to identify reputational, legal, or operational risks
• Assess overall supplier risk posture and identify areas requiring further due diligence or mitigation
• Provide training and guidance to contract owners and business stakeholders on third-party risk management practices
• Support the business in understanding their responsibilities for ongoing supplier monitoring and risk management
Ongoing Monitoring & Governance
• Conduct ongoing monitoring activities to ensure third parties maintain effective control environments
• Support governance activities, including periodic supplier reviews and documentation of risk posture
• Track and manage issues, risk findings, and policy exceptions, ensuring timely resolution
• Monitor supplier risk indicators, including:
o Financial performance
o Adverse media
o Emerging global risks
• Contribute to maintaining a consistent risk-based approach to vendor oversight
Compliance & Audit Support
• Ensure adherence to internal TPRM policies and standards
• Support regulatory compliance efforts (e.g., OSFI B-10 or equivalent guidelines)
• Assist with internal and external audits, including documentation and remediation tracking
• Maintain accurate and complete risk assessment documentation and audit trails
Stakeholder Engagement
• Partner with business units, procurement teams, and risk functions
• Communicate risk assessment outcomes and recommendations clearly to stakeholders
• Support contract owners in effectively managing day-to-day supplier risk and performance
Program Support & Continuous Improvement
• Contribute to the enhancement of TPRM processes, tools, and frameworks
• Support development of risk reporting, dashboards, and metrics
• Stay informed of emerging risks, regulatory changes, and industry best practices
Qualifications & Experience
• 2-5 years of experience in:
o Third-Party Risk Management / Vendor Risk
o Compliance, Audit, or Operational Risk
• Experience conducting:
o Inherent risk assessments
o Financial and adverse media reviews
• Strong understanding of:
o Vendor risk lifecycle (onboarding, monitoring, governance)
o Risk-based assessment methodologies
• Familiarity with regulatory expectations (e.g., OSFI B-10) is an asset
• Experience reviewing: SOC reports, ISO certifications, or equivalent control documentation (preferred)
Key Skills
• Risk assessment and analytical thinking
• Audit and compliance expertise
• Strong attention to detail
• Stakeholder management and communication
• Ability to interpret and assess control environments
• Training and facilitation skills
Preferred Qualifications
• Experience with TPRM tools/platforms (e.g., Archer, Ivalua, ProcessUnity)
• Understanding of cybersecurity and information risk concepts
• Exposure to emerging technology risks (e.g., AI, cloud)
Dexian is a leading provider of staffing, IT, and workforce solutions with over 12,000 employees and 70 locations worldwide. As one of the largest IT staffing companies and the 2nd largest minority-owned staffing company in the U.S., Dexian was formed in 2023 through the merger of DISYS and Signature Consultants. Combining the best elements of its core companies, Dexian's platform connects talent, technology, and organizations to produce game-changing results that help everyone achieve their ambitions and goals.
Dexian's brands include Dexian DISYS, Dexian Signature Consultants, Dexian Government Solutions, Dexian Talent Development and Dexian IT Solutions. Visit https://dexian.com/ to learn more. Dexian is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran status
