CrawlJobs Logo
Levy Professionals Logo Levy Professionals · IT - Administration

Third Party Risk Manager

Netherlands, Amsterdam · Job Posted January 06, 2026
Apply Position
Job Link Share

Job Description

A highly motivated and hands-on professional to join the Supply Chain Security (SCS) team, which is part of the Cyber Defense grid for our major financial services client. This role is focused on improving the client’s Supply Chain Security services and managing security risks associated with third-party vendors. You will be a vital member of a diverse and expanding team that provides continuous visibility into the security posture of the client’s vendors globally. The primary outcomes of this role are to achieve continuous improvements in the quality of vendor reporting and service, ensure information security risks are managed effectively across all stages of vendor relationships, and significantly contribute to the overall excellence of the Supply Chain Security service offering, driving expected DORA impact.

Job Responsibility

  • Govern and manage IT vendor relationships concerning performance on the security aspects of underlying contractual obligations
  • Execute Vendor Security Risk Assessments and perform necessary follow-up actions, focusing on material risks
  • Ensure that information security risks are identified and managed effectively throughout all stages of the relationship with external vendors
  • Review the applicability and quality level of assurance reports issued by third parties
  • Manage the IT security-related part of vendor contracts, working closely with 2nd line functions such as legal, compliance, and procurement on contractual changes
  • Actively stay up-to-date with emerging cyber security trends, risk, and threat developments, and share this knowledge to help integrate them into the assessment program
  • Help solve security-related questions, take initiative, and escalate in time if needed
  • Signal improvements related to the way of working inside the team and contribute to improving the excellence of the service offering
  • Work according to the DevOps & Agile methodology, improving Supply Chain Security services based on user stories
  • Occasionally investigate and resolve incidents as they occur
  • Engage frequently with various stakeholders, including other IT departments, business colleagues, and software suppliers

Requirements

  • Knowledge and experience with setting up projects & deliverables within supply chain security / Third-Party Risk Management (TPRM)
  • Proven experience in executing information security risk assessments
  • Knowledgeable on one or more areas such as security processes, technology architectures, network security, application security, and vulnerability management
  • Experience with the ServiceNow TPRM module is a significant advantage
  • HBO or University degree
  • Excellent stakeholder management skills
  • A strong ability to translate technical risks into business risks and vice versa
  • Hands-on, self-organised, willing to finish and deliver (execution power)
  • Service-oriented professional who enjoys taking on an internal consultancy role
  • The working language within the team is English

Nice to have

Experience with the ServiceNow TPRM module

Levy Professionals - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Third Party Risk Manager

8 matching positions

Third Party Risk Manager

Third Party Risk Manager - Procurement & Risk Transformation - London - Newly Cr...
Location
Location
United Kingdom , London
Salary
Salary:
65000.00 - 85000.00 GBP / Year
bramwithconsulting.co.uk Logo
Bramwith Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience in Third Party Risk Management or supplier risk operations
  • Exposure to financial services, fintech, consulting, or regulated environments
  • Strong understanding of operational risk processes and controls
  • Comfortable working in a fast-changing, growth-oriented business
  • Confident communicator who can engage stakeholders pragmatically
  • Experience working with offshore or remote teams is beneficial
  • Leadership potential is important, formal line management experience is not essential
Job Responsibility
Job Responsibility
  • Support the delivery of day-to-day Third Party Risk Management activity
  • Work closely with the offshore operations team to maintain quality and consistency
  • Ensure outputs meet internal standards and are audit ready
  • Track workflow, turnaround times, and key service measures
  • Act as a first point of contact for internal stakeholders on routine TPRM queries
  • Coordinate with Procurement to ensure risk assessments are triggered appropriately
  • Escalate higher-risk or complex cases to senior risk stakeholders when required
  • Contribute to reporting, MI, and insight packs for leadership
  • Support continuous improvement across tools, processes, and controls
What we offer
What we offer
  • Package
  • Fulltime
Read More
Arrow Right

Third Party Risk Manager

A highly motivated and hands-on professional to join the Supply Chain Security (...
Location
Location
Netherlands , Amsterdam
Salary
Salary:
Not provided
levy-professionals.com Logo
Levy Professionals
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge and experience with setting up projects & deliverables within supply chain security / Third-Party Risk Management (TPRM)
  • Proven experience in executing information security risk assessments
  • Knowledgeable on one or more areas such as security processes, technology architectures, network security, application security, and vulnerability management
  • Experience with the ServiceNow TPRM module is a significant advantage
  • HBO or University degree
  • Excellent stakeholder management skills
  • A strong ability to translate technical risks into business risks and vice versa
  • Hands-on, self-organised, willing to finish and deliver (execution power)
  • Service-oriented professional who enjoys taking on an internal consultancy role
  • The working language within the team is English
Job Responsibility
Job Responsibility
  • Govern and manage IT vendor relationships concerning performance on the security aspects of underlying contractual obligations
  • Execute Vendor Security Risk Assessments and perform necessary follow-up actions, focusing on material risks
  • Ensure that information security risks are identified and managed effectively throughout all stages of the relationship with external vendors
  • Review the applicability and quality level of assurance reports issued by third parties
  • Manage the IT security-related part of vendor contracts, working closely with 2nd line functions such as legal, compliance, and procurement on contractual changes
  • Actively stay up-to-date with emerging cyber security trends, risk, and threat developments, and share this knowledge to help integrate them into the assessment program
  • Help solve security-related questions, take initiative, and escalate in time if needed
  • Signal improvements related to the way of working inside the team and contribute to improving the excellence of the service offering
  • Work according to the DevOps & Agile methodology, improving Supply Chain Security services based on user stories
  • Occasionally investigate and resolve incidents as they occur
Read More
Arrow Right

Senior Risk Manager - Third Party Risk

The role supports the Head of Operational Risk in the oversight and management o...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
socialvalueportal.com Logo
Social Value Portal Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree level educated or an equivalent combination of education training and experience with third-party frameworks and industry standards
  • and/or relevant professional qualification (e.g., IRM International Certificate in Operational Risk, Practitioner Certificate in Information Management, etc.)
  • Proven third party risk expertise, preferably with knowledge of relevant standards such as ISO 27001, ISO 22301, NIST, and COBIT
  • A strong understanding of the Lloyd's or wider company insurance market and frameworks is preferable
  • Knowledge and experience of risk management frameworks and tools
  • Demonstrate effective understanding of relevant TPRM regulations for a global organisation operating across the UK, EU, US and Asia
  • Understanding of the commercial drivers and dynamics affecting risk decisions in the insurance sector, as well as operational and risk processes found within an international insurance group
  • Ability to build strong partnering relationships with a wide range of stakeholders, in particular the 1st Line TPRM team
  • Ability to interact professionally and with credibility and manage expectations of management and key stakeholders
  • Ability to manage time, meet deadlines and prioritise
Job Responsibility
Job Responsibility
  • Provide independent oversight and effective challenge to first-line operational risk activities
  • Review, challenge and contribute to the Third Party Risk Management (TPRM) framework, policies and standards
  • Support the Head of Operational Risk in facilitating regular Risk & Control Self Assessments (RCSAs) with first line risk owners and stakeholders, ensuring the assessments are performed and documented accordingly
  • Oversee the management of delegated authority risk within Underwriting, Claims and Operations as part of the TPRM framework
  • Ensure consistent risk tiering and materiality assessments for all third parties
  • Review and challenge residual risk assessments, risk acceptances, and exceptions related to Operational Risk
  • Oversee integration of Third Party Risk into operational resilience, technology, cyber, and data frameworks
  • Support the implementation and maintenance of a robust control environment with clear ownership and accountability within the business, ensuring control documentation remains accurate and current
  • Develop and monitor key risk indicators (KRIs) and support risk appetite monitoring and management
  • Work collaboratively with 1st Line and Risk domain teams, supporting the embedding of the Operational Risk and TPRM framework into the organisation and across the 3 Lines of Defence model
  • Fulltime
Read More
Arrow Right
New

Manager, Third Party Risk Management

We are seeking an experienced Third-Party Risk Management (TPRM) Manager to own ...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of experience in information security, risk management, GRC, or third-party risk management
  • Proven experience leading or owning a Third-Party Risk Management program in a complex, global organization
  • Strong understanding of ISO 27001, NIS2, SIG, and vendor risk frameworks
  • Proven experience assessing SaaS, cloud, and technology vendors
  • Experience partnering with Legal and Procurement teams
  • Experience maintaining risk registers and executive-level reporting
  • Strong stakeholder communication and presentation skills
  • Experience supporting audits and regulatory compliance activities
Job Responsibility
Job Responsibility
  • Lead security risk assessments for new and existing third parties (SaaS, cloud, fintech vendors, payment processors)
  • Review and analyze vendor certifications and assurance artifacts (ISO 27001, SOC 1/2, PCI DSS, GDPR documentation)
  • Evaluate third-party control effectiveness and document risk findings
  • Drive remediation tracking and closure with vendors and internal stakeholders
  • Maintain and mature standardized third-party assessment frameworks
  • Translate technical findings into business-aligned risk insights
  • Advise leadership on risk acceptance, mitigation, and compensating controls
  • Maintain a defensible third-party risk register and reporting structure
  • Support procurement decisions through risk scoring and tiering models
  • Partner with Legal and Procurement to embed security requirements in contracts (MSA, DPA, security addendums)
  • Fulltime
Read More
Arrow Right

Third Party Risk Management Manager

About the Company: A leading global provider of integrated financial services so...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 05, 2026
Flip Icon
Requirements
Requirements
  • Industry Knowledge: Deep understanding of MAS Outsourcing Guidelines and regulatory landscapes within the insurance or financial sectors.
  • Technical Proficiency: Skilled in Microsoft Office Suite
  • familiarity with dedicated TPRM software platforms is highly regarded.
  • Strategic Capability: Proven ability to design and execute effective risk mitigation strategies in complex environments.
Job Responsibility
Job Responsibility
  • Oversee and refine the enterprise-wide framework for managing outsourcing and external vendor risks.
  • Strengthen the governance structure to ensure rigorous oversight of both internal group and external partner risks.
  • Maintain the integrity of the Supplier Risk Management system and its associated data.
  • Adapt the risk assessment methodology to align with evolving regulatory standards and industry mandates.
  • Detect and report critical concerns regarding vendors, specifically focusing on concentration and fourth-party risk factors.
  • Work closely with cross-functional teams, including Legal, Compliance, Security, and Audit, to address and escalate risks across the three lines of defense.
  • Facilitate the execution of initial and periodic due diligence and performance assessments for critical outsourcing agreements.
  • Direct administrative and strategic support for the Outsourcing Working Group and Governance Committee, including documentation and action-item tracking.
  • Conduct annual reviews of procedural templates and lead training sessions for internal stakeholders and contract managers.
  • Manage regulatory registers and internal knowledge repositories to ensure compliance and accessibility.
  • Fulltime
Read More
Arrow Right

Third Party Risk Senior Manager, APAC

OpenAI is building a world-class supplier risk and third-party risk program to s...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
openai.com Logo
OpenAI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of experience in supplier risk, third-party risk management, supply chain risk, supplier compliance/auditing, or related fields
  • Strong experience in complex electronics or device manufacturing ecosystems (contract manufacturing, component ecosystems, multi-tier supply chains)
  • Demonstrated ability to run onsite audits and drive remediation outcomes (not just policy)
  • Proven ability to influence cross-functional stakeholders and make risk decisions in fast-paced environments
  • Strong written and verbal communication—able to translate complex risk into clear decision narratives
Job Responsibility
Job Responsibility
  • Lead supplier and third-party risk due diligence across Asia (contract manufacturers, component suppliers, logistics partners, key service providers)
  • Build and run an onsite supplier audit program, including corrective action plans (CAPA) and remediation verification
  • Drive supplier compliance initiatives aligned to leading industry standards (e.g., Responsible Business Alliance / RBA expectations), including labor, ethics, and management systems
  • Partner closely with Procurement, Legal/Compliance, Security, Privacy, and business teams to embed risk controls into supplier onboarding, contracting, and ongoing monitoring
  • Build and own regional reporting: supplier tier coverage, audit pipeline, open risks, remediation status, and trend insights for leadership
  • Support incident response for supplier-related issues (e.g., compliance findings, operational disruptions), ensuring fast and effective resolution
  • Fulltime
Read More
Arrow Right

Risk and Controls Oversight Senior Lead - Third party and LRR Risk

Location
Location
United Kingdom , London; Northampton
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Good understanding of Retail Banking Customer Journeys to identify and manage associated risks and controls
  • Proven experience in data analytics, data science, and driving automation and digitization within Risk Management processes
  • End-to-end third-party lifecycle risk management: onboarding, due diligence, ongoing monitoring, exit
  • Supplier dependency & concentration risk management (critical vendors, single points of failure)
  • Outsourcing / material service provider risk management and compliance with regulatory expectations
  • Fourth-party risk visibility (sub-contracting chains, hidden exposures)
  • Third-party performance & control assurance (SLAs, control attestations, audits)
  • Alignment of controls to LRR obligations and regulatory standards, ensuring correct applicability across journeys in Customer & Digital
  • Understanding of new LRRs impacting the business, with ability to work closely with Regulatory Engagement teams to ensure compliance
  • Ability to balance risk management with business goals when defining Risk Appetite, and effectively influencing or negotiating with stakeholders on risk acceptance
Job Responsibility
Job Responsibility
  • Develop and assess risk appetite, lead conversations on risk acceptance, ensure controls are designed and assessed properly, resolving any gaps and improving the control environment
  • Ensure ongoing monitoring of controls to keep the business audit ready, embed active risk management culture, assessing new business activities and leveraging tools KRIs and risk dashboards
  • Stay on top of market trends and emerging risks, driving continuous education based on internal and external themes and lessons learnt
  • Ensure compliance with relevant laws and regulations, preparing and enhancing governance papers and reports
  • Identify opportunities for data led controls monitoring and automation of controls
  • Ensure compliance with RCSA, Issue management and Risk events management process in line with Operational Risk framework
  • Fulltime
Read More
Arrow Right

Assistant Vice President – Third Party Risk Oversight specialist - TPRO - Consumer Credit Risk

The AVP – Third party risk oversight role is responsible for owning and enhancin...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in Risk management, third-party risk, vendor risk/management or credit risk with a large financial institution
  • US banking regulatory expectations
  • Prior experience operating with consumer credit risk or closely related risk domains
  • Extensive background in managing critical suppliers and regulated third-party relationships
  • Experience active as a risk/process oversight owner or leading risk platforms, frameworks, or governance models
  • Bachelor’s degree in related fields
  • Working knowledge of Vendor relationship management / Vendor risk management/ TPRO
  • Growth mindset with ability to balance risk, compliance and business enablement
  • Excellent stakeholder management and executive communication skills
  • Ability to challenge vendors and internal partners constructively
Job Responsibility
Job Responsibility
  • Product ownership and strategy: Own the end-to-end product vision for third-party risk oversight tools, processes, and controls within consumer credit risk
  • Own the TPRO vision, roadmap, and backlog, ensuring alignment with Citi risk policies and enterprise standards
  • Translate regulatory guidance, Citi policies, and risk requirements into User stories, controls, and functional requirements into scalable risk oversight solutions
  • Prioritize initiatives based on risk severity, regulatory commitments and business impact
  • Third-party Risk oversight: Oversee risk assessment lifecycle for third-party vendors, including: Inherent risk assessments, Due diligence (financial, operations, cyber, data privacy, model risk), Ongoing monitoring and periodic reviews
  • Ensure critical and high- risk vendors undergo enhanced oversight and governance
  • Maintain a risk-tiered vendor inventory aligned with consumer credit risk exposure
  • Supplier and contract management: Ensure supplier contracts meet regulatory, risk and control standard, including: SLAs, KPI, audit and access rights, data protection, information security, confidentiality, BCP/DR (business continuity planning/ Disaster recover), subcontractor and fourth-party controls
  • Track contract milestones, renewals, terminations and renegotiations
  • Proactively identify contracts nearing expirations and drive timely renewals or exit strategies
  • Fulltime
Read More
Arrow Right