Outsourcing and Third Party Risk Management Lead (Fintech)

TL;DR

Outsourcing and Third Party Risk Management (TPRM) Lead (Fintech): Managing day-to-day outsourcing and third-party risk activities within the first line of defense with an accent on regulatory compliance and operational execution. Focus on driving process improvements, maintaining ICT registers, and partnering with cross-functional teams to ensure risk-based due diligence and ongoing monitoring.

Location: London

Company

hirify.global is a London-based payment and software service provider dedicated to empowering small, local businesses across Europe with integrated tools and financial services.

What you will do

• Own and execute the TPRM framework, including due diligence, contract risk reviews, and ongoing monitoring.
• Maintain outsourcing and ICT third-party registers in compliance with EBA Guidelines, DORA, and FCA/PRA expectations.
• Act as the primary point of contact for business owners regarding third-party risk assessments and onboarding.
• Coordinate cross-functional due diligence across information security, data protection, and financial crime.
• Produce management reporting for senior governance forums on emerging risks and control gaps.
• Drive continuous improvement of risk processes and tooling, leveraging AI to reduce manual effort.

Requirements

• Minimum 3 years of experience in outsourcing or third-party risk management within a regulated financial services environment.
• Working knowledge of EBA Guidelines on Outsourcing Arrangements and DORA.
• Experience running due diligence and monitoring for material third parties and ICT services.
• Strong organizational skills with the ability to manage a large portfolio of third-party relationships.
• Pragmatic, risk-based mindset with the ability to balance business speed and safety.
• Proficiency in using AI tooling for due diligence, data extraction, and evidence review.

Nice to have

• Experience implementing or working with TPRM tooling such as Aravo, Prevalent, OneTrust, or ProcessUnity.
• Experience supporting DORA implementation, including ICT register builds and contractual remediation.
• Familiarity with operational resilience frameworks and identification of important business services.

Culture & Benefits

• Opportunity to create impact in a high-energy, connected, and supportive culture.
• Commitment to continuous learning and professional development.
• Comprehensive benefits package.
• Inclusive work environment that values diversity and provides reasonable adjustments for all candidates.