Job Description

Who are we?
Howden is a collective - a group of talented and passionate people all around the world. Together, we have pushed the boundaries of insurance. We are united by a shared passion and no-limits mindset, and our strength lies in our ability to collaborate as a powerful international team comprised of 18,000 employees spanning over 100 countries.
People join Howden for many different reasons, but they stay for the same one: our culture. It's what sets us apart, and the reason our employees have been turning down headhunters for years. Whatever your priorities - work / life balance, career progression, sustainability, volunteering - you'll find like-minded people driving change at Howden.
Technology Third Party Risk Manager
Location: London
Department: Group Technology and Data Risk
Reports to: Head of Technology Third Party Risk
Job Summary
Howden Group is experiencing incredible growth, and we are currently seeking a highly motivated individual to join our newly forming Group Technology and Data Risk team. Based in the City of London, this permanent role offers a fantastic opportunity to lead all aspects of the identification, assessment, and mitigation of risks associated with technology vendors and service providers. This role ensures that external partnerships uphold Howden's security, compliance, and operational standards, and supports the development of a consistent, scalable third-party risk management (TPRM) framework.
This role follows a hybrid working model, requiring presence in the (London) office three times per week.
Key ResponsibilitiesRisk Assessments: Assist in conducting risk assessments for new and existing third-party technology vendors. Due Diligence Support: Help collect and review documentation during vendor onboarding, including security certifications, audit reports, and compliance statements. Monitoring & Reporting: Track vendor performance and risk indicators. Support the preparation of dashboards and reports for senior team members. Policy Consistency: Ensure third-party engagements align with internal policies and regulatory requirements (e.g., DORA, ISO 27001). Collaboration: Work closely with procurement, legal, and information security teams to ensure a consistent approach to third-party risk ensuring adherence to regulatory requirements. Documentation: Maintain accurate records of assessments, decisions, and remediation actions. Assurance Support: Coordinate third-party assurance processes, ensuring compliance with regulatory standards and maintaining strong relationships with external auditors. Vendor Relationship Management: Assist in the management of relationships with technology vendors, ensuring that contracts are negotiated optimally, performance is monitored, and any issues are resolved promptly to maintain optimal service delivery.

Skills & QualificationsDegree or equivalent experience in Information Security, Risk Management, Computer Science, or a related field. Proven track record in technology risk, third-party risk management, or IT audit. Strong understanding of regulatory frameworks and standards (e.g., ISO 27001, NIST, DORA, SOC 2). Evidence of ability to handle complex vendor relationships and risk assessments. Excellent analytical, organisational, and problem-solving skills. Strong written and verbal communication skills, with experience presenting to senior leaders. Proficiency in Risk management platforms (e.g., Archer, ServiceNow GRC). Professional certifications such as CTPRP, CISM, CISSP, or CRISC are highly desirable.

What do we offer in return?
A career that you define.
Yes, we offer all the usual rewards and benefits - including great healthcare provision, a wide variety of wellbeing offers, competitive salary, generous pension and more - but we know you expect all that.
What you might not expect is a job where everyone has a voice, where volunteering in the community is part of the day job, and where everyone is encouraged to play a part towards our sustainability goals. We want people who want to make a difference - not just in the workplace, but in the industry and in the wider community.
Our Culture: People First
We are proud to be at the global table, but we are most proud of our culture. It has been built on a single and constant set of principles over more than 25 years, and it has helped us become:An international group with independence and people at its heart A home for talent with a unique culture: the biggest small company in the world

The focus on being a People First business has always been at the very heart of the Group. David Howden's vision was to build an independent business with a unique culture; one that would survive and thrive as a business controlled by the people working for it. Finding the most talented and entrepreneurial people to join the Group has been and will continue to be key.
Diversity & Inclusion
At Howden Group we consider our people our chief competitive advantage and as such we treat colleagues, candidates, clients, and business partners with equality, fairness and respect, regardless of their age, disability, race, religion or belief, gender, sexual orientation, marital status or family circumstances.
What do we offer in return?
A career that you define. At Howden, we value diversity - there is no one Howden type. Instead, we're looking for individuals who share the same values as us:Our successes have all come from someone brave enough to try something new We support each other in the small everyday moments and the bigger challenges We are determined to make a positive difference at work and beyond

Reasonable adjustments
We're committed to providing reasonable accommodations at Howden to ensure that our positions align well with your needs. Besides the usual adjustments such as software, IT, and office setups, we can also accommodate other changes such as flexible hours or hybrid working.
If you're excited by this role but have some doubts about whether it's the right fit for you, send us your application - if your profile fits the role's criteria, we will be in touch to assist in helping to get you set up with any reasonable adjustments you may require.Not all positions can accommodate changes to working hours or locations. Reach out to your Recruitment Partner if you want to know more.

Permanent