Global Head of Compliance

About Shufti

Shufti is a global leader in AI-powered identity verification (IDV) and anti-money laundering (AML) solutions, offering advanced KYC (Know Your Customer), KYB (Know Your Business) and KYI (Know Your Investor) services that enable businesses to onboard customers securely and meet regulatory requirements. Founded in 2017 and trusted by industry leaders in FinTech, Crypto, Banking, E-commerce, and iGaming, our technology delivers real-time verification in over 240 countries and territories—empowering a safer, fraud-free digital world.

Position Purpose:
The Head of Compliance will lead Shufti’s global compliance framework and coordinate the legal and contract administration workflows that support the group’s day-to-day operations, strategic projects, and executive reporting. The role combines senior compliance ownership with structured legal-operations responsibility. The Head of Compliance will design and maintain the policies, processes, and controls that ensure Shufti complies with all applicable regulatory, contractual, and customer requirements, and will serve as the central coordination point for compliance initiatives, contract lifecycle tracking, legal task management, and cross-functional delivery.

The role requires a strong technical understanding of AML, KYC, sanctions, financial crime, and data protection, combined with excellent organizational skills and the ability to work across time zones and functions in a fast-moving technology environment.

Key Responsibilities:

Compliance Leadership

• Own the global compliance framework and maintain visibility across all key risk areas.
• Ensure Shufti identifies and complies with all relevant regulatory obligations in the jurisdictions where it operates or where its customers are located.
• Provide day-to-day advice to internal stakeholders on compliance implications of new products, product changes, commercial structures, customer proposals, vendor relationships, and market expansion plans.
• Escalate material issues to the General Counsel and executive team with clear options and recommendations.

Policy, Risk and Controls

• Own the full lifecycle of compliance policies and procedures, including drafting, implementing, updating, and communicating policies.
• Maintain Shufti’s compliance risk register and conduct regular risk assessments by jurisdiction and business line.
• Design and oversee internal compliance monitoring and testing programs.
• Coordinate responses to internal and external audits and ensure remediation actions are agreed, documented, and completed within timelines.

Compliance Operations and Incident Management

• Oversee day-to-day compliance operations and ensure all key processes are documented, repeatable, and auditable.
• Manage compliance incidents from identification through to closure, including root cause analysis and corrective/preventive actions.
• Design and deliver compliance training for all staff, with targeted training for higher-risk functions.

Customer, Partner and Regulatory Interface

• Act as the key point of contact for enterprise customers and partners on compliance topics.
• Collaborate with Legal to ensure contracts appropriately allocate compliance responsibilities.
• Support the General Counsel in responding to regulatory enquiries, information requests, inspections, and licensing processes.

Data Protection Alignment

• Support the operational implementation of data protection obligations under GDPR, UK GDPR, and other relevant privacy regimes.
• Assist with data protection impact assessments, transfer risk assessments, record-keeping, and vendor due diligence.
• Contribute to incident response for potential data protection issues and help ensure alignment with contractual and legal commitments.

Legal and Contract Administration Coordination

• Coordinate legal and contract administration workflows, including a central intake and tracking process for tasks.
• Oversee contract lifecycle administration, from draft intake to signature and repository management.
• Produce regular reports and dashboards for senior leadership on legal and compliance project status, renewals, and milestones.
• Maintain and improve legal templates, playbooks, and guidance materials.

Team Leadership and Collaboration

• Lead and mentor compliance and legal-operations staff, setting clear objectives and development plans.
• Foster a proactive, solution-oriented mindset and close collaboration across functions.
• Support future team planning and contribute to building a scalable compliance and legal-operations function.

Required Experience and Skills:

• Significant compliance experience within RegTech, fintech, payment, financial services, or a technology company serving regulated clients.
• Practical experience in legal-operations or contract administration.
• Strong understanding of AML, sanctions, KYC, financial crime, and data protection requirements.
• Experience managing contract lifecycle processes and working with contract management or task tracking tools.
• Excellent verbal and written English communication skills, with the ability to draft policies and reports and present concisely to leadership.
• Proven experience interacting with customers, partners, and stakeholders at all levels.
• Preferred: Experience leading small teams or cross-functional projects; relevant certifications such as CAMS or ICA.