A market-leading financial services organisation is seeking a Supplier Risk Management professional to strengthen oversight of its external suppliers and ensure robust risk management across the third-party landscape. This is an excellent opportunity for individuals with strong third-party risk, vendor management, or operational risk experience gained within financial services or another regulated environment.
As the Supplier Risk Manager, you will play a pivotal role in overseeing supplier risk throughout the entire lifecycle-from onboarding and due diligence through to ongoing monitoring and exit. You will enhance and operate supplier risk frameworks, ensuring all third parties meet the organisation's regulatory, operational, and performance standards.
Working closely with stakeholders across Risk, Procurement, Legal, Compliance, and operational teams, you will help strengthen governance, improve reporting, and drive risk-aware decision-making across the business.
Key Responsibilities
- Operate, maintain, and continuously improve supplier risk management tools, processes, and governance frameworks.
- Lead risk assessments, enhanced due diligence, and ongoing monitoring activities for new and existing suppliers.
- Oversee supplier lifecycle risk events, including onboarding, contract changes, remediation, and offboarding.
- Ensure compliance with key regulatory expectations (FCA, PRA, GDPR, DORA) and internal risk standards.
- Partner with SMEs and stakeholders across the organisation to identify, assess, and manage supplier-related risks effectively.
- Support governance forums, supplier risk reporting, and escalation processes.
- Maintain accurate risk records, documentation, and audit-ready evidence.
- Contribute to continuous improvement initiatives within the Third-Party Risk Management (TPRM) function.
Skills & Experience Required
- Experience in supplier risk management, third-party risk, vendor oversight, or enterprise/operational risk within financial services or another regulated industry.
- Strong understanding of supplier lifecycle risk management and third-party risk principles.
- Good knowledge of applicable regulatory frameworks (FCA, PRA, GDPR, DORA).
- Experience with risk assessment methodologies, GRC platforms, or supplier management systems.
- Excellent communication, analytical, and stakeholder-management skills.
- Able to work effectively in a hybrid environment across multiple locations.
- Highly organised with strong attention to detail and documentation standards.
- Comfortable with hybrid working
