This role leads the identification, assessment, and control of technical risks from outsourced services, cloud providers, and fintech partners within a global financial services environment
Job Summary
This role leads the identification, assessment, and control of technical risks from outsourced services, cloud providers, and fintech partners within a global financial services environment.
The successful candidate will design and operate a comprehensive Third-Party Assurance programme covering due diligence, contractual security clauses, and continuous monitoring aligned with Group CISO directives.
Candidates must possess 10–15 years of experience in third-party technical risk assurance within financial services and demonstrate expertise in embedding DORA and GDPR requirements.
Matching Summary
This role leads the identification, assessment, and control of technical risks from outsourced services, cloud providers, and fintech partners within a global financial services environment.
Skills & Requirements
Must-have
Third-party technical risk assurance
DORA ICT contractual clauses
ISO/IEC 27001:2022 compliance
NIST CSF 2.0 outcomes
Supplier due diligence and onboarding
Continuous cyber monitoring and testing
Nice-to-have
Exceptional stakeholder influence skills
Cross-jurisdictional regulatory knowledge
Experience with EU AI Act responsibilities
Strong executive reporting capabilities
Ability to harmonize global assurance methods
Key Requirements
10–15 years in third-party technical risk assurance
Experience with critical ICT providers and cloud services
Hands-on experience with DORA, GDPR, and ISO 27001
Knowledge of PCI DSS and COBIT governance
Proven ability to present to Technology Risk Forum