Enterprise Third Party Risk Governance Senior Analyst

The role:

SoFi's Risk Management team has responsibility for ensuring growth in lending and other member related activities are consistent with the company's risk appetite. The team holistically manages enterprise, credit, deposit products, fraud prevention, portfolio management, infrastructure, and business operating risks. In addition, Risk Management directly manages enterprise partners, ensures strong compliance with regulations, acts as a multi-layered second line of defense in oversight of business operations, and works to ensure risk policies enable a member-first experience.

The role of Enterprise Third Party Risk Governance Senior Analyst will be responsible for partnering with SoFi Business Units, internal stakeholders and external third party service providers to support SoFi’s Third Party Risk Management Program. This role will primarily focus on completing 2nd line of defense credible challenge reviews for onboarding, due diligence evaluation,  ongoing monitoring,  and other various third party risk management lifecycle activities for SoFi Technologies and its subsidiaries in accordance with Program requirements.

Key oversight support domains include:

• New Third Party Onboarding 


• Active Third Party Monitoring


• Third Party Risk and Due Diligence Assessment


• Risk Identification, Mitigation/ Monitoring and Reporting Activities


• KPI/KRI Management and Reporting

Key support domains include:

• Credible challenge the third party lifecycle (including third party onboarding and due diligence assessment, ongoing monitoring oversight and termination) in accordance with SoFi Third Party Risk Management Program requirements 


• Execute second line governance activities including risk assessment, exception management and ongoing monitoring oversight for SoFi’s active third party population


• Support the development of Committee reporting materials detailing ecosystem health and enterprise third party performance


• Support the execution of process controls and audit management from federal, state, investor and Internal Audit examinations. 


• Track performance of  Key Risk and Performance Indicators (KRIs/ KPIs) and other metrics related to the subsidiary third party ecosystem

By joining SoFi, you'll become part of a forward-thinking company that is transforming financial services for the better. We offer the excitement of a rapidly growing startup with the stability of an industry leading leadership team.

What you’ll do:

• Innovate... Bring your brightest ideas to ensure risk is being managed in alignment with regulatory guidance and best practice throughout third party life cycle (planning, due diligence, contract, on-going monitoring, and termination)


• Make Data Driven Decisions… Analyze documentation to assess third party risk and evidence of successful and efficient performance


• Leave your Mark… Communicate the efficacy of oversight strategies and overall health of the third party ecosystem through clear and concise reporting


• Provide Effective Challenge… Lead operating process and control improvement by reviewing, monitoring and testing  internal controls and procedures associated with products, services and operations


• Collaborate… Build effective relationships with stakeholders who own and support key third party relationships;  gain commitment from stakeholders to help manage and improve SoFi’s risk posture by understanding business objectives to influence solution strategies


• Be a Risk SME… Work in a collaborative, and constructive manner with business units and our internal and external stakeholders to enhance the effectiveness of  processes and controls


• Drive Performance Outcomes... Monitor the risk and control environment to ensure that exposures are kept at acceptable levels through issue monitoring administration and exception tracking and the oversight of remediation actions to improve overall third party performance

What you’ll need:

• Bachelor’s degree


• Minimum of five years of Second Line Third Party Risk Management experience in the Financial Services industry


• Comprehensive knowledge of Third Party Risk Management methodologies, risk mitigation principles and outsourced risk governance best practice


• Experience executing comprehensive third party risk governance framework activities in consideration of  relevant regulations applicable to the financial services industry


• Ability to provide consult to first line in consideration of business strategy and third party risk management objectives