Risk & Compliance Manager

Purpose

The Risk & Compliance Manager is responsible for leading the Risk & Compliance function for Techfin Maldives Pvt. Ltd., operating under the m-Faisaa brand. The role ensures that the business operates within applicable regulatory requirements, sustains a robust control environment, and proactively identifies, assesses, monitors, reports on, and mitigates the organisation’s key risks.

The role supports responsible growth, regulatory confidence, operational resilience, and sustained customer trust.

Context

Techfin Maldives Pvt. Ltd., operating in the Maldives under the brand name m-Faisaa, is part of OFTI Group—a dynamic and rapidly scaling fintech company. We combine the heritage and stability of a successful founding Group with the ambition, agility, and innovation of a high-performing team. We are committed to delivering secure, reliable, and user-friendly payment solutions that empower individuals and promote financial inclusion across communities. By leveraging technology, we strive to make financial services more accessible, inclusive, and impactful. Join us for a unique opportunity to be part of a fintech journey that is reshaping the financial services landscape and driving meaningful change in the way people manage and access their finances.

Role Accountabilities

• Lead the Risk & Compliance function end-to-end, defining its strategy, framework, and annual plan and delivering risk insight, measurement, and reporting;
• Direct the Enterprise Risk Management framework, establishing and maintaining the risk appetite and risk register and conducting periodic risk assessments, control reviews, and maturity exercises to evaluate m-Faisaa’s risk profile;
• Own the AML/CFT and financial crime program as the institution’s designated Compliance Officer and Money Laundering Reporting Officer, encompassing customer due diligence, sanctions and PEP screening, transaction monitoring, suspicious transaction reporting, and regulatory submissions to the Maldives Monetary Authority and the Financial Intelligence Unit;
• Ensure compliance with payment services and e-money obligations, including licensing conditions, the safeguarding of customer funds, consumer protection, data protection, and outsourcing requirements;
• Provide second-line oversight of product and technology risk, advising on and independently challenging the risk and compliance controls built into new products, features, and partnerships from the design stage, and assessing fraud, operational, cyber and information-security, and third-party risks;
• Establish, maintain, and enforce m-Faisaa’s policies, procedures, and controls across all risk and compliance domains, working with subject matter experts to ensure their effective implementation;
• Lead the regulatory change process, monitoring and interpreting regulatory developments and translating new requirements into actionable measures for the business as a licensed payment service provider;
• Act as the principal point of contact with regulators, managing examinations, information requests, and correspondence and ensuring timely, accurate, and appropriate responses;
• Design and deliver the risk and compliance training program, and foster a strong culture of risk awareness and compliance across m-Faisaa;
• Advise the Country Head, local leadership, Group Risk & Compliance, and the Board on the risk and control implications of business decisions and strategic growth initiatives.
• Operate with independence from first-line business and revenue functions, with direct access and escalation rights to the Board and the authority to report directly to the Maldives Monetary Authority and the Financial Intelligence Unit where required.

Key Performance Indicators (KPIs)

• Maintain complete and accurate regulatory reporting trackers and internal reporting.
• Sustain timely and effective engagement with regulators, providing prompt and appropriate responses.
• Deliver accurate and timely risk management reporting, including maturity assessments and related exercises.
• Provide responsive, practical, and value-adding support to the business.
• Enhance the visibility and credibility of the function among internal and external stakeholders.
• Pursue continuous professional development to maintain relevant accreditations and certifications.
• Contribute collaboratively to the growth and success of m-Faisaa, supporting initiatives that optimise growth and performance.

Experience

• Demonstrated experience developing, implementing, and maintaining enterprise risk management frameworks and compliance programs.
• A proven track record within a regulated financial services environment, such as payments, banking, e-money, digital wallets, remittance, or fintech.
• Practical experience across AML/CFT and financial crime, regulatory compliance, and operational or product risk.
• Demonstrated ability to provide risk and compliance guidance and advisory support to business units and senior leadership.

Minimum Entry Qualifications

• Bachelor’s degree in Law, Finance, Business Administration, Risk Management, Compliance, Accounting, Economics, or a related discipline.
• Professional certification in compliance, AML/CFT, risk management, or financial crime is preferred, such as ICA, CAMS, CRCM, CRISC, FRM, or equivalent.
• Strong working knowledge of applicable Maldives regulatory requirements for payment services, AML/CFT, consumer protection, outsourcing, regulatory reporting, and governance.
• Minimum 8 years of experience in a compliance, risk management, or financial crime prevention role, ideally with exposure across multiple risk and compliance areas.

Personal Profile

• Demonstrates strong project management, problem-solving, and planning capabilities, with the ability to apply these effectively in a fast-paced environment.
• Proven ability to operate effectively in a dynamic fintech setting, managing competing priorities while maintaining high-quality outcomes.
• Shows strong enthusiasm for technology and comfort working in a digital, collaborative environment, with a focus on continuous improvement, automation, and operational efficiency.
• Communicates with credibility and clarity, effectively conveying risk and compliance matters in a concise, practical, and easy-to-understand manner.