Risk Analyst, Third Party Risk Management

OKX • Full-time • Singapore, Singapore • 12h ago

Who We Are

At OKX, we believe that the future will be reshaped by crypto, and ultimately contribute to every individual's freedom. OKX is a leading crypto exchange, and the developer of OKX Wallet, giving millions access to crypto trading and decentralized crypto applications (dApps). OKX is also a trusted brand by hundreds of large institutions seeking access to crypto markets. We are safe and reliable, backed by our Proof of Reserves. Across our multiple offices globally, we are united by our core principles: We Before Me, Do the Right Thing, and Get Things Done. These shared values drive our culture, shape our processes, and foster a friendly, rewarding, and diverse environment for every OK-er. OKX is part of OKG, a group that brings the value of Blockchain to users around the world, through our leading products OKX, OKX Wallet, OKLink and more.

About The Opportunity

As a Third Party Risk Management (TPRM) Analyst, you will play a critical role in maintaining and enhancing our comprehensive TPRM framework and operating model. Your work will directly contribute to fostering a robust control environment across all business lines and teams, ensuring early identification and sustainable mitigation of regulatory, operational, and reputational risks. You’ll collaborate with cross-functional teams to drive initiatives that strengthen our third-party risk management program in a fast-paced and dynamic environment.

Key Responsibilities

In this role, you will:

Conduct Risk Assessments: Perform in-depth due diligence on new and existing third-party institutions and vendors to evaluate the effectiveness of their controls in mitigating compliance, information security, privacy, and reputational risks. Identify potential risks and provide actionable recommendations to business owners and senior management.
Provide Subject Matter Expertise: Collaborate with team members to deliver subject matter expertise for the TPRM program, and create high-quality documents and presentations to educate internal stakeholders, external auditors, and regulators about the program’s structure and progress.
Foster Cross-Functional Collaboration: Partner with key stakeholders across teams—such as Information Security, Engineering, Finance, Legal, Product, Compliance, and Risk—to design and execute strategic and tactical approaches to third-party risk management processes.
Review and Recommend Improvements: Review program-related documentation, provide constructive feedback, and recommend process improvements to enhance program efficiency and effectiveness.
Contribute to Strategic Initiatives: Support and lead special projects, bringing adaptability and a solutions-oriented mindset to deliver results in a dynamic and evolving business environment.
Maintain Operational Excellence: Drive alignment and prioritization across stakeholder groups, ensuring the consistent execution of repeatable risk management tasks and controls.

What We Look For In You

To succeed in this role, you’ll need:

Experience: 3+ years of experience in Risk Management, Compliance, or Audit, ideally within the financial services, FinTech, or cryptocurrency industries.
Subject Matter Knowledge: A strong understanding of third-party risk management, vendor management principles, and associated best practices and processes.
Project Management Skills: Proven ability to manage complex projects, prioritize competing demands, and drive stakeholder alignment to deliver end-to-end solutions.
Communication Skills: Excellent written and verbal communication skills, with the ability to convey complex concepts clearly and effectively to stakeholders at all levels.
Adaptability: A track record of thriving in fast-paced environments with shifting priorities and deadlines.
Self-Starter Mindset: Critical thinking, a high degree of independence, and a proactive approach to identifying and solving problems.
Ethics and Integrity: A highly ethical mindset, with the confidence to question and challenge assumptions where necessary.
Education: A bachelor's degree or equivalent practical experience.
Language Skills: Fluent spoken and written English is required; proficiency in Mandarin is a plus.

What Sets You Apart

Strong interpersonal skills to build effective relationships across diverse regions and business units.
A growth-oriented mindset with a passion for continuous improvement in risk management practices.
Experience managing third-party risks in complex regulatory environments or emerging industries like cryptocurrency.