The Company
THEMA Consulting has been a trusted partner for banks and corporates in Treasury, Capital Markets and Risk Management since 1994. We deliver cutting-edge technology and services, backed by a strong culture of security, compliance and operational excellence.
The Role
We are looking for a Senior Compliance & Supplier Risk Lead to strengthen our Security & Compliance team in Lugano.
In this role, you will support our Security Officer as the senior reference for Third-Party Risk Management (TPRM) and regulatory compliance (ISO/IEC 27001, DORA, FINMA). You will lead vendor risk assessments, monitor critical suppliers, and ensure our security and resilience framework meets the highest international standards.
Key Responsibilities
* Drive end-to-end Third-Party Risk Management (vendor due diligence, risk scoring, remediation, reviews).
* Ensure compliance with ISO/IEC 27001:2022, DORA, and FINMA requirements.
* Oversee vendor monitoring: SLA/KPI, BCP/DR testing, incident reporting.
* Negotiate and validate contractual clauses (incl. DPA, audit rights, sub-outsourcing).
* Support audits, inspections, and client/regulator requests.
Your Profile
* 15+ years in security/compliance within financial services, fintech, or IT service providers (MSP/SaaS).
* Strong expertise in ISO/IEC 27001, GDPR, Swiss FADP, and TPRM frameworks.
* Familiarity with cloud and infrastructure services (IaaS/PaaS/SaaS, SOC/MSSP, IAM, BCP/DR).
* Experience with DORA requirements and outsourcing regulations.
* Fluency in Italian (C2) and English (C1).
Nice to Have
* Experience with EU/Swiss regulators (FINMA, ECB, EBA, BaFin, ACPR, IVASS, CSSF, CNMV).
* Knowledge of FINMA Circulars 2018/3 (Outsourcing) and 2023/1 (Operational Risks & Resilience).
* Relevant certifications (ISO/IEC 27001 Lead Auditor, CISM/CISSP, CCSK/CCSP).
What We Offer
* A performance-driven, international environment.
* Career growth and development opportunities.
* Direct exposure to regulatory and technological innovation.
* A collaborative and diverse workplace culture.
Disclaimer / Policy Statements
THEMA Consulting is an Equal Opportunity Employer: we respect and empower each individual and support the diverse cultures, perspectives, skills, and experiences within our workforce.
Industry
* Information Technology and Services
* Financial Services
* Capital Markets & Risk Management
Employment Type
Full-time.
#J-18808-Ljbffr