Join the Family. All open roles across the P9 Family are listed below. Don't see the perfect fit? Sign up to join our talent network.

Business Risk Manager (Third Party Risk - InfoSec)



Bengaluru, Karnataka, India · Gurugram, Haryana, India · Chennai, Tamil Nadu, India · Gurugram, Haryana, India · India · Indore, Madhya Pradesh, India · Poland · Silesian Voivodeship, Poland · Spain · Portugal
Posted on Thursday, July 4, 2024

About Revolut

People deserve more from their money. More visibility, more control, more freedom. And since 2015, Revolut has been on a mission to deliver just that. With an arsenal of awesome products that span spending, saving, travel, transfers, investing, exchanging and more, we've helped 45+ million customers get more from their money. And we're not done yet.

As we continue our lightning-fast growth,‌ two things are essential to continuing our success: our people and our culture. We've been officially certified as a Great Place to Work™ in recognition of our outstanding employee experience! So far, we have 10,000+ people working around the world, from our great offices or remotely, on our mission. And we're looking for more. We want brilliant people that love building great products, love redefining success, and love turning the complexity of a chaotic world into the simplicity of a beautiful solution.

About the role

Our Third Party Risk Management team sits at the very core of Revolut. Those special agents work across functions, products, and regions to identify, assess, and manage risks created throughout the third-party lifecycle.

People in the Third Party Risk team are among the first in the company to get involved in new business initiatives, from App Technology, through Treasury and Finance, to Customer Support 💫

We’re a centralised team of risk managers covering key areas of Revolut’s risk taxonomy. We're looking for individuals of various seniorities with a background in Operational Risk, Technology Risk, Regulatory Compliance Risk, and Financial Crime Risk. An analytical mind to develop sustainable growth strategies that align with internal risk frameworks. Someone who’ll take our Third Party Risk Management practise to the next level.

Up for the challenge? Let’s get in touch 🚀

What you’ll be doing

  • Leading initiatives on third party infosec risk and control frameworks as part of a centralised team of Third Party Risk Managers
  • Driving continuous evolution of all TPRM processes to meet internal and external requirements
  • Playing a First Line-of-Defence role in supporting the business through all stages of the third-party lifecycle (onboarding, due diligence, monitoring, and off-boarding)
  • Supporting implementation of the global TPRM Policy to meet local risk and regulatory requirements
  • Supporting business growth objectives by maintaining efficient due diligence and monitoring processes
  • Acting as an Information Security Subject Matter Expert for the Third Party programme across Revolut, providing recommendations or improvements on various technology risk domains
  • Driving, enhancing, and ramping up existing processes to ensure risks and controls are clearly documented, owned, and managed by appropriate stakeholders

What you'll need

  • 3+ years of experience in an information security role within a fast-paced, highly regulated industry
  • Experience in risk and control testing
  • Fundamental knowledge of outsourcing and third party risk management regulation
  • A certification for information security standards, such as CISSP, CISA, and CISM
  • A data-driven approach to identifying and monitoring third party risks

Building a global financial super app isn’t enough. Our Revoluters are a priority, and that’s why in 2021 we launched our inaugural D&I Framework, designed to help us thrive and grow everyday. We're not just doing this because it's the right thing to do. We’re doing it because we know that seeking out diverse talent and creating an inclusive workplace is the way to create exceptional, innovative products and services for our customers. That’s why we encourage applications from people with diverse backgrounds and experiences to join this multicultural, hard-working team.

Refer to our Data Privacy Statement for Candidates for details on our data handling practices during your application.