Third Party Risk Manager - £90K

Supplier risk isn’t a side issue anymore - it’s front and centre. If you thrive on shaping frameworks, navigating complex regulation and influencing how organisations manage third-party risk at scale, this role has your name on it.

We’re looking for a Third Party Risk Manager to lead the redesign and evolution of our Supplier Risk Operating Model, ensuring it’s fit for the future and aligned with fast-moving UK and European regulatory expectations.

This is a high-impact role with real visibility. You’ll act as the subject-matter expert for TPRM, combining strategic design with hands-on delivery across business-as-usual activity and major regulatory change.

You’ll:

• Lead the review, redesign and enhancement of the Supplier Risk Operating Model - from policies and processes to governance, segmentation and RACI models
• Assess current maturity, identify gaps and deliver clear, prioritised recommendations aligned to best practice
• Own BAU supplier risk regulatory compliance across UK and EU requirements
• Lead the DORA supplier risk workstream, including ICT third-party classification, oversight and regulatory readiness
• Act as the primary point of contact for European supplier risk engagement
• Lead supplier-related workstreams for major regulatory initiatives (including DyGIST and SS5/25)
• Partner closely with Risk, Legal, Compliance, IT, Security, Data Protection and Operational Resilience teams
• Provide expert challenge and advice on high-risk suppliers, material outsourcing and concentration risk
• Support senior leadership and governance forums with insight, analysis and clear recommendations
• Stay ahead of emerging risks, regulatory change and industry trends
• Step in during supplier incidents or disruptions to support crisis management

What you’ll bring:

You’re confident operating in complex, regulated environments and comfortable translating regulation into practical action.

You’ll have:

• Significant experience in Supplier / Third-Party Risk Management within Financial Services
• Deep expertise in supplier assurance, due diligence and audit
• Strong knowledge across key risk domains including cyber, information security, BCM, operational resilience, exit planning, GDPR, financial crime, modern slavery and sustainability
• A solid grasp of the regulatory landscape, including DORA, EBA Outsourcing Guidelines, SS1/21, SS2/21, SYSC 8, SS5/25, DyGIST and Operational Resilience frameworks
• Experience working with TPRM systems and supplier risk data (bonus points for FSQS or Agiloft)
• The confidence to influence senior stakeholders and challenge constructively

Great if you also have:

• Strong analytical skills and the ability to simplify complex regulation
• Experience designing and improving end-to-end processes
• Proven delivery in large-scale regulatory or transformation programmes
• Excellent planning, prioritisation and stakeholder management skills

You’ll be joining a business where third party risk genuinely matters - not just for compliance, but for resilience, reputation and long-term success. This is a chance to shape strategy, influence senior decision-making and leave a lasting mark on how supplier risk is managed across the organisation.

A competitive salary and benefits package is on offer, alongside the opportunity to work with engaged, knowledgeable teams tackling some of the most important risk challenges in Financial Services today.

Applicants must hold current and valid UK Right to Work