Third Party Risk Analyst

5 days ago


Bengaluru, Karnataka, India Stripe Full time ₹ 9,00,000 - ₹ 12,00,000 per year

About Stripe
Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world's largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career.

About Third Party Risk
The Third Party Risk Management (TPRM) team is accountable for defining, maintaining, and overseeing the third party risk framework, policy, and inventory in accordance with management expectations and best practices. We are focused on assessing and managing risks exposed through our relationships with third parties, adhering to regulatory guidance, and driving operational efficiencies across risk teams. TPRM is a regulatory obligation for Financial Services companies.

What you'll do

We're looking for a Third Party Risk Analyst to join our growing team. This individual will support the ongoing operations of the existing framework for identifying, assessing, and managing third party risks to protect Stripe.

Responsibilities

  • Conduct third party assessments while facilitating the process through closure.
  • Conduct risk domain reviews owned by TPRM including reputation, financial, anti-bribery and corruption, and sanctions risk.
  • Responsible for the integrity and maintenance of the third party risk inventory including reconciliation to other internal data sets.
  • Prepare and continuously improve third party risk reporting for senior leaders, relevant stakeholders, and governance groups. ^
  • Partner with the US TPRM team to drive execution and delivery of required procedures to maintain ongoing regulatory compliance operations for programs including the Digital Operational Resilience Act (DORA) and global outsourcing regimes.
  • Work closely with internal teams at Stripe to coordinate procedures, gather inputs and handover to US TPRM.
  • Maintain procedural documentation, driving consistency and alignment across our procedures.
  • Identify opportunities to improve processes and contribute to scaling our program globally.
  • Ability to escalate issues and risks to management upon identification.
  • Be a part of building a brand new team for Stripe and leading the way towards a culture of compliance.

Who you are

We're looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement.

Minimum Requirements

  • 3+ years of relevant experience in risk and compliance which could include third party, operational, enterprise, or other areas of risk and compliance management
  • Self-disciplined, diligent, proactive, organized, and exceptionally detail oriented
  • An extremely responsive and collaborative team-player
  • User first mindset and are energized by the challenge of solving difficult problems
  • Solution-oriented mindset with enthusiasm for establishing best practices
  • Humble and have a proven track record for working well across teams
  • A proven ability to build strong collaborative working relationships with business partners
  • A proven ability to be a self starter capable of driving business results without significant supervision
  • The ability to maintain high performance under tight timelines and a "roll up your sleeves" mindset to get any job done
  • The ability to bring structure to ambiguous areas of opportunity and thrive in an unstructured, fast-moving environment
  • Excellent verbal and written communication skills
  • Excellent problem-solving skills and demonstrated ability to work independently, analyze problems and data sets to make complex investigation decisions
  • Independently analyze and evaluate information from various data sources to determine a course of action for a matched case
  • Demonstrated experience partnering with cross-functional stakeholders
  • Demonstrated history of taking on various types of challenging projects and producing results

You Will Also Likely Have (not Required)

  • Strong knowledge of gSuite tools, Tableau and other data reporting tools including experience working with/analyzing data sets.
  • Knowledge in the fintech industry
  • The ability to be flexible and comfortable with changing requirements
  • A builder's mindset and a willingness to question assumptions and conventional wisdom
  • A passion for creating new systems and solving problems via infrastructure and automation
  • Eagerness to stay updated on emerging trends, regulations, and industry standards related to third party risk management and integrate them into Stripe's program

In-office expectations

Office-assigned Stripes in most of our locations are currently expected to spend at least 50% of the time in a given month in their local office or with users. This expectation may vary depending on role, team and location. For example, Stripes in our Bucharest, Romania site have an 80% in-office expectation, and those in Stripe Delivery Center roles in Mexico City, Mexico and Bengaluru, India work 100% from the office. Also, some teams have greater in-office attendance requirements, to appropriately support our users and workflows, which the hiring manager will discuss. This approach helps strike a balance between bringing people together for in-person collaboration and learning from each other, while supporting flexibility when possible.

Pay and benefits

Stripe does not yet include pay ranges in job postings in every country. Stripe strongly values pay transparency and is working toward pay transparency globally.



  • Bengaluru, Karnataka, India Gainsight Software Private Limited Full time

    About Stripe: - Stripe is a financial infrastructure platform for businesses.- Millions of companies-from the world's largest enterprises to the most ambitious startups-use Stripe to accept payments, grow their revenue, and accelerate new business opportunities.- Our mission is to increase the GDP of the internet, and we have a staggering amount of work...


  • Bengaluru, Karnataka, India Broadridge Full time

    Job DescriptionKey Responsibilities:- Vendor Security Documentation Review- Evaluate third-party security artifacts including SOC 2 Type II reports, ISO/IEC 27001 certificates (with Statement of Applicability), vulnerability assessments and penetration testing (VAPT) results, and security policy documentation. Identify gaps or weaknesses in vendor controls...


  • Bengaluru, Karnataka, India Kiya Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    position: Contract to Hire(C2H)Skill: Third-Party Risk ManagementExperience: 3+Location: BangNotice Period: Immediate to 15 DaysJob Descrption :General Risk management and Controls management awareness.Internal Controls Testing/ Internal Audit.Understanding of Third-Party Risk Management including Inherent and Residual Risks.Familiarity with the banking...


  • Bengaluru, Karnataka, India State Street Full time

    Third-Party Risk Management Due Diligence - Tech Lead Role Summary State Street uses third parties to support internal processes and in the delivery of certain products and services to clients These third parties are evaluated and risk assessed through our Third-Party Risk Management TPRM Program The Due Diligence Onboarding Senior Associate is...


  • Bengaluru, Karnataka, India Aecome Full time

    Job DescriptionJob descriptionThe use of third parties is an essential element in AECOMs service delivery model and creates the need for management oversight and continuous monitoring of their security capabilities and performance. AECOM works with many third parties (e.g., vendors, partners, suppliers) each of which poses security, compliance and...


  • Bengaluru, Karnataka, India State Street Corporation Full time ₹ 6,00,000 - ₹ 12,00,000 per year

    Job Description Third-Party Risk Management Due Diligence - Tech Lead Role Summary State Street uses third parties to support internal processes and in the delivery of certain products and services to clients. These third parties are evaluated and risk assessed through our Third-Party Risk Management (TPRM) Program. The Due Diligence Onboarding...


  • Bengaluru, Karnataka, India NETSACH GLOBAL Full time ₹ 4,00,000 - ₹ 12,00,000 per year

    Greetings from Netsach - A Cybersecurity Company.Job Summary:Our client, a leading bank based in Dubai, is looking for a Junior Third-Party Risk Assessor to join their growing Risk Management function. This entry-level role will support the assessment, monitoring, and governance of third-party service providers, ensuring compliance with internal policies and...


  • Bengaluru, Karnataka, India AT&T Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Job Description:Role: Senior – Third Party Risk Management (TPRM)About the Company:Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold...


  • Bengaluru, Karnataka, India AT&T Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Job Description Role: Senior Third Party Risk Management (TPRM)About the Company: Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold...

  • Cyber Security

    2 hours ago


    Bengaluru, Karnataka, India, Karnataka Computacenter Full time

    Life on the teamOperates the Third-Party Cyber Risk Management framework to ensure cybersecurity risks related to our supply chain are effectively, managed to maintain a resilient and compliant security posture.What you’ll doOperate the Third-Party Cyber Risk Management Framework (~ 90%)• Third-Party Risk Management framework: operate processes and...