Job Description

Description

We are looking for a Risk Management Analyst who will be responsible for assessing, monitoring, and managing risks associated with third-party vendors across their lifecycle, ensuring compliance with regulatory requirements and internal policies.



You will work closely with business, technology, legal, procurement, and compliance teams to identify risks, support remediation activities, and provide clear risk insights to stakeholders and management through effective reporting and governance.

Key Responsibilities

1. Framework Implementation

Support the execution of Tabby's

Third-Party Risk Management

framework, including the application of relevant policies, procedures, and controls. Contribute to the continuous improvement of risk management practices in line with industry standards and regulatory expectations.

2. Risk Assessment & Monitoring

Conduct comprehensive

risk assessments

of vendors to evaluate their inherent and residual risks. Review vendor documentation such as financial reports, security certifications, and compliance attestations.
Perform

ongoing monitoring

of vendor performance, risk indicators, and adherence to contractual and regulatory requirements.

3. Compliance & Governance

Ensure all third-party engagements comply with applicable

laws, regulations, and internal policies.

Maintain accurate and up-to-date vendor risk records and documentation for audit and regulatory purposes.

4. Stakeholder Collaboration

Work closely with

business units, IT, legal, procurement, and compliance

teams to identify, assess, and mitigate risks throughout the vendor lifecycle. Provide risk insights and recommendations to internal stakeholders for informed decision-making.

5. Risk Mitigation & Remediation

Identify potential vendor-related risks and coordinate with internal and external parties to develop

risk mitigation plans.

Monitor remediation efforts to ensure timely closure of identified issues or control gaps.

6. Reporting

Prepare and deliver

vendor risk reports

to management and key stakeholders, highlighting trends, risk ratings, and emerging issues. Support data collection and analysis for management dashboards and regulatory submissions.

7. Vendor Lifecycle Management

Assist in vendor

onboarding, due diligence, contract review, ongoing monitoring, and offboarding

processes. Ensure consistent application of risk criteria across all stages of the vendor lifecycle.

Skills, Knowledge and Expertise

Bachelor's degree in

Risk Management, Business Administration, Finance, IT, or a related field.

2-4 years of relevant experience in

third-party risk management, vendor management, or operational risk.

Knowledge of regulatory requirements (e.g.,

ISO 27001, PDPL, GDPR, PCI-DSS

) and risk frameworks. Strong analytical, organizational, and communication skills. Proficiency in

MS Office, GRC tools, or TPRM platforms.

About Tabby

Tabby creates financial freedom in the way people shop, earn and save, by reshaping their relationship with money.



The company's flagship offering allows shoppers to split their payments online and in-store with no interest or fees. Over 32,000 global brands and small businesses, including Amazon, Noon, IKEA and Shein use Tabby to accelerate growth and gain loyal customers by offering easy and flexible payments online and in stores.



Tabby has generated over $7 billion in transaction volume for its partner brands and has the highest rated, most reviewed, largest and fastest growing app of any fintech in the GCC region.



Tabby launched operations in 2020 and has raised +$1 billion in equity and debt funding from global and regional investors.