Cyber Compliance Analyst (AML & GRC)

Job Summary & Objectives

DigitalMint is seeking a motivated and versatile AML & GRC analyst to join our growing cybersecurity and cryptocurrency business. This hybrid role is responsible for supporting compliance efforts in both Anti-Money Laundering (AML) regulations and Governance, Risk, and Compliance (GRC) initiatives. The ideal candidate will bring a risk-oriented mindset to help identify, assess, and mitigate financial crime risks, while also ensuring adherence to broader regulatory and cybersecurity frameworks. This position offers a unique opportunity to work at the intersection of financial compliance, risk management, corporate governance, and cybersecurity, contributing to DigitalMint’s commitment to regulatory excellence and operational integrity.

The Cyber Compliance Analyst will report to both the Compliance Program Manager and the Risk Manager, working cross-functionally with teams including Legal, IT, Risk Management, and Executive Leadership. This role requires a strong analytical mindset, attention to detail, and the ability to interpret evolving regulations that impact DigitalMint’s business. The Analyst will support transaction monitoring, OFAC & International sanctions list screening, due diligence, and reporting obligations, while also contributing to enterprise-wide cybersecurity risk assessments, policy development, and compliance training. The ability to communicate compliance requirements across departments will be essential to success.

By balancing financial crime prevention with cybersecurity risk management, the Cyber Compliance Analyst will play a vital role in safeguarding DigitalMint’s operations, ensuring compliance with applicable laws and industry best practices — contributing to our culture of transparency, accountability, and security. This is an exciting opportunity for an individual who excels in a fast-paced, highly regulated, and high-stakes environment, with a strong desire to develop expertise in both financial and cybersecurity compliance.

Core Duties & Responsibilities

Compliance Risk and Analysis:

• Investigate and assess risks associated with crypto wallets, customers (business), geographical / jurisdictional risks.
• Monitor blockchain alerts.
• Participate in communications with regulators and auditors, especially regarding risk monitoring strategies.
• Prepare reports to assess the business’s overall risk mitigation effectiveness.
• Regularly review data and solutions to ensure AML/CFT compliance.
• Perform additional duties as assigned.

Customer Due Diligence (CDD) & Onboarding:

• Conduct initial due diligence for customers involved in ransomware settlement transactions.
• Review onboarding documentation to verify compliance with KYC and CIP requirements.
• Identify and analyze risk factors during the client onboarding process.

Transaction Monitoring & Investigations:

• Monitor and analyze cryptocurrency settlement transactions for suspicious activities.
• Identify potential risks related to money laundering, fraud, and sanctions violations.
• Document case findings in compliance case management systems and recommend actions.
• Utilize blockchain forensics tools to identify source and use of cryptocurrency funds.

Sanctions Screening & Analysis:

• Utilize screening tools to identify potential matches to OFAC and other watchlists.
• Investigate and escalate sanctions alerts to the Compliance Program Manager.
• Track and resolve sanctions-related issues in accordance with internal protocols.

Suspicious Activity Reporting (SARs):

• Gather relevant customer and transaction data for suspicious activity investigations.
• Draft Suspicious Activity Reports (SARs) for internal review and regulatory filing.

Governance, Risk & Compliance (GRC):

• Conduct risk assessments to identify, prioritize, and mitigate threats and vulnerabilities.
• Monitor compliance with key industry regulations and information security frameworks.
• Track changes in laws and regulations that may impact DigitalMint and the broader industry.
• Assist in the preparation of internal cybersecurity reports and risk assessments, including supporting documentation and meeting minutes.
• Perform additional duties as assigned.

Policy & Process Adherence:

• Follow established AML, fraud, and sanctions compliance policies and procedures.
• Identify process gaps and suggest improvements to transaction workflows.
• Assist in the development and updating of security policies and procedures to ensure regulatory compliance and enhance DigitalMint’s security posture.

Collaboration & Communication:

• Collaborate across departments to foster a strong culture of compliance.
• Effectively communicate findings and recommendations to both technical and non-technical stakeholders.
• Support internal and external audits by providing required documentation and clarifications and verifying adherence to policies and regulations.
• Assist in responding to monthly reports, data requests, and law enforcement inquiries.
• Help address and resolve audit findings to improve compliance and cybersecurity programs.

What We’re Looking For

Experience:

• 1-2 years of relevant experience, well versed in AML laws and best practices, solid understanding of industry regulations and standards
• Interest or exposure to financial services, cryptocurrency, cybersecurity, and/or IT governance a plus, but not required

Education:

• Bachelor’s degree in Business Administration, Information Security, Risk Management, or related field, preferred
• AML-related certification, or willingness to obtain, a plus (e.g., CAMS)

Key Competencies & Skills:

• Familiarity with OFAC/Sanctions and BSA/AML regulations, USA PATRIOT ACT, data governance standards, and privacy laws.
• Understanding of KYC, CDD, and EDD requirements in a financial services context.
• Ability to identify and assess risks, as well as develop mitigation strategies.
• Ability to create, evaluate and implement effective security policies.
• Proficiency in analyzing data to inform risk assessments and generate compliance reports, while ensuring meticulous attention to detail.
• Excellent written and verbal communication skills.
• Excellent organizational and project management skills, able to juggle multiple priorities simultaneously.
• Willingness to learn, adapt, and quickly take on new responsibilities in a fast-paced environment.
• Eager to challenge existing processes and bring fresh, innovative ideas to the table.
• Comfort with technology and a curiosity for the rapidly changing crypto/fintech/cybersecurity landscape.