Risk & Compliance Manager at Token
Job details
Reporting to the Managing Director of Token GmbH, this role is part of the group-wide Risk & Compliance team, supporting our pan-European business. The Risk & Compliance Manager is responsible for ensuring Token GmbH maintains its regulatory status and operates within a robust risk management framework.
Key Responsibilities
Risk & Governance ManagementDevelop and implement a comprehensive Risk Management Framework aligned with ZAG-MaRiskOversee the Payments Risk & Governance Strategy, including operational risk in payment processing, fraud prevention and transaction monitoring and business continuity and resilience planningMaintain risk and loss registers with timely updatesConduct risk assessments and scenario analyses to identify vulnerabilitiesRegulatory Compliance & ReportingEnsure compliance with BaFin, Bundesbank, and EU regulatory requirementsDevelop and maintain Compliance Policies & ProceduresAct as the primary liaison with regulators, managing regulatory notifications and filings (BaFin, Bundesbank), onsite inspections and inquiries and annual regulatory reporting obligationsOutsourcing & Internal ControlOversee Outsourcing Risk Management, ensuring BaFin complianceManage relationships with third-party service providers handling AML, Internal Audit, and Data ProtectionConduct vendor due diligence and risk assessments for outsourced servicesAudit Coordination & Internal ControlsCoordinate internal audits (both in-house and outsourced)Manage external audits related to Risk & ComplianceImplement internal controls to ensure compliance in business operationsTraining & Compliance SupportDevelop and implement regulatory training programs for employeesProvide advisory support on compliance and regulatory matters.Who you are
Based in Germany, with experience in Risk & Compliance, ideally within the payments industryAt least three years’ experience in a regulated sectorStrong knowledge of PSD2, ZAG, GwG, and related regulationsFluent in German and English (both written and verbal)Comfortable working in fast-paced, evolving environmentsStrong technical acumen, able to engage with technology specialistsExcellent interpersonal and organisational skills, with the ability to build trusted relationships across stakeholdersConfident and proactive self-starter, capable of managing multiple tasks at same timeProficient in Google Workspace (GSuite) and Microsoft Office (Excel, Word)Exceptional attention to detail and problem-solving skillsOpen to all
Token.io is building an open future for everyone. We don’t just accept different points of view, lived experiences and new ways of thinking — we search them out. They help us make better products, better decisions, and a better place for everyone to work. So, come as you are. We acknowledge and embrace different backgrounds, identities and abilities. Respect is our default, and empathy is our baseline. No one succeeds until we all do.
