The bank’s Third Party Risk Management (TPRM) program is accountable for the bank’s TPRM strategy and framework, enabling the bank to identify, measure, monitor, and mitigate the risks associated with third parties. TPRM works across the bank’s businesses and functions, providing 2LOD oversight and challenge to ensure effective implementation of TPRM practices in compliance with regulatory and policy requirements. TPRM is also accountable to provide insight on the bank’s overall third-party risk profile.
The TPRM Practice Management lead is responsible for developing/maintaining strong risk management practices to effectively and efficiently manage risks arising from Third Parties, in line with regulatory requirements. This includes the end-to-end Third Party Risk process, tools, applications, and external and internal data sources. The Lead will also work with a number of partners to ensure Third Party Risk practices are deployed consistently across the bank, to enable alignment to the bank’s third-party risk appetite and compliance to the TPR Policy. The Lead will work in close partnership across broader 2LOD and 1LOD teams, ensuring stakeholder engagement and adoption during the development, review and implementation of changes as the existing TPRM program continues to evolve.
RESPONSIBILITIES
In partnership with the TPRM Program Manager, develop a successful implementation plan. Accountabilities include:
· Lead continued evolution, development, and execution of the TPRM risk framework, practices, and tool.
· Direct assessments on key controls and overall compliance with the TPRM program, including the timeliness, completeness, and accuracy of risk assessments.
· Provide TPR advice and oversight to first line colleagues and other partners across the bank’s.
· Develop risk analysis and reporting, including risk metrics, for dissemination to both first line of defense, risk management committees, senior leadership. the bank’senterprise stakeholders, and the bank’ss regulators.
· Streamline processes for risk identification and assessment, control assessment, monitoring, and issue management.
Lead continuous improvement activities and initiatives for TPRM, collaborating with a broad network of stakeholders and subject matter experts.
Identify and assess requirements for the bank’s TPRM tools and applications to deepen risk management practices, and drive process effectiveness and efficiency.
Grow risk intelligence practices to capitalize on external/internal data assets, driving proactive and responsive risk management.
Use data and indicators to assess the effectiveness and efficiency of practices, identifying opportunities for future enhancements.
Ensure critical stakeholders are engaged and appropriate approval authorities are involved and sign off on new / updated practices and processes.
Collaborate with TPR Policy owner to ensure practices are well reflected in TPR Policy and standards.
Provide advice to 1LOD/other stakeholders in the development of operating procedures to enable compliance with TPR practices.
REQUIRED WORK EXPERIENCE
Minimum of seven years of in progressively responsible roles in the financial services industry with direct exposure to operational risk management, the third party risk lifecycle, enterprise-wide mandates
Established acumen in Governance-Risk-Compliance (GRC) through 1LOD or 2LOD roles
Leadership experience in process design and process re-engineering
Advanced quantitative, analytical and problem solving skills
Excellent oral and written communication skills; experience performing both detailed and executive-level documentation
Effective leadership, collaboration, negotiation, and conflict resolution skills developed through experience partnering across the three lines of defence
Strong understanding of TPR governance frameworks, and of global regulatory requirements/best practices
Demonstrated experience managing risk management projects and initiatives
SKILLS, KNOWLEDGE, AND LICENSES (And All Other Preferred)
Proactive, self-driven individual; able to execute with high level objectives and direction
Strategic mindset and capability in problem solving, simplification, efficiency
Story-teller – can translate data and information into insights and advice; excellent presentation skills
Preferred Education: Graduate degree or equivalent experience (MBA, Master of Applied Science/Engineering); Six Sigma certification; Professional Risk Management qualification or certification
Experience using TPRM Governance, Risk and Compliance (GRC) systems
Experience assessing contracts, including master service agreements, statements of work, and license agreements
Advanced knowledge of desktop productivity tools; specifically, Excel, PowerPoint and SharePoint
