Third Party Risk Manager
This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.
Since we opened our doors in 2009, the world of commerce has evolved immensely, and so has Square. After enabling anyone to take payments and never miss a sale, we saw sellers stymied by disparate, outmoded products and tools that wouldn't work together.
So we expanded into software and started building integrated, omnichannel solutions - to help sellers sell online, manage inventory, offer buy now, pay later functionality, book appointments, engage loyal buyers, and hire and pay staff. Across it all, we've embedded financial services tools at the point of sale, so merchants can access a business loan and manage their cash flow in one place. Afterpay furthers our goal to provide omnichannel tools that unlock meaningful value and growth, enabling sellers to capture the next generation shopper, increase order sizes, and compete at a larger scale.
Today, we are a partner to sellers of all sizes - large, enterprise-scale businesses with complex operations, sellers just starting, as well as merchants who began selling with Square and have grown larger over time. As our sellers grow, so do our solutions. There is a massive opportunity in front of us. We're building a significant, meaningful, and lasting business, and we are helping sellers worldwide do the same.
The Role
Join the Compliance team as the Third Party & Outsourcing Risk Manager who is responsible for the day to day oversight and coordination of services received from intragroup services, and holistic oversight of all external TPSP/OSPs. You will be based in the London office but will have the option to work remotely (from anywhere in the UK), and report to the CCO, Europe.
You Will
The Third-Party & Outsourcing Risk Manager is responsible for leading the development and implementation of the outsourcing risk program (policy, procedures and guidelines) in accordance with regulatory requirements, working closely with first line business stakeholders, risk, compliance and legal to ensure the requirements are met
- Producing relevant management information on program updates, outsourcing risks, regulatory changes and the outcomes from any initial and periodic due diligence, highlighting any risks or concerns identified as part of the process;
- Conduct an initial review of any potential outsourced arrangements (triggered through Thinksmart for external third parties) to determine whether the outsourcing and criticality assessment is required;
- Review potential outsourcing arrangements and changes to existing arrangements, supervising the completeness of Outsourcing Risk and Criticality Assessments, Due Diligence, and Outsourcing Contracts for all OSPs, prior to entering into an outsourcing arrangement, and periodically throughout the outsourcing relationship;
- Collaborate with risk subject matter experts to ensure the risk assessment and due diligence process is effective in identifying and mitigating risk with critical and non critical services
- Maintaining the Outsourcing Register and reviewing it annually to ensure it is accurate and up to date. Advise the OOC of any significant changes and present this to the OOC, RGC & Board on at least an annual basis
- Conduct periodic (at least annual) review of outsourcing policy, procedures, criticality assessment, risk assessment and due diligence process to ensure they are is still fit for purpose and aligned to regulatory requirements
- Conducting adequate and risk-based monitoring of Outsourcing Arrangements with further oversight and challenge coming from 2LOD and 3LOD;
- Assessing any proposed changes in the nature of any Outsourced Arrangements and where necessary, ensuring that all relevant outsourcing documentation has been updated and approvals received prior to the change being made;
- Ensuring that BCM testing is completed on critical outsourcing arrangements on at least an annual basis;
- Developing the outsourcing program to ensure it continues to align with any new regulatory requirements
- Ensuring the development and delivery of a risk-based outsourcing training programm in SIL;
- Ensuring that Block group policies and procedures meet any obligations imposed on SIL in order to comply with any local regulatory legal and risk management requirements;
- Assess Block groups policies and procedures and ensure any obligations imposed on SIL comply with any local regulatory legal and risk management requirements, assisted by the Outsourcing recipient;
- Producing relevant management information on the performance and delivery of outsourced services including the reporting of any control issues, breaches or incidents, and providing this to SIL Outsourcing Oversight Committee;
You have
- 6+ years' experience within payments/e-money or other regulated financial services firm
- Experience working in outsourced service providers and vendor relationship management
- Relevant experience and in-depth knowledge of outsourcing regulations, especially EBA and Financial Conduct Authority outsourcing guidelines
- Excellent communication and organisational skills
- Self-starter with ability to work in a fast-paced environment
This role has been identified as a Controlled Function position by the Central Bank of Ireland. Any offer is subject to, and conditional upon, satisfactory completion of fitness and probity checks in accordance with the Central Bank Reform Act 2010.
Every benefit we offer is designed with one goal: empowering you to do the best work of your career while building the life you want. Check out benefits at Block.
Block, Inc. (NYSE: SQ) is a global technology company with a focus on financial services. Made up of Square, Cash App, Spiral, and TIDAL, we build tools to help more people access the economy. Square helps sellers run and grow their businesses with its integrated ecosystem of commerce solutions, business software, and banking services. With Cash App, anyone can easily send, spend, or invest their money in stocks or Bitcoin. Spiral (formerly Square Crypto) builds and funds free, open-source Bitcoin projects. Artists use TIDAL to help them succeed as entrepreneurs and connect more deeply with fans. TBD is building an open developer platform to make it easier to access Bitcoin and other blockchain technologies without having to go through an institution.