Senior Compliance Analyst

India, Bengaluru

India - Engineering

Roles and Responsibilities:

The Senior Compliance Specialist will perform a key risk management role by ensuring business line initiatives and processes to comply with applicable consumer laws and regulations. The person will be responsible for delivering quality results and executing or participating in corporate risk management processes.

Support audit & compliance Programs of ISO27001, PCI DSS, Process analysis, identification of issues, validation of current activity plan and recommendations.

Facilitate risk identification and risk discussions within the business unit, both operational risk, product/project and strategic risk. Ensure emerging risks are identified and escalated appropriately and in a timely manner.

Advise business line on compliance requirement applicability for new products and/or processes and changes in law or regulation. Work closely with Internal Risk teams & Global Audit teams.       

Plan, prepare and conduct, process led internal, external & vendor audits, at planned intervals and to provide suitable reporting.  Monitor progress on corrective actions to ensure they are concluded without undue delay.

Strong understanding of the regulatory trends in the FinTech industry is foundational to success in this role.

  • Understanding of ISO27001, PCI DSS & Regulatory reporting requirements
  • Understanding of business processes in financial services, payment gateways and IT services
  • Understanding of incident process analysis and practices of root cause analysis.

Preferred Qualifications:

  • Bachelor or Master’s Degree
  • Core strengths in Results Focus, Problem Solving, Analytical Thinking, and Communication
  • Experience with writing precise and clear documents (via policy documents, reports, or elsewhere), and an attention to detail
  • At least 3 years of experience in cyber security, audit & compliance risk management

Key Skills Required:

Knowledge of common information security management frameworks, such as ISO/IEC 27001 / Information Security Management System (ISMS), COBIT, PCI DSS, Regulatory Audits, Third Party Risk assessments.

Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences.

Good to have:

  • ISO27001 Lead Implementation / Auditor certification
  • PCI DSS / CPISI certification
  • Third Party Security Audits

About us:

At PayU, we are a global fintech investor and our vision is to build a world without financial borders where everyone can prosper. We give people in high growth markets the financial services and products they need to thrive. Our expertise in 18 high-growth markets enables us to extend the reach of financial services. This drives everything, we do, from investing in technology entrepreneurs, to offering credit to underserved individuals, to helping merchants buy, sell and operate online. Being part of Prosus, one of the largest technology investors in the world, gives us the presence and expertise to make a real impact. Find out more www.payu.com

Our Commitment to Building a Diverse and Inclusive Workforce

As a global and multi-cultural organization with varied ethnicities thriving across locations, we realize that our responsibility towards fulfilling the D&I commitment is huge. Therefore, we continuously strive to create a diverse, inclusive and safe environment, for all our people, communities and customers. Our leaders are committed to create an inclusive work culture which enables transparency, flexibility and unbiased attention to every PayUneer so they can succeed, irrespective of gender, color or personal faith. An environment where every person feels they belong, that they are listened to, and where they are empowered to speak up. At PayU we have zero tolerance towards any form of prejudice whether a specific race, ethnicity, or of persons with disabilities or the LGBTQ communities.

en