SouthState Bank

TPRM Governance, Operations, and Reporting Manager

SouthState Bank$90K — $120K *
US-AnywhereRemote in United States
Finance & Insurance
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor’s Degree required; advanced degrees preferred.
  • 5+ years in third-party risk management or relevant field.
  • Expertise in Compliance, Information Security, and operational assessments.
  • Understanding of the Third-Party Risk Management life cycle.
  • Knowledge of the Three Lines of Defense risk model.
  • Strong decision-making and leadership abilities.
  • Familiarity with Governance, Risk, and Compliance tools, especially Acher and AI capabilities.

Responsibilities

  • Lead the governance framework for the Third-Party Risk Management (TPRM) program.
  • Develop and enhance TPRM policies and procedures for consistency.
  • Execute and manage the TPRM Program strategy and roadmap.
  • Deliver training to ensure understanding of TPRM roles and expectations.
  • Define reporting metrics and dashboards for risk exposure visibility.
  • Establish key indicators for timely risk identification and management.
  • Oversee governance for high-risk vendors regarding compliance and risk profiles.

Benefits

  • Comprehensive health and wellness programs.
  • Retirement savings plans with company matching.
  • Career development and continuous education opportunities.
  • Flexible work arrangements including remote options.
  • Generous paid time off and holiday policies.
Full Job Description

Summary

The Third-Party Risk Governance, Operations, and Reporting Manager is responsible for establishing and maintaining the governance framework, reporting capabilities, and operational oversight of the Bank’s Third-Party Risk Management (TPRM) program. This role assures consistent application of policies, standards, risk framework, regulatory expectations and consideration of emerging risks. The position is critical to strengthening risk transparency, supporting regulatory compliance, and enabling informed decision-making across the third-party lifecycle.

Duties & Responsibilities

  • Lead the governance framework for the TPRM Program, assuring alignment with regulatory expectations (e.g., OCC guidance), third party risk management best practices, internal policies, and integration of emerging risks.

  • Develop, maintain, and enhance TPRM policies, standards, and procedures to support a consistent control environment across the bank.

  • Lead the execution of the TPRM Program Strategy, Roadmap, and Workplan.

  • Develop and deliver training for the TPRM team and business stakeholders across the bank to assure a clear understanding of the TPRM Program, roles, responsibilities, and expectations.

  • Identify and execute TPRM reporting and metrics, including the development of dashboards and executive-level reporting that provide clear visibility into third-party risk exposures, trends, and program performance.

  • Establish and monitor key risk indicators (KRIs), key performance indicators (KPIs), issue, exception management processes to support timely identification, escalation, and remediation of third-party risks.

  • Oversee governance over critical and high-risk vendors, including oversight of risk profiles, risk tiering, segmentation, and alignment to business resiliency and concentration risk frameworks.

  • Partner with cross-functional stakeholders (e.g., SOX, MRM, AIGA, Legal, Compliance, IT, and Business Units) to promote adherence to TPRM requirements and embed risk management practices into third-party lifecycle activities, and to identify opportunities to improve the TPRM Program.

  • Identify, develop, and maintain TPRM technologies, including use of Artificial Intelligence (AI) capabilities, to perform TPRM responsibilities.

  • Oversee TPRM vendor inventory and reconciliations.

  • Oversee the vendor exit strategy and fourth party framework.

  • Lead and facilitate internal audits and regulatory examinations by providing documentation, analysis, and responses related to third-party risk assessments

  • It is the responsibility of this role to take ownership of all tasks and challenges that they encounter in the operation of their assigned position.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. 

Qualifications

Education Requirements

  • Bachelor’s Degree

Minimum Experience

  • Required:

  • Third-party risk management experience that includes Compliance, Information Security, Technology, and Operational process assessments, including 5 or more years recent third-party risk management activities, audit, or related activity.

  • Demonstrated understanding of the Third-Party Risk Management life cycle and risk assessment activities.

  • Broad knowledge of the Three Lines of Defense Risk Management and Controls Assessment Models.

  • Strong business focused decision making and problem-solving skills.

  • Excellent interpersonal and leadership skills with a demonstrated ability to establish relationships with senior management across all business units.

  • Provide ability to maintain confidentiality regarding sensitive information.

  • Familiarity with Governance, Risk, and Compliance suite of tools, preferably Acher.

  • Familiarity with using AI capabilities, preferably Copilot.

  • Preferred:

  • Knowledge of banking industry practices and regulatory requirements.

  • Knowledge of information security concepts, practices, tools to effectively assess security risk, recommend risk mitigation activities, and communicate to the business unit.

  • Experience with using Artificial Intelligence capabilities to support risk assessments or related activities.

Licenses & Certifications

  • At least one of the following: Certified Third-Party Risk Management Professional (C3PRMP), Certified Third Party Risk Professional (CTPRP), Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified in Risk and Information Systems Control (CRISC).

Physical Demands and Work Environment

Physical Demands

  • Ability to communicate in person, on the phone, and through electronic channels

  • Ability to use a computer on a frequent basis, including typing and sustained attention to a monitor

  • Ability to sit, walk, and/or stand for extended periods of time

  • Ability to bend and reach

Work Environment

  • Office: This position reports to a physical Company location, and the setting will be a typical office environment.

  • Remote or hybrid: For remote or hybrid positions, a secure and distraction-free setting is required, with a reliable internet connection (cable or fiber preferred, mobile hotspots not acceptable).  Hybrid positions will report to a physical Company location, as directed by the manager, and that setting will be a typical office environment.

About SouthState Bank

South State Corporation is a bank holding company headquartered in Columbia, South Carolina. The company was founded in 1933 as First Federal Savings and Loan Association of Orangeburg, and has since grown to become one of the largest banks in the Southeastern United States. South State Corporation operates through its subsidiary, South State Bank, which provides a range of banking services, including personal and business banking, wealth management, and mortgage lending. The bank has over 200 branches across the Carolinas, Georgia, and Virginia.
Learn more about SouthState Bank
Size
2,756 employees
Market Cap
$2,149
Industry
Founded
2000
5 Year Trend
+3770%
NASDAQ

Similar Jobs

More Jobs at SouthState Bank

More Finance & Insurance Jobs

Find similar TPRM Governance, Operations, and Reporting Manager jobs: