Risk Business Partner – Third Party Risk Management
Job in
City of Edinburgh, Edinburgh, City of Edinburgh Area, EH1, Scotland, UK
Listed on 2026-07-04
Listing for:
FNZ (UK) Ltd
Full Time
position Listed on 2026-07-04
Job specializations:
-
Finance & Banking
Risk Manager/Analyst, Regulatory Compliance Specialist, Financial Compliance
Job Description & How to Apply Below
Risk Business Partner – Third Party Risk Management Skip to main content
We use cookies to give you the best experience we can. If you continue, we'll assume you're happy to receive all cookies from the website. More about our cookies.#Risk Business Partner – Third Party Risk Management page is loaded## Risk Business Partner – Third Party Risk Management Apply locations:
Edinburgh WRS - United Kingdom time type:
Full time posted on:
Posted Todayjob requisition :
REQ-17210
** Role Description
** The objective of the Second Line Risk team is to deliver, coordinate and continuously develop an effective Risk Management Framework that provides the tools to enable FNZ to identify, assess, control and monitor risk; and through that framework manage risk within the appetite of the business, our clients, and regulators.
The Risk Business Partner brings both experience and knowledge of operational risk management tools and frameworks demonstrated through practical experience and achievements in similar roles. This Second Line risk role will support the implementation and maintenance of the Risk Management Framework to support FNZ’s business plan and the regulatory environment it operates in. This includes provision of oversight of the application of risk management policies and procedures and working with the business to facilitate the understanding and embedding of these within FNZ.
*
* Key Responsibilities:
** The duties and responsibilities of this Second Line Risk role will include the following:
Third-Party Risk Oversight
* Provide independent Second Line oversight of the firm's Third-Party Risk Management framework.
* Review and challenge supplier risk assessments, due diligence activities and ongoing monitoring arrangements.
* Ensure appropriate oversight of critical, material and outsourced service providers.
* Assess third-party risks including: + Operational Risk + Information Security Risk + Cyber Risk + Data Privacy Risk + Financial Crime Risk + Conduct Risk + Business Continuity and Operational Resilience Risk + Concentration Risk + Geographic and Country Risk
* Monitor supplier risk profiles and ensure emerging risks are escalated appropriately.
* Challenge risk acceptances and remediation plans where control weaknesses are identified.
* Support oversight of supplier incidents, service failures and operational resilience events.
Governance & Reporting
* Prepare risk reporting for management, Executive committees and Board forums.
* Representing Second Line Risk at appropriate FNZ governance committees.
* Provide management information and key risk metrics relating to third-party risks.
* Ensure material supplier risks, issues and trends are clearly communicated to senior stakeholders.
* Support preparation of regulatory submissions and responses relating to outsourcing and supplier management where required.
Risk Framework & Assurance
* Maintain and continuously improve Third-Party Risk Management policies, standards and procedures.
* Provide independent review and challenge of supplier onboarding, renewal and exit activities.
* Participate in thematic reviews, deep dives and assurance activities across supplier populations.
* Track and monitor remediation actions arising from audits, risk assessments and regulatory reviews.
* Facilitate risk and control assessments relating to third-party arrangements.
* Using the Governance, Risk & Compliance system (Archer) to support the risk management oversight of third-party arrangements.
Stakeholder Management
* Build strong relationships with team and functional leadership, procurement teams and supplier managers.
* Act as a trusted adviser to the business on third-party risk matters.
* Support delivery of risk training and awareness programmes.
* Promote a culture of effective risk management and accountability throughout the organisation.
Regulatory & Industry Developments
* Monitor relevant regulatory developments impacting outsourcing and third-party risk management.
* Provide guidance and insight on emerging third-party risk trends, including cyber threats, concentration risk and operational resilience expectations.
* Support implementation of regulatory requirements and…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×