Job Description

Stripe makes it easy for any developer to access and manage the capabilities of the financial system including global payments while maintaining the least regulatory friction. Our ultimate goal is to maintain the strategy, product attestations, and overall execution required to offer these capabilities globally.

The Role

We are looking for someone to lead the operational resilience from an IT perspective, and IT risk and compliance activities for Stripe’s European and UK regulated entities. Positioned in the first line of defense to ensure the overall effectiveness of risk and compliance management programs, first line of defense risk analytics and operations in the business. This role will partner and collaborate with Compliance and Risk Management, as well as Engineering and Enterprise Risk to support risk and compliance-based initiatives. Responsible for supporting business leader adherence to the established risk framework and ongoing supervision of business controls including risk and control self-assessments, identification and evaluation of control effectiveness, identification of control failures, facilitating risk and compliance remediation, internal and external audits and regulatory exams, and monitoring of the first line of defense to minimize risk exposure and strengthen the overall control environment. 

Responsibilities:

• Ensure compliance with Operational Resilience regulatory expectations from an IT perspective , policy guidelines, training, and ensure relevant controls and procedures are in place and maintain project documents appropriately for internal and external audits.
• Identify risks that are relevant to Stripe’s regulated entities in Europe and the UK and conduct risk assessments to maintain the risk register.
• Identify controls to mitigate and manage risks, ensure these are appropriately documented and identify control improvement opportunities.
• Collaborate and communicate with cross functional teams to design, test, monitor, and communicate relevant risks and risk mitigation strategies.
• Publish and maintain governance reports for Senior leadership on an ongoing basis.
• Develop and test business continuity, disaster recovery, and crisis management plans for engineering and security components of the overall Stripe regulated entities.
• Engage with Stripe’s regulated entity Product Governance Framework and provide inputs that may require senior leadership sign off.

Qualifications and Skills: 

• 5+ years of experience working in risk management supporting technology, risk, and controls functions.
• Expertise in supporting regulatory and compliance management functions.
• Solid understanding of security risks and threats, and in developing effective and measurable mitigation programs.
• A firm understanding of UK and European regulators Operational Resilience agenda.
• A growth mind-set to help scale security compliance initiatives for the future of Stripe.
• Great communicator and able to effectively prioritize and advance a large number of projects happening simultaneously, often on tight deadlines.
• Technical security-specific background and an understanding of the digital economy.
• Experience building and managing relationships with internal stakeholders and driving all parties towards an optimal outcome.
• Out-of-the-box thinking that challenges industry norms with a solid grounding in creating great and safe experiences.
• Resourceful, action-oriented with strong organization skills and attention to detail.
• Able to prioritize competing demands while working on complex problems.