At a Glance
- Tasks: Lead third party risk management and ensure effective risk controls across the organisation.
- Company: Join a leading financial services firm with a strong focus on risk management.
- Benefits: Competitive salary, comprehensive benefits, and opportunities for professional growth.
- Other info: Opportunity to lead a high-performing team and shape risk culture.
- Why this job: Make a significant impact by managing third party risks in a dynamic environment.
- Qualifications: Extensive experience in third party risk management and strong stakeholder engagement skills.
The predicted salary is between 80000 - 120000 £ per year.
Requirements
- Significant experience in third party risk management, outsourcing risk, or operational risk within a regulated financial services or large-scale technology environment.
- Strong understanding of third party risk frameworks, lifecycle management, and regulatory expectations.
- Proven experience embedding third party risk controls into technology delivery and operational processes.
- Demonstrated ability to engage and influence senior stakeholders within a first line ownership model.
- Experience leading teams and operating effectively within a matrixed organisation.
- (Desirable) Experience operating within a large financial services enterprise with global third party arrangements.
- (Desirable) Exposure to cross-border outsourcing and global supplier landscapes.
- (Desirable) Understanding of dependencies between third party risk, operational resilience, data protection, and technology risk.
- Senior-level stakeholder engagement and influence.
- Strong ownership and accountability mindset.
- Pragmatic, delivery-oriented approach to risk management.
- Ability to balance business enablement with robust risk and control discipline.
- Clear and confident communication at executive and governance levels.
What the job involves
The Director, Group Third Party Risk Management – First Line Risk & Control is accountable for the ownership, implementation, and effective operation of the firm’s third party risk management (TPRM) framework across the group. Operating as a senior first line leader, the role ensures that risks arising from third parties — including outsourcing arrangements, suppliers, vendors, non-supplier third parties, and strategic partners — are identified, assessed, managed, and monitored throughout the full third party lifecycle.
The role acts as the primary first line owner of the group third party risk framework, working in close partnership with business leaders, business-aligned third party management officers, Procurement, Legal, Information Security, Operational Resilience, Data Privacy, and enterprise First Line GRC teams. The role also provides leadership to the first line third party risk community, embedding a strong risk culture, clear accountability, and consistent practices aligned to enterprise expectations.
First Line Ownership of Third Party Risk:
- Own group-level oversight of third party risks, ensuring risks are identified, assessed, mitigated, and monitored in line with firm standards and regulatory expectations.
- Accountable for the effective implementation and embedding of the firm’s third party risk management framework, policies, and standards across the group.
- Ensure third party risk considerations are integrated into business decision-making, technology delivery, and change activity.
- Act as the accountable first line owner for group third party risk controls, issues, and remediation actions, providing subject matter expertise to business teams.
Third Party Lifecycle Management:
- Ensure robust third party risk assessments are completed at onboarding, renewal, material change, and exit stages.
- Oversee due diligence activities covering financial, operational, technology, cyber, data, privacy, resilience, and regulatory risk domains.
- Ensure contractual risk requirements are defined, implemented, and monitored in partnership with Procurement and Legal.
- Maintain oversight of material and high-risk third parties, including concentration, dependency, and substitutability risks.
Governance, Monitoring and Reporting:
- Chair and contribute to relevant first line governance forums covering third party and outsourcing risk.
- Define and maintain group-level third party risk metrics, key risk indicators, and management information, ensuring accuracy and transparency.
- Oversee ongoing monitoring, performance management, and issue remediation for critical and high-risk third parties.
- Ensure timely escalation of material third party incidents, breaches, or control failures to senior management and appropriate governance committees.
Stakeholder Engagement and Business Enablement:
- Act as the senior first line risk partner to technology and business stakeholders on third party risk matters.
- Work closely with Procurement, Legal, Information Security, Data Privacy, Operational Resilience, and Enterprise Risk teams to ensure joined-up risk management.
- Support regulatory engagements, audits, and internal assurance activity relating to third party and outsourcing risk.
- Drive awareness, ownership, and accountability for third party risk management across delivery and operational teams.
Leadership:
- Build and lead a high-performing third party risk team aligned to the First Line GRC operating model.
- Set clear objectives, performance expectations, and development plans aligned to enterprise priorities.
- Act as a role model for effective first line risk ownership and pragmatic risk management.
Director of Group Third Party Risk in London employer: M&G
As a leading employer in the financial services sector, we offer a dynamic work environment that fosters innovation and collaboration. Our commitment to employee growth is evident through comprehensive training programmes and leadership development opportunities, ensuring that our team members thrive in their careers. Located in a vibrant city, we provide a supportive culture that values diversity and encourages a strong sense of community, making us an excellent choice for professionals seeking meaningful and rewarding employment.
StudySmarter Expert Advice🤫
We think this is how you could land Director of Group Third Party Risk in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the financial services and tech sectors. Attend industry events or webinars where you can meet potential employers and showcase your expertise in third party risk management.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of third party risk frameworks and lifecycle management. Be ready to discuss how you've influenced senior stakeholders and embedded risk controls in past roles.
✨Tip Number 3
Showcase your leadership skills! When speaking with potential employers, highlight your experience leading teams and operating within matrixed organisations. They want to see that you can drive a strong risk culture.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Director of Group Third Party Risk in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the specific skills and experiences mentioned in the job description. Highlight your significant experience in third party risk management and any relevant frameworks you've worked with. We want to see how you fit into our world!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about third party risk management and how your background aligns with our needs. Don’t forget to mention your ability to engage senior stakeholders – that’s a biggie for us!
Showcase Your Leadership Skills:Since this role involves leading teams, make sure to highlight your leadership experience. Share examples of how you've built high-performing teams or influenced others in a matrixed organisation. We love seeing candidates who can inspire and drive change!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team at StudySmarter!
How to prepare for a job interview at M&G
✨Know Your Third Party Risk Frameworks
Make sure you brush up on the various third party risk frameworks and lifecycle management processes. Be ready to discuss how you've embedded these controls in past roles, especially in technology delivery and operational processes.
✨Engage with Senior Stakeholders
Prepare examples of how you've successfully engaged and influenced senior stakeholders. Think about specific situations where your communication skills made a difference in risk management decisions.
✨Showcase Your Leadership Skills
Be ready to talk about your experience leading teams within a matrixed organisation. Highlight how you've built a strong risk culture and set clear objectives for your team, aligning them with enterprise priorities.
✨Balance Risk and Business Enablement
Demonstrate your ability to balance robust risk management with business enablement. Prepare to discuss how you've integrated third party risk considerations into business decision-making and technology delivery.
