Your Responsibilities

Vendor Lifecycle & Operational Relationship Management

• Own the end-to-end third-party operational lifecycle, from initial onboarding and technical integration to continuous monitoring and eventual offboarding.
• Build and maintain strong, strategic relationships with key external partners, acting as the primary point of escalation for operational bottlenecks and service disruptions.
• Collaborate closely with Compliance, Procurement and Legal teams to ensure operational readiness and compliance requirements are met during the vendor selection and renewal phases.

Digital Operational Resilience & DORA Compliance

• Lead the implementation and ongoing management of ICT third-party risk management controls in strict alignment with DORA requirements.
• Maintain an accurate and up-to-date Register of Information detailing all ICT third-party service dependencies.
• Partner with InfoSec, Compliance, and Risk teams to conduct regular vendor risk assessments, evaluate concentration risks, and ensure third parties participate in required operational resilience testing (e.g., TLPT).
• Develop and maintain joint business continuity plans, robust vendor escalation matrices, and incident management protocols, ensuring alignment with DORA’s incident reporting mandates.

Performance & SLA Monitoring

• Define, implement, and track rigorous KPIs and SLAs for all third-party providers.
• Conduct regular Quarterly Business Reviews (QBRs) and performance audits with key vendors to ensure continuous improvement and strict adherence to service availability targets.
• Design and maintain operational dashboards (e.g., via Looker, Tableau) to monitor vendor performance, dependency health, and risk metrics in real-time.

Process Optimization & Integration

• Design seamless operational workflows that integrate third-party services into our internal value chain without friction.
• Transition reactive, detective vendor controls into automated, preventive systems to build stronger system-based safeguarding mechanisms.
• Map and document product setups and process dependencies, ensuring the exact impact of third-party outages on customer orders is clearly understood and mitigated.

Your Profile

• Experience: 5+ years of experience in Operations, Vendor Management, or Third-Party Risk Management (TPRM), specifically within a regulated financial, FinTech, or SaaS environment.
• Regulatory knowledge (DORA): particularly its pillars relating to ICT third-party risk management, incident reporting, and resilience testing.
• Risk & Controls: Deep understanding of vendor due diligence, SLA formulation, and transitioning operational controls from detective to preventive models.
• Analytical Skills: Highly data-driven with the ability to build performance metrics and utilize data visualization tools [e.g., Looker, Snowflake, Excel/Google Sheets] to monitor vendor health.
• Stakeholder Management: Exceptional communication skills with the ability to collaborate effectively with technical teams, compliance officers, C-level executives, and external partners.
• AI: Early adopter of AI productivity tools with a keen interest in how emerging AI governance impacts third-party risk and ICT resilience.
• Language: Fluent in English and a good command of German (B2).

Join our mission, join our team – and grow with us!

At Raisin, we care about each other and it is one of our top priorities to foster an open and caring environment in which everyone feels welcome and comfortable. Our culture is strongly driven by our ambitious team, which connects more than 75 different nationalities.

As part of our team, you will benefit from:

• Employee Development Budget of €2,000 and four full training days per year.
• Flexible working hours, home office and 30 vacation days.
• A company pension scheme (Betriebliche Altersvorsorge), which we support with 20%.
• Enjoy more than 50+ different sports with Urban Sports Club: We subsidize your membership with more than €20 per month.
• Do you miss being in the office? The Deutschland Ticket gets you there, which we subsidize with €25 per month.
• Love cycling? With JobRad, lease the bike of your choice and enjoy tax savings, plus Raisin covers your monthly insurance costs.
• Hungry all the time? Snacks, daily fresh fruit as well as drinks provided at the office.
• You are moving from another country or city to join us? We may support your relocation.