Business Analyst (IT) With Experience In IT Supplier Management

The organisation is a major European financial services group implementing DORA-aligned third party technology risk management across its regional operations. This role exists to translate IT-supplier contract requirements into executable processes and data in tools such as SNOW TPTRM-gate and 360-risk, combining IT-supplier contract analysis with third party risk management expertise.

The mission

The programme is updating the third party technology risk management framework to meet DORA requirements and to standardise contractual and security schedules across multiple business lines. Work touches contract owners, architects and IT-risk officers and feeds into regional risk committees and reporting, with a particular focus on ensuring consistent data quality in supplier registries.

You will be responsible for turning high-level risk and business objectives into clear, testable requirements and contract schedules. Day to day you will analyse supplier contracts for contractual and security requirements, assess the contractual impact of data changes, maintain attribute rules in supplier tooling, and support quality reviews of legacy and new arrangements. You will liaise with IT risk, CIO-level stakeholders and external vendors to ensure requirements are actionable and auditable.

Your responsibilities

• Lead the analysis of IT-supplier contracts to extract contractual and security requirements and convert them into contract schedules and actionable requirements.
• Analyse and prioritise third party technology risks, producing clear recommendations for remediation and documenting acceptance criteria for controls.
• Translate business and data requirements into entries and attribute rules for SNOW TPTRM-gate and 360-risk, maintaining data quality and traceability.
• Coordinate requirement changes with architects, contract owners and IT security, ensuring changes are reflected in requirements management and change control tools.
• Prepare materials for IT-risk committees and progress reporting, and present findings to stakeholders at different levels.
• Drive follow-up on third party management topics with a pragmatic, risk-based approach to ensure exhaustive outcomes.

Your profile

Essential skills

• Minimum 2 years' experience in IT supplier management, IT contract analysis or third party risk management.
• Proven ability to analyse IT-supplier contracts and extract contractual and security obligations.
• Practical experience with requirements management, modelling and change control software.
• Strong data quality analysis skills, including assessing source systems for data defects and mapping data rules to contractual impact.
• Clear verbal and written communication, able to present to technical and executive stakeholders.

Preferred skills

• Familiarity with DORA requirements and how they affect TPTRM.
• Hands-on experience with SNOW TPTRM-gate and 360-risk or similar supplier registry tooling.
• Experience working in regulated financial services or insurance IT environments.

Languages

• Dutch, A2 (basic)
• French, A2 (basic)
• English, B2 (good)

Education

• Bachelor or Master degree, or equivalent professional experience.