Third Party Resilience Manager

About us

Join one of the UK’s fastest growing and award-winning banks. We are a team of ambitious, passionate, hardworking, and committed people who have successfully created and launched one of the UK’s newest specialist property finance banks. As we embark on an exciting journey of growth, we are seeking exceptional new team members who possess both the ambition and drive to contribute to our vision. At GB Bank, we believe that career progression should not only be achievable but accelerated, enabling our employees to reach their potential in a supportive and dynamic atmosphere. Our environment is fast-paced and collaborative, where your efforts are recognised, rewarded, and make a tangible impact. We take pride in fostering an open and inclusive culture that not only embraces change but also encourages continuous learning and professional development.

In this role, you will:

The Third-Party Resilience Manager is responsible for the end-to-end lifecycle management of third-party suppliers and outsourcing arrangements, ensuring they deliver value, meet service expectations, and comply with regulatory and internal governance requirements. A core focus is to embed third-party resilience into Operational Resilience, strengthening the Bank’s ability to deliver its Important Business Services (IBS) within impact tolerances by improving third-party dependency management, mapping, scenario testing, contingency/exit readiness, supplier incident coordination, and disruption communications. This role expands the capacity of a lean Operational Resilience function by building sustainable policy, standards, process documentation, evidence and MI across supplier oversight and third-party resilience.

Key areas of responsibility:

• Third-Party Governance, Policy, Standards & Process Documentation
  • Support enhancement of the Bank’s Third-Party / Outsourcing Policy, ensuring alignment with regulatory expectations and Operational Resilience requirements.
  • Create and maintain standards and process documentation across the supplier lifecycle (onboarding, segmentation, due diligence, approvals, contracting, monitoring, SRMs, MI, change control, offboarding).
  • Implement and maintain supplier segmentation/tiering (e.g., critical/material/high risk), reflecting IBS dependency and risk.
  • Define and embed a clear Supplier Owner model (RACI), including accountabilities for SRMs, risk reviews, issues/escalation, and action closure.
• Supplier Onboarding & Due Diligence (risk-based)
  • Lead/coordinate onboarding for new suppliers, ensuring risk-based due diligence and cross-functional approvals (Procurement/Legal/Risk/Compliance/InfoSec/Tech/Operations).
  • Ensure due diligence appropriately covers financial stability, sanctions/regulatory screening, cyber & information security, data protection, business continuity and operational resilience capability.
  • Ensure onboarding outcomes are documented to an audit-ready standard and reflected in the supplier register and IBS mapping where applicable.
• Contracting, Commercial Management & Renewals
  • Oversee supplier contracts through their lifecycle (renewals, renegotiations, variations, termination).
  • Ensure contracts include appropriate protections (where relevant): audit/access rights, regulator access, sub-outsourcing controls, resilience/BC requirements, incident notification expectations, exit/termination provisions.
  • Maintain forward visibility of renewal windows, obligations and dependencies via tracking and reporting.
  • Review invoices and cost trends where required; provide commercial insight and identify efficiency/value opportunities.
• Ongoing Monitoring, Supplier Service Reviews & MI
  • Design and run regular supplier oversight routines (service reviews) based on supplier tiering and IBS criticality; set and evolve cadence as part of framework implementation.
  • Monitor performance against SLAs/KPIs and risk expectations; track and drive remediation actions.
  • Produce management MI that evidence supplier performance, compliance, issues and emerging risks; elevate material issues appropriately.
• Operational Resilience Enablement (IBS, Mapping, Scenario Testing, Planning)
  • Maintain strong linkage between supplier governance and IBS mapping, ensuring third-party dependencies (people/process/technology/information) are sufficiently understood to identify vulnerabilities and support scenario design.
  • Trigger mapping updates based on material supplier change, incidents, contract changes or operating model change.
  • Coordinate third-party participation in resilience scenario tests (desktop/simulation/live as proportionate), capturing evidence, assumptions, lessons learned and follow-up actions.
  • Own/co-own supplier related items in the Vulnerabilities log, ensuring third-party actions are delivered and evidenced.
  • Maintain and test contingency/exit plans for critical suppliers supporting IBS delivery, ensuring they are practical against impact tolerance needs.
• Supplier Incident Management, Crisis Support & Communications
  • Coordinate supplier related incidents: triage, escalation, supplier engagement, IBS impact assessment and action tracking through resolution.
  • Ensure supplier notification and escalation expectations are defined, workable and integrated into disruption response.
  • Support resilience communications readiness by ensuring supplier roles, contacts, templates and channels are maintained and exercised for third-party outages.
• Regulatory Accountabilities
  • Compliance with FCA and PRA outsourcing and third-party risk requirements.
  • Adherence to Operational Resilience policy and Important Business Services mapping.
  • Proper documentation of supplier oversight activities.
  • Maintenance of audit trails for regulatory review.
  • Protection of customer data in line with UK GDPR and Data Protection Act.
  • Oversight of concentration risk and systemic risk exposure within supplier portfolios.

Key outcomes

• Essential
  • Experience in supplier/vendor management, third-party risk, outsourcing governance, procurement/commercial oversight, operational risk or similar roles.
  • Excellent stakeholder management; able to influence and coordinate across multiple functions and external partners.
  • Strong analytical/reporting capability (Excel essential; Power BI/Tableau desirable) and ability to create meaningful MI.
  • High attention to detail across due diligence and contract review; strong organisation and delivery discipline.
• Desirable
  • Familiarity with UK outsourcing/third-party expectations and operational resilience practices (IBS, mapping, scenario testing, impact tolerances).
  • Experience supporting supplier incidents, crisis response or resilience exercises.

A bit about you – You are/have:

• Essential
  • Experience in supplier/vendor management, third-party risk, outsourcing governance, procurement/commercial oversight, operational risk or similar roles.
  • Excellent stakeholder management; able to influence and coordinate across multiple functions and external partners.
  • Strong analytical/reporting capability (Excel essential; Power BI/Tableau desirable) and ability to create meaningful MI.
  • High attention to detail across due diligence and contract review; strong organisation and delivery discipline.
• Desirable
  • Familiarity with UK outsourcing/third-party expectations and operational resilience practices (IBS, mapping, scenario testing, impact tolerances).
  • Experience supporting supplier incidents, crisis response or resilience exercises.

What we can offer you:

• 8% company pension contribution and 3% individual contribution (which you can opt to increase)
• 25 days holiday every year plus bank holidays on top
• Private medical cover with BUPA - includes no excess + you can add family through salary sacrifice
• Death in service at 4 x base salary with Aviva
• Mental health support - through a helpline and counselling sessions
• Enhanced maternity, paternity and adoption leave

Professional Qualifications

• Degree/Higher Education Institute (HEI) qualifications are favourable
• Professional accreditations from recognised industry bodies & continual commitment to professional development
• Significant demonstrable experience in relevant roles and organisations is favourable

What else do I need to know?

• Location: Mayfair, London (4+ days in the office)
• Salary: Competitive
• Hours: 35 Hours per week

We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates, regardless of their age, sex, race, disability, sexual orientation, gender reassignment, religion or belief, marital/civil partnership status, or pregnancy and maternity. At GB Bank, we value privacy and data protection rights. We have longstanding data protection culture and promote robust ethical standards in data management. Please read our Privacy Notice in relation to our recruitment activities before submitting your application to work with us.