Third-Party Due Diligence Associate

• Support Risk Assessors in executing third‑party due diligence activities, including reviewing TPQs, screening documentation, and tracking assessment progress.
• Coordinate communication between internal teams, engagement owners, and third parties to ensure timely completion of assessments and follow‑ups.
• Assist in categorising risks across operational, financial, cyber, and privacy domains and help document remediation requirements.
• Maintain accurate and compliant documentation within assessment tools such as Aravo, D&B Risk Analytics, and other risk platforms.
• Prepare structured reports, summaries, and risk scorecard interpretations to support risk acceptance or remediation decisions.
• Monitor pending assessments, elevate overdue items, and support overall workflow efficiency across the TPRM team.
• Ensure compliance with internal policies, audit standards, and data protection requirements during the assessment lifecycle.
• Collaborate with Procurement, Legal, and Risk Domain Partners to support onboarding, contract reviews, and mitigation alignment.
• Provide administrative and logistical support for onboarding and training new assessors, helping standardise assessment best practices.
• Contribute to process improvements, documentation updates, and enhancement of TPRM guidelines and templates.

• Bachelor's degree in Business, Finance, Risk Management, Compliance, or a related field preferred.
• 1‑3 years of experience in risk management, compliance, procurement governance, vendor onboarding, or similar administrative/coordination roles.
• Familiarity with third‑party due diligence processes, risk assessment frameworks, and regulatory compliance requirements.
• Understanding of cybersecurity, privacy regulations, and information security standards is an advantage.
• Experience with risk assessment or workflow platforms (e.g., Aravo, D&B Risk Analytics) preferred.
• Strong data interpretation skills with the ability to analyse risk scorecards and metrics.
• Proficiency in documentation, reporting, and maintaining audit‑ready records.

Our client is a global healthcare company with a local presence in Malaysia. They bring innovative medicines and medical solutions across therapeutic areas. Through its local entity and regional shared‑services centre, the organisation supports operations like business services, supply‑chain, and back‑office functions for the Asia‑Pacific region. Known for a supportive workplace culture and commitment to quality and healthcare access, it continues to deliver trusted treatments and contribute to improving health outcomes in the region.
Opportunity to work in a collaborative environment. Be part of a dynamic and fast‑paced organisation.

• Contract: 1 Year
• Covered medical expenses
• Career growth in a fast‑expanding governance and compliance function, with exposure to global risk standards, regulatory frameworks, and enterprise‑level decision making.
• Hands‑on experience with industry‑leading risk assessment platforms (e.g., Aravo, D&B Risk Analytics) and the opportunity to deepen your skills in due diligence, cyber risk, data privacy, and supplier compliance.
• Cross‑functional visibility, working closely with Procurement, Legal, Cybersecurity, Privacy, and Business Risk teams across regions.