Employee Applicant Privacy Notice
Who we are:
Shape a brighter financial future with us.
Together with our members, we’re changing the way people think about and interact with personal finance.
We’re a next-generation financial services company and national bank using innovative, mobile-first technology to help our millions of members reach their goals. The industry is going through an unprecedented transformation, and we’re at the forefront. We’re proud to come to work every day knowing that what we do has a direct impact on people’s lives, with our core values guiding us every step of the way. Join us to invest in yourself, your career, and the financial world.
The role:
SoFi's Risk Management team has responsibility for ensuring growth in lending and other member related activities are consistent with the company's risk appetite. The team holistically manages enterprise, credit, deposit products, fraud prevention, portfolio management, infrastructure, and business operating risks. In addition, Risk Management directly manages enterprise partners, ensures strong compliance with regulations, acts as a multi-layered second line of defense in oversight of business operations, and works to ensure risk policies enable a member-first experience.
The role of Enterprise Third Party Risk Governance Senior Analyst will be responsible for partnering with SoFi Business Units, internal stakeholders and external third party service providers to support SoFi’s Third Party Risk Management Program. This role will primarily focus on completing 2nd line of defense credible challenge reviews for onboarding, due diligence evaluation, ongoing monitoring, and other various third party risk management lifecycle activities for SoFi Technologies and its subsidiaries in accordance with Program requirements.
Key oversight support domains include:
- New Third Party Onboarding
- Active Third Party Monitoring
- Third Party Risk and Due Diligence Assessment
- Risk Identification, Mitigation/ Monitoring and Reporting Activities
- KPI/KRI Management and Reporting
Key support domains include:
- Credible challenge the third party lifecycle (including third party onboarding and due diligence assessment, ongoing monitoring oversight and termination) in accordance with SoFi Third Party Risk Management Program requirements
- Execute second line governance activities including risk assessment, exception management and ongoing monitoring oversight for SoFi’s active third party population
- Support the development of Committee reporting materials detailing ecosystem health and enterprise third party performance
- Support the execution of process controls and audit management from federal, state, investor and Internal Audit examinations.
- Track performance of Key Risk and Performance Indicators (KRIs/ KPIs) and other metrics related to the subsidiary third party ecosystem
By joining SoFi, you'll become part of a forward-thinking company that is transforming financial services for the better. We offer the excitement of a rapidly growing startup with the stability of an industry leading leadership team.
What you’ll do:
- Innovate... Bring your brightest ideas to ensure risk is being managed in alignment with regulatory guidance and best practice throughout third party life cycle (planning, due diligence, contract, on-going monitoring, and termination)
- Make Data Driven Decisions… Analyze documentation to assess third party risk and evidence of successful and efficient performance
- Leave your Mark… Communicate the efficacy of oversight strategies and overall health of the third party ecosystem through clear and concise reporting
- Provide Effective Challenge… Lead operating process and control improvement by reviewing, monitoring and testing internal controls and procedures associated with products, services and operations
- Collaborate… Build effective relationships with stakeholders who own and support key third party relationships; gain commitment from stakeholders to help manage and improve SoFi’s risk posture by understanding business objectives to influence solution strategies
- Be a Risk SME… Work in a collaborative, and constructive manner with business units and our internal and external stakeholders to enhance the effectiveness of processes and controls
- Drive Performance Outcomes... Monitor the risk and control environment to ensure that exposures are kept at acceptable levels through issue monitoring administration and exception tracking and the oversight of remediation actions to improve overall third party performance
What you’ll need:
- Bachelor’s degree
- Minimum of five years of Second Line Third Party Risk Management experience in the Financial Services industry
- Comprehensive knowledge of Third Party Risk Management methodologies, risk mitigation principles and outsourced risk governance best practice
- Experience executing comprehensive third party risk governance framework activities in consideration of relevant regulations applicable to the financial services industry
- Ability to provide consult to first line in consideration of business strategy and third party risk management objectives
Similar Jobs at SoFi
What you need to know about the Colorado Tech Scene
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute