IT Vendor Risk Specialist (3rd Party Risk Management)

Key Highlights:

• Permanent Position
• Opportunity to work with a dynamic, industry-leading company
• Opportunities for professional growth and development.
• Up to $11,000 + Bonus + comprehensive benefits package

We are looking for an experienced IT Vendor Risk Specialist to strengthen our client's 1.5/2nd line of defense. This role is pivotal in managing third-party IT risks, ensuring compliance with regulatory requirements and performance standards while driving robust vendor governance frameworks and continuous improvement initiatives.

Key Responsibilities:

• Oversee and execute the end-to-end vendor risk management process, including onboarding/ offboarding, due diligence, contract governance, compliance, performance tracking, and termination.
• Assess and mitigate third-party IT risks, ensuring adherence to regulatory, legal, and operational standards (e.g., MAS TRM, MAS Notice 658).
• Serve as a 1.5/2nd line of defense providing independent challenge, oversight, and assurance over vendor risk controls implemented by the business.
• Develop, implement, and continuously improve vendor management policies, frameworks, and procedures, in line with industry best practices and evolving regulations.
• Lead periodic vendor risk assessments, audits, and control reviews to monitor compliance and performance.
• Collaborate closely with IT, Legal, Compliance, Procurement, and Risk teams to align vendor governance with business and regulatory priorities.
• Prepare and deliver risk, compliance, and performance reports to senior management and risk committees.

Requirements:

• Bachelor's degree in IT, Risk Management, Business Administration, or related field.
• At least 8 years of relevant IT experience, with a minimum of 5 years in IT vendor risk or third-party risk management.
• Direct experience operating in a regulated environment, preferably within a financial institution or fintech setting.
• Strong knowledge of MAS regulations (e.g., Notice 658, TRM Guidelines) and relevant risk frameworks.
• Proven track record in developing and executing vendor risk management programs, including frameworks, tools, and policies.
• Excellent communication, stakeholder management, and analytical skills, with the ability to influence across levels and functions.

Interested applicants, please submit updated resume in MS format via the Apply button.

Position and remuneration will be commensurate with skills and experience.
We regret that only short-listed candidates will be contacted.

Careerally Pte Ltd | EA Licence: 24C2215
Josephine Xie | EA Registration No: R1874897