Senior Risk and Compliance Manager

Paynetics
London
7 months ago
Applications closed

Related Jobs

View all jobs

Security, Privacy & Compliance Manager

Compliance & Sustainability Manager

Information Security Manager- Dublin

Senior IAM Developer (One Identity)

Senior IAM Developer (One Identity)

Cyber Security & Centralised Services Manager

Paynetics is a leading fintech company, founder of the Bulgarian Fintech Association. Grounded in payment services, with offices in Bulgaria and the UK, we have built a team of passionate and enthusiastic professionals, on a mission to change the world of payments.


We have launched the first mobile payment app in Bulgaria, the first utilities payment app in the UK, one of the fist automated loyalty solutions in the US and a game changing payment acceptance solution with patent pending.


We are seeking an experienced and dynamicSenior Risk and Compliance Managerat Paynetics UK. This role is critical in driving the development and management of our enterprise-wide risk program, covering operational, compliance, financial crime, financial, and strategic risks.


To excel in this role, you will bring:

  • Proven experiencein risk management within banking or payments.
  • Deep working knowledgeof risk management frameworks for FCA-regulated firms (experience with payments or e-money is a strong advantage).
  • Strong technical understandingof the regulatory landscape.
  • Asolutions-focused mindset, with the ability to balance accuracy and speed in execution.
  • A willingness toget hands dirty, delivering pragmatic, actionable outcomes.


What you'll do:


Develop Risk framework -this includes risk events, development of a framework for the timely identification and reporting of major operational and security incidents , the development and tracking of KRIs, migration of the risk assessments to a technical solution.


Risk assessments -Management and maturing of the business wide risk assessment. This includes:

  • Owning the risk assessment process and supporting risk owners in ensuring the assessment is accurate and updated in a timely manner .
  • Providing advice and guidance to risk owners on the materiality of the risks they have.
  • Providing monthly reporting to senior management and the risk committee on the risk profile of Paynetics UK.
  • Providing the risk committee and board with consumable information about key risks affecting the firm with pragmatic and clear information on any risk treatment options available
  • Ensuring emerging risks are recorded, assessed and allocated ownership accordingly


Governance -Acting as the secretary to the risk committee (and any sub-committees). This includes:

  • Compiling comprehensive committee packs, ensuring packs are sent out in a timely manner, ensuring any actions from previous meetings are updated, creating and distributing meeting minutes
  • Supporting with strengthening the Paynetics UK corporate governance program through clear, logistically feasible and proportionate recommendations to senior management


Outsourcing:

  • Conducting risk assessments for outsourced services, both initially and on an ongoing basis
  • Scoping and agreeing with MI to ensure effective oversight of outsourced activities
  • Ensuring MI for outsourced activities feeds into the relevant risk assessments and provides senior management with a clear view as to the risks posed
  • Working closely with the compliance and operations teams to ensure that where areas of risk are found, Paynetics is able to deploy quick and proportionate risk mitigation solutions
  • Proactive review of MI to identify any potential future areas of concern
  • The development, tracking and reporting of KRIs for outsourced services


Oversight:

  • Provide robust and pragmatic risk advice and sign-off in respect of several internal projects including operational resilience, DORA, data privacy and APP fraud
  • Production of risk assessments for key Paynetics projects, and handing over to the relevant project lead to maintain and report back on


Compliance:

  • Horizon scanning
  • Consumer Duty outcomes data analysis
  • Supporting with regulatory change initiatives
  • Supporting with the production of new departmental processes
  • Supporting with the development and approval of new product initiatives


Who you are:

  • Proven experience in a similar role
  • Numerate with excellent Excel skills, and the ability to investigate/manipulate/model data quickly, find trends and provide recommendations
  • Experience producing risk committee and board reporting including dashboards, heatmaps and risk summary reporting
  • Excellent communication and presentation abilities, including strong written and verbal skills and the ability to explain issues and decisions, as well as strategy, both internally and externally
  • The ability to multitask, adapt to an ever-changing landscape of deliverables, be able to navigate ambiguity, a deep sense of ownership and attention to detail are essential
  • Experience working with card schemes preferable


What do we offer:

  • Exciting job in a premium professional environment
  • Highly competitive remuneration
  • 25 days annual paid leave + 1 day for your birthday
  • Work in a growing team with excellent perspective for professional development
  • Remote location, with occasional travel to London and Sofia


If you thrive in fast-paced environments and are passionate about delivering innovative risk solutions, we want to hear from you!

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Neurodiversity in Cyber Security Careers: Turning Different Thinking into a Superpower

Cyber security is all about thinking like an attacker, spotting unusual patterns, protecting systems & responding calmly when everything looks like it’s on fire. It’s a discipline built on curiosity, persistence & noticing things other people miss. That’s exactly why it can be such a good fit for many neurodivergent people. If you live with ADHD, autism or dyslexia, you may have been told your brain is “too distracted”, “too literal” or “too disorganised” for a security role. In reality, the traits that can make traditional office work tough often line up beautifully with cyber security work – from hyperfocus in incident response to meticulous analysis in threat hunting. This guide is written for cyber security job seekers in the UK. We’ll look at: What neurodiversity means in a cyber context How ADHD, autism & dyslexia strengths map to different security roles Practical workplace adjustments you can ask for under UK law How to talk about neurodivergence during applications & interviews By the end, you’ll have a clearer sense of where you might thrive in cyber security – & how to turn “different thinking” into a genuine superpower.

Jobs

Cyber Security Hiring Trends 2026: What to Watch Out For (For Job Seekers & Recruiters)

As we move into 2026, the cyber security jobs market in the UK is changing fast. Attackers are scaling up with automation & AI, cloud estates are more complex, & regulators are tightening expectations around resilience & data protection. At the same time, budgets are under pressure & some organisations are consolidating their tech teams. Despite all this, demand for cyber security skills remains strong. Skilled defenders, engineers & leaders are still hard to find, & the stakes are only getting higher. Whether you are a cyber security job seeker planning your next move, or a recruiter building security teams, understanding the key cyber security hiring trends for 2026 will help you make better decisions.

Jobs

Cyber Security Recruitment Trends 2025 (UK): What Job Seekers Must Know About Today’s Hiring Process

Summary: UK cyber security hiring has shifted from title‑led CV screens to capability‑driven assessments that emphasise incident readiness, cloud & identity security, detection engineering, governance/risk/compliance (GRC), measurable MTTR/coverage gains & secure‑by‑default engineering. This guide explains what’s changed, what to expect in interviews, & how to prepare—especially for SOC analysts, detection engineers, blue/purple teamers, penetration testers, cloud security engineers, DFIR, AppSec, GRC & security architecture. Who this is for: SOC & detection engineers, security operations leads, DFIR analysts, penetration testers/red teamers, purple teamers, AppSec/DevSecOps engineers, security architects, cloud security engineers, identity/IAM engineers, vulnerability managers, GRC/compliance specialists, product security & security programme managers targeting roles in the UK.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.