Risk Manager

eToro is the trading and investing platform that empowers users to invest, share, and learn. We were founded in 2007 with the vision of a world where everyone can trade and invest simply and transparently. We have created an investment platform that is built around collaboration and investor education. On our platform, users can view other investors’ portfolios and statistics, and interact with them to exchange ideas, discuss strategies, and benefit from shared knowledge. We have 40 million registered users from 75 countries, and our platform is available in 20 languages. eToro is an innovative, fast-growing business and is listed on Nasdaq in May 2025. We have over 1,500 employees across more than 10 offices around the globe, strategically positioned to serve the needs of users. You can find out more about eToro here.

Role Summary

We are seeking a dynamic and proactive Risk Manager to join eToro’s Group Risk function. This is a second line of defense role, responsible for leading and enhancing risk management practices across the Group and its subsidiaries.

The Risk Manager will play a critical role in shaping and maintaining eToro’s enterprise risk management framework, with a strong focus on risk governance, risk assessments, business continuity, third-party and outsourcing risk, IT and cyber risk, and evolving areas such as AI governance and model risk.

The role involves close interaction with senior management, key business stakeholders, and the Board Audit & Risk Committee, providing independent challenge, insight, and oversight of the Group’s risk profile and risk appetite.

What will you be doing?

Enterprise & Operational Risk Management

• Lead and support enterprise-wide risk assessments, including identification, evaluation, quantification, and ongoing monitoring of key risks across the business.
• Enhance the Risk Control Self-Assessment (RCSA) process across the Group, ensuring consistency, accuracy, and meaningful mitigation plans.
• Assess risks related to business activities, new initiatives, and changes, ensuring alignment with the Group’s approved risk appetite.

Risk Governance & Reporting

• Support and actively participate in monthly Board Audit & Risk Committee meetings, including preparation of risk assessments, dashboards, and risk insights.
• Develop, monitor, and enhance risk dashboards, ensuring effective coverage of key risk indicators (KRIs/KPIs) across areas such as market, operational, event, cyber, and IT risk.

Business Continuity & Resilience

• Help oversee and enhance key Business Continuity Planning (BCP) processes at Group level.
• Support scenario analysis and resilience testing to ensure preparedness for operational disruptions and emerging threats.

Third-Party, Outsourcing & IT Risk

• Oversee and support third-party and outsourcing risk management, including risk assessments, ongoing monitoring, and governance alignment.
• Work closely with GRC, Security, and IT teams on IT, cyber, and security risk assessments, mitigation plans, and remediation tracking.
• Support governance around internal fraud risk, including oversight of policies, controls, and implementation effectiveness.

Incident Management

• Support the implementation and ongoing use of the incident reporting tool, ensuring accurate risk event capture, analysis, and reporting.
• Analyze incidents and near misses to identify root causes, trends, and control improvements.

Compliance, Regulatory & Model Risk

• Support regulatory and audit-related risk activities, including audit remediation and SOX-related controls where applicable.
• Assist in the development and implementation of AI and model risk governance, including:
• Leverage AI tools to improve risk processes, assessments, reporting, and efficiency over time.