Manager, Third Party Risk Management

How you’ll make an impact

• Lead execution of the bank’s end-to-end third-party risk management program, including risk-tiered due diligence, onboarding risk assessments, ongoing monitoring, and offboarding activities across all vendor tiers.
• Manage and develop the Third-Party Risk Management team by setting priorities, providing coaching, and ensuring consistent, high-quality risk assessments and oversight activities.
• Serve as the primary second-line escalation point for elevated or complex third-party risk matters, providing risk-based recommendations and ensuring issues are appropriately documented, tracked, and resolved.
• Maintain and enhance third-party risk management frameworks, risk tiering methodologies, assessment templates, and governance processes to support a scalable, risk-based program.
• Partner with Legal, Compliance, Information Security, Affiliate Risk, and business stakeholders to ensure consistent application of third-party risk standards throughout the vendor lifecycle.
• Lead regulatory examination readiness and support responses to OCC, FDIC, internal audit, and external audit inquiries related to third-party risk management.

Minimum Qualifications

• Bachelor’s degree or equivalent practical experience.
• 6+ years of experience in third-party risk management, compliance, audit, operational risk, or a related risk discipline within a banking or financial services environment.
• Experience leading a third-party risk management program, including risk assessments, due diligence reviews, ongoing monitoring, and issue management across a multi-vendor portfolio.
• Knowledge of OCC, FDIC, and interagency guidance related to third-party relationships and risk management, including the 2023 Interagency Guidance on Third-Party Relationships: Risk Management.
• Experience assessing and managing risks associated with multiple third-party relationship types, including suppliers, lending partners, affiliates, and technology service providers.

Preferred Qualifications

• Direct experience supporting OCC or FDIC regulatory examinations related to third-party risk management.
• Experience leading or developing risk, compliance, audit, or third-party risk professionals.
• Knowledge of affiliate risk oversight requirements, including Regulation W and related regulatory expectations.
• Experience operating within a fintech, digital banking, or technology-intensive environment, including oversight of cloud, SaaS, and other technology service providers.
• Experience using governance, risk, and compliance (GRC) platforms to support third-party risk assessments, issue management, workflow automation, and ongoing monitoring activities.