Vendor Management & Compliance Analyst

Sago is seeking a detail-oriented and proactive Vendor Management & Compliance Analyst to support our third-party risk management and compliance efforts. The role is responsible for managing the full lifecycle of vendor relationships-from onboarding and due diligence to contract reviews and ongoing compliance monitoring-ensuring all vendors meet internal policies, industry regulations and security standards.

Requirements

• Key Responsibilities
• Vendor Due Diligence & Onboarding
• Conduct security and compliance assessments for new vendors.
• Collect and review security questionnaires.
• Work cross-functionality with Compliance, IT and InfoSec during onboarding.
• Ongoing Vendor Management
• Maintain and update the vendor inventory and risk classification database.
• Track vendor contract renewals, SLAs, reassessments and ensure proper submission of invoices to Accounts Payable.
• Compliance & Risk Management
• Assist in developing and maintaining third-party risk management policies and procedures.
• Support internal and external audits related to vendor compliance.
• Stay informed on relevant regulations and industry standards (, ISO27001, GDPR, HIPAA & ISO42001)
• Requirements
• 2+ years of experience in vendor management, compliance, risk management procurement or InfoSec.
• Familiarity with security compliance frameworks such as ISO27001, GDPR, HIPAA &ISO42001
• Excellent verbal and written communication skills in English are required, with the ability to convey complex information clearly and professionally.
• Excellent organizational and negotiation skills.
• Knowledge of contract lifecycle management systems.

Benefits