My client is looking for a Head of Third-Party Risk Management to be responsible for leading and overseeing the Group's third-party risk management program.
This is a brand new role for the organisation and the successful candidate will be responsible for building the function from the ground up and must come from a security risk background
The role will involve the development, implementation, and continuous enhancement of strategies and processes to identify, assess, monitor, and mitigate information security risks associated with the organisation's third-party relationships. The role requires close collaboration with internal stakeholders across departments such as Procurement, Legal, IT, Compliance, and Market Units to ensure that third-party information security risks are effectively managed in alignment with enterprise risk management framework.
The successful candidate will need to have previously worked in a large complex organisation where there are multiple business units, ideally within FS or regulated environments.
You will need to have;
- Bachelor's degree in information technology, computer science, risk management, business administration or a related field.
- Proven track record of developing and leading successful TPRM programs in a complex organisation.
- Minimum of 8-10 years of experience in risk management, compliance, or a related field, with a focus on third-party/vendor risk management.
- Strong knowledge of third-party risk management frameworks, tools, and methodologies.
- Proficient in the use of TPRM software and other relevant technologies.
- Strategic thinker with a proactive approach to problem-solving.
- Collaborative and able to build strong relationships across the organisation.
Desirable:
- Relevant certifications such as Certified Third-Party Risk Professional (CTPRP), Certified Risk Manager (CRM), or Certified Information Systems Auditor (CISA) are highly desirable.
- Familiarity with relevant regulations and industry best practices.
- Sound analytical skills to extract insights from information.
Please note this role has been deemed inside of IR35 and you will need to work through an umbrella company if successful