Quality Compliance Assurance Officer

TraXion Pasig, National Capital Region, Philippines Quality Compliance Assurance Officer A Quality Compliance Assurance Officer in a Fintech/EMI company is responsible for ensuring all operations, products, and services consistently meet internal quality standards and comply with diverse regulations. This includes interpreting and implementing requirements from ISO , the Merchant Acquisition License (MAL) , BSP (Bangko Sentral ng Pilipinas) , and the DPA (Data Privacy Act) , while also developing and maintaining quality management systems, conducting audits, managing risks, training staff, and driving continuous improvement across the organization. Job Summary The Quality Compliance Assurance Officer will ensure that all company operations, products, and services consistently meet and exceed internal quality standards, regulatory requirements, and international benchmarks within the FinTech and Electronic Money Institution landscape. This role focuses on upholding compliance with regulations and standards, including ISO (International Organization for Standardization) , MAL (Merchant Acquisition License) , BSP (Bangko Sentral ng Pilipinas) , DPA (Data Privacy Act) as well as developing, implementing, and maintaining robust quality management systems, conducting regular audits, identifying improvement areas, and driving a culture of continuous quality improvement and regulatory adherence. Key Responsibilities Handling compliance to regulatory requirement Assists in the implementation and dissemination of laws, regulations, rules, standards and other regulatory requirements. Attend governance forums/meetings to provide updates. Analyzes key upcoming regulatory guidance to assess level of compliance with current practice. Performs oversight function/regular audits and works closely with business units in the independent assessment of policy and process ensuring compliance to existing and new regulatory requirements. Recommends action to address gaps or deficiencies. Assists in the implementation and monitoring of audit deliverables, compliance controls, and operational processes. Serves as point of contact on all compliance and regulatory matters. Interacts and handles communication with internal and external auditors on matters related to audits/regulations and internal compliance controls in coordination with other business units. Coordinates preparation and completion of regulatory and compliance documents. Assists in preparing senior management reports on regulatory requirements, internal audits, and credit reviews. Participates in testing on system developments or enhancements concerning regulatory requirements. Performs projects or tasks assigned from time to time. Regulatory Compliance & Interpretation Stays abreast of all relevant national and international regulatory requirements, including ISO standards (e.g., ISO 9001, ISO 27001), MAL terms and conditions, BSP circulars and regulations, and the Data Privacy Act (DPA). Interprets complex regulatory guidelines and translates them into practical policies and procedures specific to merchant acquisition, payments, EMI operations, and data privacy. Monitors changes in regulations and standards, assessing impact on the organization and recommending necessary adjustments. Quality Management System (QMS) Development & Maintenance Develops, implements, and maintains a comprehensive QMS in line with ISO standards (e.g., ISO 9001, ISO 27001), the DPA, and other applicable regulatory frameworks. Creates, reviews, and updates quality documentation, including policies, procedures, work instructions, and records related to merchant onboarding, transaction processing, data handling, and compliance. Ensures effective document control and record‑keeping practices to meet audit and DPA requirements. Auditing & Monitoring Plans, conducts, and reports on internal quality audits to assess compliance with established procedures, QMS requirements, and regulatory obligations, particularly concerning MAL, BSP, and DPA requirements. Participates in and supports external audits (e.g., certification audits for ISO, regulatory inspections from BSP, National Privacy Commission). Identifies non‑conformities, deviations, and potential risks, initiating and tracking corrective and preventive actions (CAPA). Compliance Reporting Prepares a monthly Compliance Report for the Audit Committee and Board of Directors, covering status of compliance with BSP directives, significant regulatory updates and communications, AML/CTF activities, compliance testing results and corrective actions, status of compliance program activities. Reportorial Requirements Ensures timely and accurate submission of annual reports to BSP, Integrated Annual Corporate Governance Report to SEC, reports on Related Party Transactions (RPTs) and material intra‑group transactions to BSP, PDIC Bank Information Sheet (BIS) and reporting package, reports on crimes and losses to BSP. Audit Committee Support Records and maintains minutes of Audit Committee meetings. Corporate Governance Annually reviews and updates Committee Charters and presents changes to Corporate Governance and Board of Directors. Reviews and updates the Corporate Governance Manual. Ensures submission of the Annual Corporate Governance Report (ACGR) to the SEC. Conducts self‑assessments for the Board and Board‑level Committees, presenting results to the Corporate Governance Committee and Board of Directors. Coordinates annual training on Corporate Governance for the Board of Directors and Senior Management. Related Party Transactions (RPTs) Reviews and updates RPT policies and procedures; maintains and updates the RPT database; presents RPTs requiring review and approval to the RPT Committee. Quality & Compliance Risk Management Identifies, assesses, and mitigates quality and compliance risks across all operational areas, focusing on merchant acquisition, AML, fraud prevention, and data privacy risks. Develops and implements risk‑based approaches to quality assurance activities, ensuring adherence to regulatory risk frameworks including DPA. Develops and delivers training programs to employees on quality management principles and regulatory requirements (MAL, BSP, DPA) and company policies. Promotes a strong quality and compliance culture throughout the organization, emphasizing data privacy best practices. Analyzes quality data and trends to identify improvement areas and propose solutions to enhance operational efficiency, product/service quality, and regulatory compliance. Drives continuous improvement initiatives, especially in processes related to merchant acquisition, transaction monitoring, customer due diligence, and data privacy safeguards. Prepares and presents regular reports on quality performance and compliance status to management. Stakeholder Collaboration Collaborates closely with Operations, Product Development, Legal, and IT to ensure integrated compliance efforts, particularly concerning data protection impact assessments and privacy‑by‑design principles. Acts as primary point of contact for regulatory bodies (e.g., BSP, National Privacy Commission, MAL issuing authorities) and external auditors when required. Note: Only key responsibilities highlighted; additional duties may be assigned. #J-18808-Ljbffr