Risk Analyst (Vendor Risk)

We are looking for a Risk Management Analyst who will be responsible for assessing, monitoring, and managing risks associated with third‑party vendors across their lifecycle, ensuring compliance with regulatory requirements and internal policies.

You will work closely with business, technology, legal, procurement, and compliance teams to identify risks, support remediation activities, and provide clear risk insights to stakeholders and management through effective reporting and governance.

Department: Risk Enterprise
Employment Type: Full Time
Location: KSA
Workplace type: Onsite

1. Framework Implementation – Support the execution of Tabby’s Third‑Party Risk Management framework, including the application of relevant policies, procedures, and controls.
2. Risk Assessment & Monitoring – Conduct comprehensive risk assessments of vendors to evaluate their inherent and residual risks; review vendor documentation such as financial reports, security certifications, and compliance attestations; perform ongoing monitoring of vendor performance, risk indicators, and adherence to contractual and regulatory requirements.
3. Compliance & Governance – Ensure all third‑party engagements comply with applicable laws, regulations, and internal policies; maintain accurate and up‑to‑date vendor risk records and documentation for audit and regulatory purposes.
4. Stakeholder Collaboration – Work closely with business units, IT, legal, procurement, and compliance teams to identify, assess, and mitigate risks throughout the vendor lifecycle; provide risk insights and recommendations to internal stakeholders for informed decision‑making.
5. Risk Mitigation & Remediation – Identify potential vendor‑related risks and coordinate with internal and external parties to develop risk mitigation plans; monitor remediation efforts to ensure timely closure of identified issues or control gaps.
6. Reporting – Prepare and deliver vendor risk reports to management and key stakeholders, highlighting trends, risk ratings, and emerging issues; support data collection and analysis for management dashboards and regulatory submissions.
7. Vendor Lifecycle Management – Assist in vendor onboarding, due diligence, contract review, ongoing monitoring, and offboarding processes; ensure consistent application of risk criteria across all stages of the vendor lifecycle.

• Bachelor’s degree in Risk Management, Business Administration, Finance, IT,_equips a related field.
• 2–4 years of relevant experience in third‑party risk management, vendor management, or operational risk.
• Knowledge of regulatory requirements (e.g., ISO 27001, PDPL, GDPR, PCI‑DSS) and risk frameworks.
• Strong ғана analytical, organizational, and communication skills.
• Proficiency in MS Office, GRC tools, or TPRM platforms.

Tabby creates financial freedom in the way people shop, earn and save, by reshaping their relationship with money. The company’s flagship offeringěli allows shoppers to split their payments online and in‑store with no interest or fees. Over 32,000 global brands and small businesses, such as Amazon, Noon, IKEA and Shein use Tabby to accelerate growth and gain loyal customers by offering easy and flexible payments online and in stores. Tabby has generated over $7 billion in transaction volume for its partner brands and has the highest rated, most reviewed, largest and fastest growing app of any fintech in the GCC region. Tabby launched operations in 2020 and has raised +$1 billion in equity and debt funding from global and regional investors.

1. Stage 1: Applied
2. Stage 2: Review
3. Stage 3: HR call @Tabby
4. Stage 4: Technical interview @Tabby
5. Stage 5: Final interview @Tabby
6. Stage 6: Hired

Not quite right? Register your interest to be notified of any roles that come along that meet your criteria.