Third Party Risk Manager

Who are we?

At Finastra, we are a dynamic global provider of open finance software solutions, dedicated to expanding access to financial services. Our innovative applications span Lending, Payments, Treasury and Capital Markets, and Universal Banking. Proudly serving over 8,000 customers, including 45 of the world's top 50 banks, we aim to boost financial inclusion for all. Join us and be part of a vibrant company that embraces diverse perspectives, and is committed to doing well by doing good.

What will you contribute as a Third Party Risk Manager?

This is a hybrid role with in-office presence 2 days/week and flexibility to work remotely 3 days/week.

As a Third Party Risk Manager, you will play a key role in the TPRM program of a dynamic, Global FinTech Company. You are self-driven, with a passion for ensuring risk practices that produce best-in-class results. Innovative thinking is applied to every project or issue, looking beyond past practices for the best path forward. Using a deep understanding of Finastra’s business imperatives and supplier relationships across all functions, you are a respected advisor who collaborates to identify risk and influence risk-based decision making. You are not intimidated by uncertainty (i.e. Risk) and understand TPRM isn’t just about risk – it is about opportunity and enabling achievement of long-term business strategy.

Responsibilities & Deliverables

• Drive the enterprise third-party risk management oversight function to align with industry best practices and comply with current and planned third-party regulatory guidance.
• Ensure transparent, effective, and controlled risk management and governance related to the introduction and ongoing monitoring of third parties throughout the Enterprise.
• Support and, when necessary, act on behalf of the Director, Third Party Risk Management.
• Collaborate with partners and business various stakeholders to perform due diligence, risk assessment and ongoing monitoring of Finastra’s third parties and partners.
• Validate incoming Third Party and partner engagements, working with business partners to ensure data is complete and accurate with inherent risks are identified.
• Oversee the Third-Party risk assessment process for new Third Party onboarding and periodic risk assessment, distribution of due diligence questionnaires to the Third Parties and partners, review submitted questionnaires for completeness, ensure Risk stakeholders finalize reviews and determine overall residual risk rating.
• Enhance fourth party oversight ensuring that assessments are performed, and issues are identified, captured and reported across all suppliers.
• Oversee the escalation and remediation of all TPRM Third Party related issues identified, through ongoing monitoring, the risk assessment process or incident management.
• Respond to inquiries/examination requests by supporting elements of the regulatory and audit examination cycle for inquiries or exams.
• Contribute to the development of detailed procedural documents and ensure alignment of TPRM with regulatory requirements including FFIEC, OCC and other applicable regulations.
• Monitor industry trends, competitive insights, and maintain compliance with regulatory expectations and requirements.
• Develop and run consistent and accurate reports related to the supplier list and analyze data to prepare supplier reporting for executive management and the board.

Required Qualifications

• BA/BS degree or persuasive equivalent practical experience.
• Minimum of eight years related work experience related to Third Party Risk Management, and/or Procurement, particularly in FinTech.
• Knowledge of third party risk management programs, processes, and financial institution regulatory requirements, including the lifecycle of risk identification, treatment, mitigation, acceptance, remediation as well as inherent and residual risks.
• Knowledge and experience with laws, regulations, guidelines, and frameworks within the financial services industry that mandate information security and information risk management requirements such as FFIEC, NIST, ISO27001, GLBA, OCC Heightened Standards, etc.
• One or more relevant professional certification, such as Certified Third Party Risk Professional (CTPRP), Certified Third Party Risk Assessor (CTPRA), Certified Regulatory Vendor Program Manager (CRVPM), Certified Third Party Risk Management Professional (C3PRMP), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or similar.
• Ability to successfully prioritize changing or conflicting objectives and drive simultaneous initiatives through to completion.
• Experience designing, implementing and working with Governance, Risk and Compliance (GRC) Platforms.
• Strong interpersonal skills with ability to communicate effectively (fact based and credible), build relationships, challenge, negotiate and use professional judgement when working with key stakeholder across broad functions and geographic regions.
• Highly articulate with strong communication and presentation skills.
• Strong analytical skillset and a rigorous approach to problem-solving.
• Strong proficiency in Excel, Word, PowerPoint, PowerBI.

Benefits at Finastra

Finastra offers comprehensive incentives globally, promoting flexibility, well-being, ESG values, DEI, career development, and recognition for all employees. Specific benefits may vary by location.

Key skills/competency

• Third Party Risk Management
• Regulatory Compliance
• Risk Assessment
• Due Diligence
• GRC Platforms
• Financial Services Industry
• Supplier Relationship Management
• Audit & Examination Support
• Data Analysis & Reporting
• FinTech