Technology Third Party Risk Manager

Technology Third Party Risk Manager

Location: London

Department: Group Technology and Data Risk

Reports to: Head of Technology Third Party Risk

Job Summary

Howden Group is experiencing incredible growth, and we are currently seeking a highly motivated individual to join our newly forming Group Technology and Data Risk team. Based in the City of London, this permanent role offers a fantastic opportunity to lead all aspects of the identification, assessment, and mitigation of risks associated with technology vendors and service providers. This role ensures that external partnerships uphold Howden's security, compliance, and operational standards, and supports the development of a consistent, scalable third-party risk management (TPRM) framework.

This role follows a hybrid working model, requiring presence in the (London) office three times per week.

Key Responsibilities

• Risk Assessments: Assist in conducting risk assessments for new and existing third-party technology vendors.

• Due Diligence Support: Help collect and review documentation during vendor onboarding, including security certifications, audit reports, and compliance statements.

• Monitoring & Reporting: Track vendor performance and risk indicators. Support the preparation of dashboards and reports for senior team members.

• Policy Consistency: Ensure third-party engagements align with internal policies and regulatory requirements (e.g., DORA, ISO 27001).

• Collaboration: Work closely with procurement, legal, and information security teams to ensure a consistent approach to third-party risk ensuring adherence to regulatory requirements.

• Documentation: Maintain accurate records of assessments, decisions, and remediation actions.

• Assurance Support: Coordinate third-party assurance processes, ensuring compliance with regulatory standards and maintaining strong relationships with external auditors.

• Vendor Relationship Management: Assist in the management of relationships with technology vendors, ensuring that contracts are negotiated optimally, performance is monitored, and any issues are resolved promptly to maintain optimal service delivery.

Skills & Qualifications

• Degree or equivalent experience in Information Security, Risk Management, Computer Science, or a related field.

• Proven track record in technology risk, third-party risk management, or IT audit.

• Strong understanding of regulatory frameworks and standards (e.g., ISO 27001, NIST, DORA, SOC 2).

• Evidence of ability to handle complex vendor relationships and risk assessments.

• Excellent analytical, organisational, and problem-solving skills.

• Strong written and verbal communication skills, with experience presenting to senior leaders.

• Proficiency in Risk management platforms (e.g., Archer, ServiceNow GRC).

• Professional certifications such as CTPRP, CISM, CISSP, or CRISC are highly desirable.

What do we offer in return?

A career that you define.

Yes, we offer all the usual rewards and benefits - including great healthcare provision, a wide variety of wellbeing offers, competitive salary, generous pension and more - but we know you expect all that.

What you might not expect is a job where everyone has a voice, where volunteering in the community is part of the day job, and where everyone is encouraged to play a part towards our sustainability goals. We want people who want to make a difference - not just in the workplace, but in the industry and in the wider community.

Our Culture: People First

We are proud to be at the global table, but we are most proud of our culture. It has been built on a single and constant set of principles over more than 25 years, and it has helped us become:

· An international group with independence and people at its heart

· A home for talent with a unique culture: the biggest small company in the world

The focus on being a People First business has always been at the very heart of the Group. David Howden's vision was to build an independent business with a unique culture; one that would survive and thrive as a business controlled by the people working for it. Finding the most talented and entrepreneurial people to join the Group has been and will continue to be key.

Diversity & Inclusion

At Howden Group we consider our people our chief competitive advantage and as such we treat colleagues, candidates, clients, and business partners with equality, fairness and respect, regardless of their age, disability, race, religion or belief, gender, sexual orientation, marital status or family circumstances.