PMO Support - Third-Party Risk Management (TPRM) | Contract | Bank

Overview

A leading financial institution is seeking a highly analytical and detail-oriented Third-Party Risk Management (TPRM) Analyst to support vendor risk assessments, outsourcing governance, and regulatory compliance initiatives.

This role combines Third-Party Risk Management, Business Analysis, and PMO responsibilities, requiring the successful candidate to work closely with business stakeholders, control functions, and senior management to conduct risk assessments, prepare governance documentation, and support outsourcing risk reviews.

Key Responsibilities

Third-Party Risk Management

• Conduct end-to-end third-party risk assessments for vendors and service providers in accordance with the organisation’s TPRM framework.
• Assess inherent risks and determine vendor risk classifications based on regulatory and internal governance requirements.
• Evaluate key risk areas including operational, information security, data privacy, concentration, and outsourcing risks.
• Ensure risk assessments are accurately documented and maintained for audit and regulatory purposes.

Outsourcing Risk Governance

• Prepare and maintain Outsourcing Risk Review (ORR) documentation for outsourced services.
• Assess outsourcing risk factors including concentration risk, exit strategies, sub-outsourcing arrangements, business continuity, and data residency considerations.
• Ensure documentation is complete, accurate, and aligned with regulatory and internal governance requirements.
• Support outsourcing governance reviews and approval processes.

Business Analysis & Stakeholder Management

• Engage service owners, SMEs, and control functions to gather, analyse, and document business and operational requirements.
• Develop detailed process flows, service descriptions, and governance documentation to support risk assessments.
• Facilitate workshops and review sessions with stakeholders across Legal, Compliance, Information Security, Data Privacy, Procurement, and Business teams.
• Identify gaps, inconsistencies, and potential risks, escalating issues where appropriate.

Reporting & PMO Support

• Prepare management reports, governance papers, and presentation materials for senior leadership, risk committees, and approval forums.
• Track project milestones, deliverables, actions, and approvals across multiple workstreams.
• Maintain risk review trackers, status reports, issue logs, and governance documentation.
• Support programme governance activities and stakeholder reporting.

Requirements

• Bachelor's Degree in Business, Finance, Risk Management, Information Systems, or a related discipline.
• Minimum 5 years of experience in Third-Party Risk Management (TPRM), Vendor Risk Management, Operational Risk, Outsourcing Governance, Business Analysis, or PMO functions.
• Solid understanding of third-party risk assessment methodologies and outsourcing governance frameworks.
• Knowledge of outsourcing risk considerations, including concentration risk, exit risk, sub-outsourcing, business continuity, and data residency.
• Experience gathering and documenting business requirements, process flows, and governance documentation.
• Excellent PowerPoint and Excel skills with experience preparing senior management presentations and reporting materials.
• Experience coordinating with multiple stakeholders and control functions within a regulated environment.