Teya
Outsourcing and Third Party Risk Management Lead

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Outsourcing and Third Party Risk Management Lead
Hello! We're Teya.
Teya is a payment and software service provider, headquartered in London serving small, local businesses across Europe. Founded in 2019, we build easy to use, integrated tools that enable our members to accept payments and boost business performance.
At Teya we believe small, local businesses are the lifeblood of our communities.
We’re here because we don’t believe there’s a level playing field that gives small businesses with a fighting chance against the giants of the high street.
We’re here because we see banks and legacy service providers making things harder for them. We don’t think the best technology or the best service should be reserved for those with the biggest headquarters.
We’re here to fight for a future where small, local businesses can thrive, and to commit the same dedication they offer all of us.
Become a part of our story.
We’re looking for exceptional talent to join our mission. We offer a chance to create impact in a high-energy and connected culture, while benefiting from continuous learning opportunities, a supportive community which is proud to serve our mission, and comprehensive benefits.
The Outsourcing and Third Party Risk Management (TPRM) Lead is responsible for running Teya’s day-to-day outsourcing and third party risk activities within the first line of defence, ensuring Teya meets its regulatory obligations and manages the risks arising from its use of external providers. The role owns the operational execution of the TPRM framework across the business, including due diligence, ongoing monitoring, contract risk review, and the maintenance of Teya’s outsourcing and ICT third party registers. You’ll be the go-to person for business owners managing third party arrangements, working closely with Procurement, Legal, Information Security, Compliance, and Operational Risk. You’ll be comfortable in a fast-paced environment and able to balance multiple competing priorities.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Key Objectives
Drive the continuous improvement of TPRM and outsourcing processes, controls, and tooling, with a focus on risk-based prioritisation and proportionate due diligence. Own and maintain Teya’s outsourcing register and ICT third party register, ensuring all critical or important arrangements are correctly classified and recorded in line with EBA Guidelines on Outsourcing, DORA, and FCA/PRA expectations. Act as the first point of contact for business owners on third party risk matters, supporting them through onboarding, risk assessment, contract review, and ongoing monitoring. Coordinate due diligence across information security, data protection, financial crime, business continuity, and concentration risk, working with subject matter experts to produce a single view of third party risk. Run the ongoing monitoring programme, including performance reviews, control attestations, incident tracking, and periodic re-assessments of material third parties. Produce management information and reporting for senior governance forums, flagging emerging risks, control gaps, and remediation progress. Partner with Compliance and Operational Risk (2LOD) to ensure framework changes, regulatory updates, and findings are translated into operational practice. Support regulatory submissions, audits, and supervisory engagement on outsourcing and ICT third party matters.
Job Requirements
A minimum of 3 years of experience in outsourcing or third party risk management within a regulated financial services environment (payments, e-money, banking, or similar). Working knowledge of the EBA Guidelines on Outsourcing Arrangements and DORA Experience running due diligence and ongoing monitoring across material third parties, including critical or important outsourcing arrangements and ICT services supporting critical or important functions. Highly organised, with strong attention to detail and the ability to manage a large portfolio of third parties simultaneously. A pragmatic, risk-based mindset. You see the role of 1LOD as enabling the business to move quickly and safely, not blocking it. You can hold the line on real risks while finding sensible paths through. Comfortable building with AI. You use AI tooling in your day-to-day work — for due diligence summarisation, drafting, evidence review, data extraction — and you actively look for ways to apply it to reduce manual effort across the third party lifecycle. Bias to action. You'd rather ship a working v1 of a process or template and iterate than spend months designing the perfect framework. Commercial awareness. You understand that every third party relationship has a business purpose, and you can have a credible conversation with engineers, product owners, and commercial leads about trade-offs rather than just citing policy.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Desirable
Experience implementing or working with TPRM tooling (e.g. Aravo, Prevalent, OneTrust, ProcessUnity). Experience supporting DORA implementation across a financial services firm, including ICT register builds and contractual remediation programmes. Familiarity with operational resilience frameworks and the identification of important business services.
Teya is proud to be an equal opportunity employer.
We are committed to creating an inclusive environment where everyone regardless of race, ethnicity, gender identity or expression, sexual orientation, age, disability, religion, or background can thrive and do their best work. We believe that a diverse team leads to better ideas, stronger outcomes, and a more supportive workplace for all.
If you require any reasonable adjustments at any stage of the recruitment process whether for interviews, assessments, or other parts of the application—we encourage you to let us know. We are committed to ensuring that every candidate has a fair and accessible experience with us.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location