The Policy and Compliance Analyst will be responsible for developing, implementing, and administering all aspects of the AMLRS Information Technology, Risk and Governance, Policy and Procedure framework, including relevant guidelines, related trainings, and reporting enterprise-wide. You'll ensure alignment with other industry standard practices. This will involve partnership with internal teams, as well as collaboration with senior leadership.

The Policy and Compliance Analyst will document and maintain risk and control matrices to hold control owners accountable for proper execution of controls they are responsible for. This will include the ongoing facilitation of meetings, capturing artifacts, producing reports and metrics, and generating recommendations to reduce risk.

Duties and Responsibilities

  • Develop the AMLRS GRC policy and procedure framework to include annual review timelines, reviews to determine potential gaps and assessments of such, including plans to remediate and/or enhance documents
  • Improve and manage the Policy and Procedure framework
  • Develop trainings in relation to new or changed policies, procedures, guidelines, and protocol
  • Organize and maintain centralized hubs for relevant documents and manage published documents made accessible to AMLRS employees
  • Provide guidance to executives, staff, and employees on compliance policies, procedures, and requirements
  • Utilize exceptional writing skills in policies, presentations, trainings, communications, and reporting as it relates to policies and governance
  • Facilitate risk assessments of AMLRS operations and lead development of an enterprise risk management program designed to identify significant risks and mitigating factors, and determine/develop any pertinent documentation
  • Assess the business impact of new and evolving legal and regulatory requirements and developments to evolve AMLRS compliance and risk framework and strategy
  • Participate in a multifaceted educational awareness and training program that focuses on the elements of the compliance program, policies, and procedures
  • Maintain records and report on status and effectiveness of compliance policies and procedures to senior management
  • Maintain and effectively communicate the AMLRS General Control matrix to ensure effective execution of controls and compliance to external audits
  • Conduct periodic audits of controls to ensure they are being executed properly
  • Lead/assist with the coordination of the Annual SOC2 assessment as well as conducting a mid-year pre-assessment to ensure controls are functioning
  • Lead/assist with the execution of compliance related activities such as our Business Continuity/Disaster Recovery exercises, risk matrix reviews, incident response tabletops, etc.
  • Assist with generating responses to Client Due Diligence requests

Required Qualifications

  • Bachelor’s degree in related field
  • Working Knowledge of the COBIT & ITIL & GRC Frameworks
  • Working Knowledge of ISO27001&2
  • Five years of related work experience

Preferred Qualifications

  • Six or more years of related work experience
  • Understanding of BSA/AML
  • Have specific knowledge of key law, regulations, guidance, and industry-standard practices including but not limited to: OCC, FINCEN, GLBA, FCRA, PCI-DSS, GDPR/CCPA

Apply For Cleveland/Highland Hills

AML RightSource, LLC is an Equal Opportunity Employer and does not discriminate against applicants due race, color, religion, national origin, sex, age, disability, veteran status, sexual orientation, gender identity, or other legally protected status.


We’re passionate about creating an inclusive workplace that promotes and values diversity and inclusion. Companies that are diverse in age, gender identity, race, sexual orientation, physical or mental ability, ethnicity, and perspective are proven to be better companies. More importantly, creating an environment where everyone, from any background, can do their best work is what we strive to achieve at AML RightSource.