Director, OTCR, Third Party Risk Manager

We are seeking a highly skilled and motivated Director, Third Party Risk Manager to join our Operational & Technology Risk (OTCR) team. This role operates within the Second Line of Defence, providing critical oversight and governance for third-party risk management (TPRM) in compliance with MaRisk AT 9, DORA, and other relevant regulatory frameworks.

As a trusted partner to the business, you will ensure that third-party arrangements are effectively managed, compliant, and aligned with the Bank's risk appetite. You will support the SCB AG Central Outsourcing Control Officer in designing, maintaining, and monitoring processes that safeguard the organisation against outsourcing and vendor‑related risks.

• Develop a deep understanding of SCB AG's business model, its dependencies on third‑party service providers, and their impact on the Bank's risk profile.
• Contribute to the implementation of the Bank's Risk Strategy and embedding of regulatory standards into the TPRM Framework.
• Establish and oversee robust governance structures and performance assessment methods for third‑party arrangements.
• Support the design, implementation, and periodic review of local TPRM policies, ensuring compliance and alignment with global standards.
• Provide expert guidance to the First Line of Defence on TPRM requirements and best practices.
• Coordinate, review, and challenge risk assessments, due diligence, and mitigation activities conducted by the First Line.
• Facilitate regulatory notifications and approvals for new or materially changed third‑party relationships.
• Ensure all third‑party relationships are accurately captured in central inventories and managed in line with internal policies and external regulations.
• Prepare and present risk oversight reports and insights to senior management, risk committees, and governance forums.
• Provide independent Second Line of Defence oversight, identifying, validating, and escalating third‑party risks as appropriate.
• Monitor and assess regulatory changes impacting third‑party risk management (e.g., DORA, MaRisk AT 9).
• Support internal and external audits, as well as regulatory examinations.

• Proven experience (minimum 5 years) in Third Party Risk Management, Outsourcing Governance, or Operational Risk, ideally within financial services or a regulated environment.
• Strong knowledge of MaRisk AT 9, DORA, and other European regulatory frameworks related to outsourcing and operational resilience.
• Experience in risk governance, control frameworks, and effective oversight processes.
• Excellent analytical, organisational, and stakeholder management skills.
• Ability to communicate complex regulatory concepts clearly and influence at senior levels.

• University degree or equivalent qualification in Business, Finance, Risk Management, or a related field.
• Fluency in English required; German language skills are highly beneficial.

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time‑off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market‑leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first‑aiders and all sorts of self‑help toolkits.
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.