Third Party Risk Management Specialist

Social network you want to login/join with:

col-narrow-left

Ebury

London, United Kingdom

Finance

-

Yes

col-narrow-right

c81efd201b20

3

24.04.2025

08.06.2025

col-wide

Ebury is a leading global fintech company that empowers businesses to trade and grow internationally. It offers a comprehensive suite of products, including international payments and collections, FX risk management, trade finance, and API integrations. Founded by Juan Lobato and Salvador García, Ebury is one of the fastest-growing global fintechs, with over 1,000 employees and 38 offices in more than 25 countries.

Third Party Risk Management Specialist

Locations: Madrid / Malaga / London - 4 days in the office

About our team:

We are seeking an experienced Third Party Risk Management (TPRM) Specialist to join our 2nd line of defence Information Technology (IT) and Business Resilience Team. This team covers business continuity and resilience, IT risk management, and business process mapping. The candidate will be responsible for managing the governance, operationalization, and reporting of the Outsourcing and TPRM functions at Ebury. They will work closely with procurement and data privacy functions.

About the role:

As the TPRM Specialist, responsibilities include:

1. Leading Ebury's Outsourcing and TPRM framework, including external and intragroup arrangements.
2. Coordinating TPRM lifecycle activities such as third-party segmentation, materiality assessment, risk identification and assessment, due diligence, and ongoing monitoring.
3. Managing reporting requirements to internal and external stakeholders.
4. Ensuring alignment with other risk management areas, including business continuity, resilience, and IT risk management.
5. Serving as the point of contact for internal and external auditors regarding Outsourcing and TPRM.
6. Continuously improving the framework to meet Ebury's needs and regulatory requirements.

Experience and Qualifications:

• At least 5 years of experience in a 2nd line risk management role covering TPRM and/or IT risk management.
• University degree preferred, in business, information technology/security, finance, or law.
• Knowledge of financial services regulatory requirements related to TPRM (FCA, EBA, NBB) and understanding of DORA.
• Good understanding of non-financial risk areas such as business continuity, resilience, IT risk, and data privacy.
• Practical experience with GRC tools; OneTrust experience is a plus.

Skills:

• Strong analytical skills for metrics, dashboards, and reporting.
• Excellent written and verbal communication skills for stakeholder engagement.
• Ability to work in a fast-paced environment and adapt quickly.
• Professional proficiency in English (minimum C1).