Compliance Analyst - Cracow, Poland

Job Description:

Summary:

The Compliance Analyst supports the organization's Third Party Risk Management (TPRM) program by conducting vendor risk assessments, coordinating onboarding and review activities, monitoring vendor risk posture, and maintaining vendor governance documentation.

The Compliance Analyst supports control framework requirements.

The Compliance Analyst supports Privacy framework and assessments.

Key Responsibilities:

• Perform the Third Party/vendor review to include risk rating vendors, annual reviews to determine potential gaps and assessments.

• Maintain centralized repositories for relevant Third Party/vendor and metrics documents.

• Maintain a centralized vendor inventory with risk classification and ownership tracking.

• Assist with performing specialized reviews with TPRM Lead, Privacy Officer, Information Security, including technical assessments and Data Protection Impact Assessment (DPIA) where required.

• Track vendor risk posture over time and ensure timely reassessments and remediation follow-up.

• Support generating responses to Client Due Diligence requests and reduce repetitive inbound security questionnaires through centralized documentation.

• Prepare compliance metrics, dashboards, and reporting capabilities.

• Partner with Legal to ensure that Non-Disclosure Agreements (NDAs) are properly executed where required.

• Handle Third Party/vendor adverse media alerts.

• Support internal audits, external audits/certifications (i.e. SOC2, ISO27001), customer due diligence, and certification activities.

• Support control framework requirements.

• Assist in conducting privacy assessments and fulfilling broader obligations under the Privacy Program.

• Assist with the execution of compliance related activities such as our Business Continuity/Disaster Recovery exercises, risk matrix reviews, incident response tabletops, etc.

• Perform analysis of software to ensure compliance with IP rights.

• Support broader compliance activities as needed.

Required Qualifications & Skills:

• GRC knowledge or experience

• Reporting or data analysis experience

• Problem solving skills

• Technical Acumen

• Attention to detail

• 2 years+ of related work experience

Minimum salary: 10,416 PLN gross/month 

AML RightSource is committed to fostering a diverse work environment and is proud to be an equal opportunity employer. We provide equal employment opportunities to all qualified applicants without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.  

All the information concerning breaches of law during the recruitment process should be reported at pl.whistleblowing@amlrightsource.com. Upon request, you will be provided with Internal procedure for reporting and following up on breaches of law, adopted by the Company based on the Whistleblower Protection Act.

Recruitment Scam Alerts

We’re aware of an increase in recruitment scams where individuals falsely claim to represent AML RightSource. These scammers may ask for money or personal information by offering fake job opportunities through e-mail, text message or social media. Please verify the source of any job-related communications carefully. All official AML RightSource communications are conducted through "@amlrightsource.com" email addresses. If you encounter suspicious messages, do not respond.