KeyStepKeyStep
KeyStep

IT Governance, Risk & Compliance (GRC) Analyst, Luxembourg

Stripe
Luxembourg City, Luxembourg
8 days ago
full-time

Skills & Technologies

FinTechRisk ManagementKPIsAuditComplianceRegulatoryImplementationDue DiligenceResilience

Job Description

Secure and Scale a Regulated Fintech Platform at the Heart of Stripe

Bridge Building S.A. (BBSA) is the Luxembourg regulated entity of Bridge, a Stripe company. We operate as an EMI and future CASP in one of Europe’s most demanding regulatory environments (CSSF, DORA, MiCA).

BBSA is building a local regulated platform powered by a global-first technology model. In this context, we are looking for a sharp IT GRC Analyst to act as the bridge between strict European regulations and high-velocity global engineering.

This role is the control and risk right hand of the Luxembourg Head of IT. While our global teams build the tech, you ensure it is compliant, resilient, and audit-ready. You will translate requirements like DORA and MiCA into tangible IT controls, oversee third-party risks, and maintain the integrity of our governance framework.

This is not a "tick-the-box" compliance role. It is a operational position for a professional who understands technology well enough to govern it effectively. You will have high visibility, owning the frameworks that allow us to scale securely.

Key Responsibilities

IT Governance & Risk Management

Maintain and evolve the IT Risk Register, ensuring risks are identified, assessed, and treated in line with the company’s risk appetite.

Drive the local implementation of the DORA (Digital Operational Resilience Act) framework, including ICT risk management and incident classification.

Bridge the gap between technical reality and policy by drafting, reviewing, and updating IT policies and procedures.

Perform periodic control testing to ensure global engineering practices align with local regulatory requirements.

Act as primary support to the local Head of IT

Third-Party Risk Management (TPRM)

Support ICT due diligence and risk assessments of critical vendors and service providers, while assisting with Developer / Customer Oversight.

Monitor SLAs and KPIs of critical vendors, challenging performance where necessary.

Act as the

Company & Role Analysis

JobSeeker+
Likely perks
Private MedicalPension25+ Days HolidayStock OptionsLearning BudgetFlexible Hours
Culture & working style

Neutral 2–4 sentence summary of what working at this company is like, drawn from public reviews and press coverage. Tone, collaboration style, pace, benefits highlights.

Market salary range

£45,000 – £60,000 (Glassdoor, Levels.fyi, 2025)

Unlock the full analysis for this job
Sign in to unlock →
Apply NowApply with CV Improver