Governance Risk and Compliance Analyst

Our client is a leading provider of innovative payment solutions.

The Technical Governance Risk and Compliance Analyst plays a key role in ensuring that their payment solutions meet global compliance and regulatory requirements. This role requires a deep understanding of GCR frameworks, payment regulations, and technical risk assessment methodologies. This role is offered as a Hybrid position in Sofia, Bulgaria.

Key Responsibilities
• Monitor, assess, and implement regulatory and compliance requirements across multiple jurisdictions in which the company operates.
• Conduct technical risk assessments of payment systems, identifying vulnerabilities and compliance gaps.
• Support the integration of AML (Anti-Money Laundering), KYC (Know Your Customer), and fraud detection tools into payment platforms.
• Collaborate with engineering and product teams to ensure compliance considerations are embedded into the system architecture.
• Assist in the development and maintenance of GCR-related policies, procedures, and documentation.
• Conduct internal audits to evaluate the effectiveness of security controls and risk mitigation strategies.
• Work with external regulators, auditors, and banking partners to demonstrate compliance with industry standards such as PCI-DSS, PSD2, GDPR, and ISO 27001.
• Track and report on regulatory developments in the payment and financial services industry, ensuring the company remains ahead of compliance requirements.
• Develop and deliver compliance training for internal teams to ensure awareness and adherence to global payment regulations.

Requirements & Qualifications
• Bachelor’s degree in Computer Science, Cybersecurity, Finance, or a related field.
• 2+ years of experience in regulatory compliance, technical risk analysis within fintech / PSP company.
• Strong understanding of payment processing systems, APIs, and security protocols.
• Knowledge of regulatory frameworks such as AML, PSD2, GDPR, PCI-DSS, and ISO 27001.
• Experience working with fraud detection and risk mitigation technologies.
• Strong analytical skills with the ability to interpret complex regulatory requirements into actionable solutions.
• Ability to collaborate effectively with technical and non-technical teams.
• Excellent problem-solving, communication, and documentation skills.
• Experience in fintech, payments, or banking industry is a plus.
• Certifications such as CAMS, CISA, or CISSP are an advantage.