Risk and Compliance Officer

Job Description

Job Title: Risk and Compliance Officer

Department: Risk and Compliance

Reports to: CEO

Direct Reports: 0

Location: Nairobi Kenya

Job Summary

The Risk and Compliance Officer is responsible for developing implementing and maintaining a robust risk and compliance framework within a fintech and microfinance environment. The role ensures that all company operations including payments lending and credit activities comply with regulatory legal and industry standards such as the Central Bank of Kenya (CBK) regulations Financial Reporting Centre (FRC) requirements AML/KYC laws and international frameworks including PCI DSS ISO 27001Cards Schemes and GDPR. The officer will oversee operational and credit-related compliance licensing transaction monitoring and AML case management ensuring the organization maintains integrity transparency and compliance across all business functions.

Key Responsibilities

• Ensure compliance with all applicable laws regulations and standards including CBK Communications Authority FRC PCI DSS ISO 27001 Cards Schemes and GDPR requirements.
  

• Oversee compliance with licensing obligations for fintech and microfinance operations ensuring timely renewals and adherence to CBK and other regulatory frameworks.
  

• Develop implement and maintain an effective risk management and compliance framework across payments and credit operations.
  

• Conduct regular risk assessments and audits to identify evaluate and mitigate operational credit and compliance risks.
  

• Monitor and report on compliance with AML/KYC requirements including customer due diligence (CDD) enhanced due diligence (EDD) and sanctions screening.
  

• Manage AML case investigations maintain case logs and escalate suspicious transaction reports (STRs) to the FRC and CBK within set timelines.
  

• Oversee daily transaction monitoring to identify unusual suspicious or high-risk activity across payments and credit portfolios.
  

• Support the development and enforcement of policies and procedures covering AML KYC credit risk data protection and information security.
  

• Review and verify customer onboarding processes to ensure compliance with CBK credit and lending guidelines.
  

• Maintain accurate records of compliance incidents investigations resolutions and follow-up actions.
  

• Liaise with regulators auditors and other external stakeholders during reviews audits or inspections.
  

• Prepare and present regular risk and compliance reports to senior management the Audit and Risk Committee.
  

• Stay informed on regulatory developments market trends and emerging risks in fintech digital lending and payments.
  

• Provide training and awareness sessions to staff on AML/KYC transaction monitoring credit compliance and regulatory updates.
  

• Support the onboarding process by leading compliance and security briefings for new employees.
  

• Promote a strong culture of compliance integrity and ethical conduct across all departments.
  

Requirements

Qualifications and Experience

• Bachelors degree in Law Finance Risk Management Information Security or a related field.
  

• Professional certifications such as CISA CISM CRISC CAMS or ISO 27001 Lead Implementer/Auditor are an added advantage.
  

• Minimum of 5 years experience in compliance risk management or AML/KYC within fintech microfinance banking or digital lending sectors.
  

• Strong understanding of CBK regulations AML/KYC standards FRC reporting requirements credit compliance and licensing processes.
  

• Proven experience with transaction monitoring systems AML case management and regulatory reporting.
  

• Excellent analytical communication and report-writing skills.