IT Operations Compliance Manager

Why Choose Bottomline?

Are you ready to transform the way businesses pay and get paid? Bottomline is a global leader in business payments and cash management, with over 30 years of experience and moving more than $10 trillion in payments annually. We're looking for passionate individuals to join our team and help drive impactful results for our customers. If you're dedicated to delighting customers and promoting growth and innovation - we want you on our team!

The Role

We are looking for IT Operations Compliance Manager to innovate, win and grow with us in Geneva!

This role focuses on operational security and compliance for the Financial Messaging business line at Bottomline. The FM Operations Compliance Manager is the key information security contact for FM operations and works closely with several teams (CISO, Operations, HR, Legal, Developments, Service Desk, Sales) across multiple geographies (Switzerland, UK, Asia, US).

How you’ll contribute:

• FM Compliance roadmap. Prepare and manage an annual FM compliance roadmap listing audits and large compliance projects for upcoming year.
• FM Compliance Risk: Identify and communicate any compliance / audit risks to key stakeholders.
• FM Audits: Maintain list of operational audit controls in preparation for regulatory compliance audits for all financial messaging services. Actively participating in FM audits and act as the key contact for CISO who manage audits. Liaise with internal teams for evidence gathering. Review draft audit reports before publication. Audits include SWIFT, SIC, SOC1 (ISAE 3402), SOC2 (ISAE 3000), FINMA, SSFN, GDPR and customer audits.
• FM Policies: Operations policy reviews – merge and consolidate policies across FM business lines to align internal processes, reflect current operational activities and meet compliance requirements. Ensure policy annual reviews are conducted in time for annual audits.
• Gap analysis and reporting: review upcoming changes to regulations, standards and data protection laws. Summarise and report findings and recommendations to key stakeholders. This can include a combination of reviews to existing regulations (such as FINMA circulars, SWIFT and SIC audit requirements, Swiss and European Data protection laws) and introduction of new regulations.
• Business Continuity – manage FM business continuity policy and support CISO in executing business continuity plans and exercises for all FM business lines across geographies.
• Service Level Agreement (SLA) – manage, analyse and review proposed changes to the SLA in close conjunction with the business and legal teams. Propose change to SLA when necessary, in line with company strategic objectives and new service offerings.
• Act as key contact for customers with operational security queries and data protection queries and provide timely responses to customer tickets. Act as key contact to internal teams for FM operational compliance queries.
• Manage ad hoc operational security project. Examples include supplier reviews and due diligence, coordinating data retention reviews across service lines, preparation of data flow diagram templates, data access reviews, data security model, data inventories, analysis of compliance impact for new service onboarding etc.
• Resource management. Maintain centralised reference sites for compliance management and policies.

If you have the attributes, skills, and experience listed below, we want to hear from you.

• Professional communication with customers, external auditors, regulatory bodies
• Excellent cross team collaboration
• Able to demonstrate extensive knowledge of audit processes.
• Solution oriented, highly organised, and structured
• Attention to detail and ability to drive to closure.
• Previous working examples of Project management

We welcome talent at all career stages and are dedicated to understanding and supporting additional needs. We're proud to be an equal opportunity employer, committed to creating an inclusive and open environment for everyone.