Third Party Risk Manager

Augustus•Dallas, TX

1d•Onsite

About The Position

This role is for an individual who wants to build a Third-Party Risk Management (TPRM) function from the ground up at Augustus, a stablecoin-native clearing bank. The position involves end-to-end ownership of TPRM, covering both third-party service providers and strategic partnerships. The responsibilities include designing and operating the complete lifecycle of these relationships, from intake and risk tiering to due diligence, ongoing monitoring, issues management, escalation, reporting, and governance. The goal is to establish a program that leadership trusts and regulators respect, ensuring a comprehensive inventory, consistent risk-based due diligence, clear reporting, and defensible decisions. The first six months will focus on understanding existing relationships, defining the operating model, building the core program, and making the program live and scalable.

Requirements

5+ years of hands-on TPRM experience, with direct ownership of a program or major components: intake, risk tiering, due diligence, monitoring, and escalation.
Experience managing risk across both service providers and partnerships: technology vendors, outsourced providers, fintech or commercial partnerships, and other dependency-heavy relationships.
Able to operate as an independent second-line function - comfortable challenging first-line stakeholders and standing behind recommendations with senior leadership.
Able to operate as a single-threaded owner and drive outcomes cross-functionally without formal authority.
High agency and ability to figure things out in genuinely new territory.
Systems-first mindset, with an instinct to automate.
Willingness to be embedded in live vendor and partnership decisions.
Comfort with scope shifts, direction changes, and rebuilding from scratch.
Willingness to own and fix issues in third-party risk.

Nice To Haves

Experience building a TPRM program from the ground up.
Desire for direct ownership of the full lifecycle (intake, diligence, monitoring, escalation, exit).

Responsibilities

Own Third-Party Risk Management (TPRM) end to end at Augustus, covering both third-party service providers and strategic partnerships.
Build a real, operating TPRM program: intake, risk tiering, due diligence, ongoing monitoring, issues management, escalation, reporting, and governance.
Design and run the complete lifecycle for both service providers and partnerships: evaluation before engagement, monitoring of critical and high-risk ones, and surfacing/resolving control gaps, incidents, concentration risk, and dependency risk.
Pressure-test existing processes and build new ones where they don't exist.
Establish a comprehensive inventory with clear ownership and risk tiering.
Implement consistent risk-based due diligence.
Create clear reporting and escalation paths.
Make defensible decisions around onboarding, ongoing reliance, remediation, and exit.
Map all existing vendors and partners and assess risk management gaps.
Define the end-state operating model for TPRM.
Stand up the core program: intake standards, risk tiering, due diligence requirements, and ongoing monitoring for critical and high-risk relationships.
Ensure issues and control gaps have a clear home, are tracked, escalated, and resolved with ownership.
Ensure the business knows how to engage vendors and partners without guesswork.
Make the TPRM program live, scalable, and able to withstand regulatory scrutiny.