Third Party Risk Lead

About the role

In this role, you will serve as the subject matter expert (SME) for the Third-Party Risk Management (TPRM) framework and operating model, providing expert support to the AUSPAC division in identifying material service providers and ensuring robust operational risk management. You will oversee the practical application of the division's risk frameworks, coordinate governance and reporting activities related to third party risk for both divisional and group forums and help ensure compliance with regulatory and internal standards. The role is pivotal in guiding stakeholders through the third-party lifecycle, supporting materiality assessments, and delivering timely, insightful risk and performance metrics to senior committees. Ultimately, the Third-Party Risk Lead drives the continuous improvement of risk controls, reporting, and assurance across all third-party arrangements. About QBE At QBE, we get to the heart of what matters for our customers. And we do it all with a human touch. We're an international insurer with more than 13,000 people working across 26 countries - which means we're big enough for your ambitions, yet small enough for you to make a real impact. It's an exciting time. We're building momentum towards our vision to become the most consistent and innovative risk partner. What if you could have a positive impact - at work and in the world? As part of the QBE team, you'll get to spend every day working with people who are passionate, talented and kind. Your new role As Third-Party Risk Management Lead, you will: Embed the Third Party Risk Management (TPRM) Framework across AUSPAC, ensuring material providers are identified, assessed, and monitored in line with operational risk requirements Coordinate third-party governance activities, including TPRM Governance Committee inputs and compliance with APRA and internal standards Support Third Party Arrangement Owners (TPAOs) with materiality, compliance, and effective use of TPRM tools and templates Improve third-party data quality and reporting, delivering clear, timely insights for senior committees and Board reporting Maintain the third-party governance framework, ensuring consistent controls, monitoring, reporting, and escalation across the lifecycle Provide oversight and assurance of third-party risk, including training, risk assessments, mitigation support, and issue management aligned with regulatory standards About you You bring strong working knowledge of risk frameworks and apply them confidently in practice, with hands-on experience across risk management. You have a solid understanding of regulatory frameworks (including CPS 230) and industry standards, enabling you to assess complex risks, support mitigation strategies, and drive continuous improvement across controls, reporting, and operational processes. Demonstrated experience in third-party risk ideally in financial services or other regulated industries Strong analytical, problem-solving, and project management skills Excellent communication skills, with the ability to translate complex risk concepts into clear business outcomes Sound understanding of regulatory requirements and how to interpret and apply them Familiarity with third-party lifecycle frameworks, operating models, and data management practices Proven stakeholder engagement skills, with experience identifying gaps, driving improvements