Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.
Go Premium

Third Party Risk Manager

Remote: 
Full Remote
Contract: 
Full time
Work from: 
Georgia (USA), North Carolina (USA), Texas (USA)

Offer summary

Qualifications:

5-7 years of experience in third-party risk management within financial institutions or fintech companies., Strong background in risk assessment and due diligence, particularly in identifying and remediating risks., Experience in reporting to senior management and understanding regulatory compliance requirements., Familiarity with GRC tools like RSA Archer and knowledge of industry standards such as PCI DSS and SOC 2 Type 2..

Key responsibilities:

  • Manage and enhance Varo’s Third-Party Risk Management Framework to align with regulatory expectations.
  • Oversee vendor onboarding, risk assessments, and ensure adherence to policies and procedures.
  • Collaborate with internal teams to maintain an inventory of third-party relationships and associated risks.
  • Prepare and present reports to senior management on third-party risk exposures and mitigation strategies.

Varo Bank logo
Varo Bank Banking Scaleup https://www.varomoney.com/
501 - 1000 Employees
See all jobs

Job description

Varo is an entirely new kind of bank. All digital, mission-driven, FDIC insured and designed for the way our customers live their lives. A bank for all of us.

Varo is building out a world-class Third Party Risk Management (TPRM) team as part of the second line of defense. The TPRM Manager is a critical role at Varo and will be responsible for evaluating and managing third-party technology and security risks. The TPRM Manager will carry out ongoing reviews of all third parties, identify technology risks and requirements, and challenge and monitor third parties’ ability to perform within risk appetite.  This role will be acting as the liaison with first-line teams in order to enhance overall technology supply chain risk and business processes to maximize efficiencies and oversight.

What you'll be doing
  • Manage and enhance Varo’s Third-Party Risk Management Framework to ensure it meets regulatory expectations and Varo’s risk appetite
  • Define and meet SLA expectations for Third Party Risk Assessments, vendor onboarding, proof of concept periods, and retirement
  • Oversee the implementation and adherence to Varo’s policy and procedures regarding third-party risk management, including training internal departments on requirements and managing third-party service providers/vendors on an ongoing basis
  • Collaborate with internal stakeholders to establish and maintain a comprehensive inventory of third-party relationships, applications, and associated risks
  • Collaborate with internal technology and security teams to develop incident response plans and procedures for addressing cybersecurity incidents involving third parties 
  • Work closely with all Varo departments and internal risk groups that are seeking third-party services/vendor relationships to assure that appropriate risk assessment and due diligence are conducted for any new third-party service
  • Prepare and present comprehensive reports and recommendations to senior management regarding third-party risk exposures and mitigation strategies through performance assessments 
  • Partner with internal budget owners to deliver against budgets and work with appropriate stakeholders on contract negotiations for all managed third-party relationships
  • Track compliance with Varo’s third-party policies and procedures, analyze and report on any gaps, and provide recommendations for remediation of such gaps
  • Develop dashboard presentations and reports, and provide periodic updates to various Risk Committees on the status of the third-party risk management program
  • Act as TPRM Lead in any Regulatory and audit matters, including exams and meetings

    • You'll bring the following required skills and experiences
  • 5-7 years of leading third-party risk management experience with a financial institution, a fintech company, or a provider to the financial services business sector
  • Risk assessment and due diligence experience with a particular focus on identifying risks and identifying and implementing solutions to remediate these gaps
  • Ability to conduct and report on testing of applicable controls that are in place regarding third-party service providers
  • Experience designing systems and workflows that support effective prioritization of monitoring Third Parties and work for the team
  • Previous experience reporting to senior management, the Board, and/or Committees of the Board on the status of third-party risk management efforts
  • Experience implementing Third Party Management requirements to comply with various regulatory requirements and industry best practices
  • Business Continuity, Disaster Recovery, NIST CSF, PCI DSS compliance, SOC 2 Type 2, etc.
  • Experience with RSA Archer or similar GRC tools
    • We recognize not everyone will have all of these requirements. If you meet most of the criteria above and you’re excited about the opportunity and willing to learn, we’d love to hear from you!

    About Varo
    Varo launched in 2017 with the vision to bring the best of fintech into the regulated banking system. We’re a new kind of bank – all-digital, mission-driven, FDIC-insured, and designed around the modern American consumer. 

    As the first consumer fintech to be granted a national bank charter in 2020, we make financial inclusion and opportunity for all a reality by empowering everyone with the products, insights, and support they need to get ahead. Through our core product offerings and suite of customer-first features, we aim to address a broad range of consumer needs while profitably serving underserved communities that have been historically excluded from the traditional financial system.

    We are growing quickly in our hub locations of San Francisco, Salt Lake City, and Charlotte along with colleagues located across the country. We have been recognized among Fast Company’s Most Innovative Companies, Forbes’ Fintech 50, and earned the No. 7 spot on Inc. 5000’s list of fastest-growing companies across the country.

    Varo. A bank for all of us.

    Our Core Values
    - Customers First
    - Take Ownership
    - Respect
    - Stay Curious
    - Make it Better

    Learn more about Varo by following us:


    Varo is an equal opportunity employer. Varo embraces diversity and we are committed to building teams that represent a variety of backgrounds, perspectives, and skills. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.

    Beware of fraudulent job postings!
    Varo will never ask for payment to process documents, refer you to a third party to process applications or visas, or ask you to pay costs. Never send money to anyone suggesting they can provide work with Varo.  If you suspect you have received a phony offer, please e-mail careers@varomoney.com with the pertinent information and contact information.

    CCPA Notice at Collection for California Employees and Applicants:

    Required profile

    Experience

    Industry :
    Banking
    Spoken language(s):
    English
    Check out the description to know which languages are mandatory.

    Hard Skills

    Incident ResponseVendor ManagementRisk AnalysisThird Party Risk ManagementDisaster RecoveryConventional PCIRSA ArcherBusiness Continuity

    Other Skills

    • Teamwork
    • Communication
    • Problem Solving
    Are you interested?

    Risk Manager Related jobs

    See more Risk Manager jobs