Enterprise Third Party Risk Governance Manager

The role

SoFi's Risk Management team has responsibility for ensuring growth in lending and other member related activities are consistent with the company's risk appetite. The team holistically manages enterprise, credit, deposit products, fraud prevention, portfolio management, infrastructure, and business operating risks. In addition, Risk Management directly manages enterprise partners, ensures strong compliance with regulations, acts as a multi-layered second line of defense in oversight of business operations, and works to ensure risk policies enable a member-first experience.

The role of Enterprise Third Party Risk Governance Manager will be responsible for partnering with SoFi Business Units, internal stakeholders and external third party service providers to support SoFi's Third Party Risk Management Program. This role will lead the onboarding, due diligence evaluation, ongoing monitoring and second line governance activities for SoFi Technologies and its subsidiaries in accordance with Program requirements.

Key oversight support domains include:

• Support execution of second line Supplier Lifecycle phase activities owned by the Third Party Risk Governance group (including due diligence and ongoing monitoring, facilitating supplier approval and termination management)
• Facilitate cross functional communication forums related to Supplier Ecosystem Governance
• Evaluate suppliers to assess posture and potential exposures at initial onboarding and throughout engagement
• Provide credible challenge, execution oversight of first line Supplier Relationship Owners and management of enterprise outsourced risk metrics
• Manage Program escalations, exceptions and non- compliance events in accordance with Policy requirements
• Define, measure and monitor progress of Supplier Risk Management activities (Issue Tracking, Risk Remediation Efforts, Key Supplier Metrics)
• Lead development and execution of enterprise education campaigns designed to increase outsourced risk awareness and Supplier Risk Management Program adherence
• Lead control design to improve the efficacy of risk mitigation activities
• Manage Key Risk Indicators (KRIs) and Key Performance Metrics (KPIs) to drive Program oversight consistency across the supplier ecosystem
• Create reporting materials detailing program oversight activities, supplier ecosystem health and KRIs/ KPIs for various executive management committees

By joining SoFi, you'll become part of a forward-thinking company that is transforming financial services for the better. We offer the excitement of a rapidly growing startup with the stability of an industry leading leadership team.

What you'll do:

• Innovate... Bring your brightest ideas to ensure risk is being managed in alignment with regulatory guidance and best practice throughout third party life cycle (planning, due diligence, contract, on-going monitoring, and termination)
• Make Data Driven Decisions... Design and conduct supplier risk assessments, develop tier/relationship based mitigation strategies and evaluate remediation tracking
• Leave your Mark... Management of Supplier Approvals, documentation and communication of Program metrics and assessment results clearly and concisely
• Provide Effective Challenge... Lead operating process and internal control improvement by reviewing, monitoring and testing internal controls and procedures associated with products, services, customers and operations
• Collaborate... Build effective relationships with stakeholders who own and support key third party relationships; gain commitment from stakeholders to help manage and improve SoFi's risk posture by understanding business objectives to influence solution strategies
• Be a Risk SME... Work in a self-directed, collaborative, and constructive manner with business units and our internal and external stakeholders to enhance the effectiveness of processes and controls
• Drive Performance Outcomes... Monitor the risk and control environment to ensure that exposures are kept at acceptable levels through issue monitoring administration and exception tracking and the oversight of remediation actions to improve overall Supplier performance

What you'll need:

• Bachelor's degree
• Minimum of eight years of second line third party risk management experience in the financial services industry
• Comprehensive knowledge of Third Party Risk Management methodologies, risk mitigation principles and regulatory expectations related to the financial services industry
• Knowledge of and experience in designing and operating third party risk governance frameworks in consideration of other relevant regulations applicable to the financial services industry
• Ability to provide consult, insight and guidance in consideration of business need and third party risk management strategic objectives