Compliance Analyst, Luxembourg

<p><strong>Position Overview:</strong>&nbsp;</p> <p>We are seeking a detail-oriented and experienced <strong>Compliance Analyst (2nd Line of Defence)</strong> to join our team at Bridge Building S.A. (BBSA), the EU entity for Bridge. BBSA is preparing for authorisation as an Electronic Money Institution (EMI) and a Crypto-Asset Service Provider (CASP) in Luxembourg. The successful candidate will support the MLRO and the Compliance function by providing second-line oversight, executing compliance monitoring and investigations, supporting police/law-enforcement requests, and maintaining AML/CTF policies and governance in line with Luxembourg AML/CTF laws and CSSF expectations.</p> <p><strong>Key Responsibilities:</strong></p> <ol> <li><strong>AML/CTF Compliance Monitoring (2LoD):</strong> <ul> <li>Support, maintain, and execute an independent, risk-based AML/CTF compliance monitoring and testing programme across BBSA’s EMI and CASP perimeter.</li> <li>Perform thematic and control effectiveness reviews covering CDD/EDD, transaction monitoring, sanctions/PEP screening, recordkeeping, and governance arrangements.</li> <li>Independently assess the adequacy and effectiveness of first-line controls and document conclusions with clear ratings and recommendations.</li> <li>Issue formal findings, agree remediation actions with the First Line of Defence (1LoD), and independently validate remediation closure through follow-up testing.</li> <li>Escalate material weaknesses or control deficiencies to senior management and governance committees where required.</li> </ul> </li> <li><strong>Investigations and Escalations:</strong> <ul> <li>Provide second-line review and challenge of higher-risk cases escalated by the first line (high-risk customers, complex typologies, sanctions/PEP matches, internal escalation); support MLRO decisioning and documentation.</li> <li>Conduct or support independent investigations triggered by red flags, audit/regulatory findings, or intelligence from partners; ensure a consistent audit trail in case management tools.</li> </ul> </li> <li><strong>Law Enforcement / Police Requests:</strong> <ul> <li>Oversee and coordinate responses to police, law enforcement, and competent authority requests in collaboration with the MLRO and Legal.</li> <li>Provide compliance oversight to ensure responses are timely, complete, proportionate, and aligned with regulatory obligations.</li> <li>Maintain governance-level logs, metrics, and reporting relating to external authority requests.</li> <li>Assess whether information requests or intelligence received may indicate systemic control weaknesses or trigger enhanced monitoring requirements.</li> </ul> </li> <li><strong>Policy, Procedures and Program Maintenance:</strong> <ul> <li>Draft, maintain, and periodically review AML/CTF policies, procedures, and standards for the EMI and CASP perimeter (risk rating, CDD/EDD, transaction monitoring governance, sanctions/PEP, record retention etc.).</li> <li>Contribute to the AML/CTF Business Risk Assessment and annual compliance plan; support governance committees and management reporting.</li> </ul> </li> <li><strong>Advisory and Training:</strong> <ul> <li>Provide AML/CTF advisory support to Operations, Onboarding, Product, and Engineering teams (new products/process changes, control design, risk mitigations).</li> <li>Support the development and delivery of AML/CTF training and communications, including targeted guidance for high-risk scenarios.</li> </ul> </li> <li><strong>Regulatory Readiness and Reporting:</strong> <ul> <li>Support responses to CSSF requests, audits, and inspections; prepare monitoring reports, management information (MI/KRIs), and remediation tracking.</li> <li>Stay up to date on changes to AML/CTF laws, CSSF guidance, and financial crime typologies relevant to payments and crypto-asset services.</li> </ul> </li> </ol> <p><strong>Key Requirements:</strong></p> <ul> <li><strong>Education:</strong> Bachelor’s degree in Law, Compliance, Finance, Business Administration, or a related field.</li> <li><strong>Experience:</strong> <ul> <li>At least 4 years of experience in AML/CTF Compliance (second line of defence/compliance monitoring), preferably within an EMI/PI, CASP/VASP, bank, or regulated fintech environment.</li> <li>Demonstrated experience drafting AML/CTF policies and procedures, executing compliance monitoring/testing, supporting MLRO investigations and STR/SAR processes, and handling police/law-enforcement information requests.</li> </ul> </li> <li><strong>Skills:</strong> <ul> <li>Strong understanding of AML/CTF governance, the three lines of defence model, and second-line compliance monitoring methodologies.</li> <li>Excellent analytical and investigative skills, with the ability to produce clear written assessments and regulatory-ready documentation.</li> <li>Ability to take full ownership of projects from conception to completion within agreed timelines.</li> <li>Proficiency with AML tooling (case management, screening, transaction monitoring); familiarity with blockchain analytics tools is an advantage.</li> <li>Strong communication skills, both written and verbal, in English; French is an asset; knowledge of German and/or Luxembourgish is an advantage.</li> </ul> </li> <li><strong>Certifications:</strong> Relevant certifications such as CAMS (Certified Anti-Money Laundering Specialist) or ICA (International Compliance Association) qualifications are considered an advantage.</li> </ul>