Manager (Indirect Procurement - Third-Party GRC)

Manager (Indirect Procurement - Third-Party GRC)

NTUC FairPrice
5-8 years
Not Specified

Job Description

As Singapore's leading supermarket retail player and a household name close to all, we have grown with you over the years. It is now your turn to grow an exciting new career and fulfil your aspirations with us. Join us as we embark on a journey to make lives better for our customers, community, environment and employees.
At NTUC FairPrice, we offer you more than just a job. We are committed in giving our employees a rewarding career through comprehensive development opportunities. We promise a wonderful workplace culture with ample opportunities for growth at different levels of your career. Every of our 10,000 employees across Singapore is important.
If the prospect of working in an organization at the forefront of retail technology and innovation excites you, look no further.
Grow your career with us today and make a difference.
This position reports to the Head of Indirect Procurement. The ideal candidate is responsible for supplier verification, risk control, and performance evaluation work in order to ensure compliance purchases across all NTUC Social Enterprise (SE). This role is also responsible for oversight of all third-party relationships across NTUC SE, ensuring robust and consistent management of third-party risk (from supplier risk management to supplier performance management) and acting as the conduit between the NTUC SEs businesses and relevant risk stewards as the business Third-Party Risk.
Job Responsibilities
  • Responsible for vendor verification, identifying risk and providing risk management actions during the vendor selection process
  • Develop best practices and effective governance for centre-led procurement team
  • Develop KPIs, scorecards, metrics, reports that will drive the improvement of vendor performance and service deliverables.
  • Develop KRIs to ensure appropriate oversight and action is taken, as well as reporting key metrics into relevant risk forums
  • Setup and manages Third-Party risk assessment results, develops third party security requirements, drafts contract language and third-party reports, and owns the list of approved vendors
  • Manage Third-Party compliance and audit findings reporting, providing support to compliance assessments.
  • Liaise with all relevant stakeholders to identify, track and provide remediation guidance for new projects, services and/or third-party contracts in terms of information security assurance
  • Identify regulatory, legislative, and industry specific compliance requirements and define controls that can be used to meet those requirements
  • Build relationships with multi-functional teams and work closely will the following people/teams:
    • Legal, IT, Cybersecurity, Enterprise Risk, Data Protection & Project Management
  • Perform any other related duties as required or assigned

  • Bachelor's degree or above major in business management or related area
  • 5+ years of working experience in risk management, vendor management or procurement
  • Experience working for a consultancy or in a risk management compliance, contract management, procurement function in-house.
  • Competent in the usage of modern GRC tooling
  • Ability to work in a dynamic, fast changing environment
  • Ability to promote a people focused culture that encourages the use of one's own initiative to own and resolve issues

Job Details

Employment Types:



Similar Jobs

People Also Considered

Career Advice to Find Better

Simple body text this will replace with orginal content