Who Are We?

Bottomline is on a mission to be the world’s leading business payments company, aligning our team to the common purpose of transforming the way businesses pay and get paid.

It is a journey that goes around the world serving financial institutions and companies in more than 90 countries. Our offices across EMEA are conveniently positioned to enable a fulfilling and flexible, hybrid work-life balance. Places to collaborate and share knowledge across multidisciplinary teams, the offices also provide the perfect space to meet virtually with our colleagues across time zones.

Offices in Theale, London, Paris, Geneva, Zurich, Or Yehuda, Beirut and Prishtinë cover our financial technology solution suite and delivery model, supporting our customers across sales, programme management, operations, technical support, and development hubs.

Culture and Values

We are one global team, who work with and for each other in a drive to delight customers through excellent execution, which fuels how we create and grow sustained business value for our customers, our team and all who partner with us. Our culture encourages people to be brave and curious, to drive to closure and to ensure our principles are lived out daily.

We excel at Bottomline because we are positive and passionate about building a #LifeAtBottomline

Role

We are looking for IT Operations Compliance Manager to innovate, win and grow with us in Geneva! 

This role focuses on operational security and compliance for the Financial Messaging business line at Bottomline. The FM Operations Compliance Manager is the key information security contact for FM operations and works closely with several teams (CISO, Operations, HR, Legal, Developments, Service Desk, Sales) across multiple geographies (Switzerland, UK, Asia, US).

How you’ll contribute:

• FM Compliance roadmap. Prepare and manage an annual FM compliance roadmap listing audits and large compliance projects for upcoming year.
• FM Compliance Risk: Identify and communicate any compliance / audit risks to key stakeholders.
• FM Audits: Maintain list of operational audit controls in preparation for regulatory compliance audits for all financial messaging services. Actively participating in FM audits and act as the key contact for CISO who manage audits. Liaise with internal teams for evidence gathering. Review draft audit reports before publication. Audits include SWIFT, SIC, SOC1 (ISAE 3402), SOC2 (ISAE 3000), FINMA, SSFN, GDPR and customer audits.
• FM Policies: Operations policy reviews – merge and consolidate policies across FM business lines to align internal processes, reflect current operational activities and meet compliance requirements. Ensure policy annual reviews are conducted in time for annual audits.
• Gap analysis and reporting: review upcoming changes to regulations, standards and data protection laws. Summarise and report findings and recommendations to key stakeholders. This can include a combination of reviews to existing regulations (such as FINMA circulars, SWIFT and SIC audit requirements, Swiss and European Data protection laws) and introduction of new regulations.
• Business Continuity – manage FM business continuity policy and support CISO in executing business continuity plans and exercises for all FM business lines across geographies.
• Service Level Agreement (SLA) – manage, analyse and review proposed changes to the SLA in close conjunction with the business and legal teams. Propose change to SLA when necessary, in line with company strategic objectives and new service offerings.
• Act as key contact for customers with operational security queries and data protection queries and provide timely responses to customer tickets. Act as key contact to internal teams for FM operational compliance queries.
• Manage ad hoc operational security project. Examples include supplier reviews and due diligence, coordinating data retention reviews across service lines, preparation of data flow diagram templates, data access reviews, data security model, data inventories, analysis of compliance impact for new service onboarding etc.
• Resource management. Maintain centralised reference sites for compliance management and policies.

What will make you successful:

• Professional communication with customers, external auditors, regulatory bodies
• Excellent cross team collaboration
• Able to demonstrate extensive knowledge of audit processes.
• Solution oriented, highly organised, and structured
• Attention to detail and ability to drive to closure.
• Previous working examples of Project management

We welcome talent at all phases of their career, understanding and supporting additional needs (where applicable) as we look to innovate, win, and grow together.

Bottomline is proud to be an equal opportunity employer. We are committed to treating all individuals in a fair and equal manner by creating an inclusive and open environment. 

#LI-DNI