Position Overview: Bridge Building S.A. (BBSA) is building a Luxembourg regulated EMI and CASP. We are seeking an Enterprise Risk Management (ERM) Specialist to build and operate BBSA’s enterprise risk framework across financial and non-financial risks, ensuring clear governance, effective risk assessments, and inspection-ready documentation. The role supports senior management and the Board with actionable risk reporting and disciplined issue remediation.

Key Responsibilities:

ERM Framework and Governance: Implement and maintain BBSA’s ERM framework, including risk taxonomy, risk appetite statements, risk register, and escalation processes. Coordinate risk governance forums and prepare management and Board risk reporting packs (KRIs/KPIs, trends, and key decisions). Risk and Control Assessments: Facilitate periodic risk and control assessments across BBSA functions (Operations, Treasury, Compliance/AML, ICT, Outsourcing). Support business change and new product risk assessments, ensuring risks are identified, mitigated, and documented. Issue, Incident, and Remediation Management: Operate the issue management lifecycle: logging, root cause analysis, action plans, tracking, and validation of closure. Partner with InfoSec and Compliance on operational incidents, control weaknesses, and regulatory findings. Third Party and Outsourcing Risk: Support outsourcing risk oversight, including concentration risk considerations, critical provider monitoring, and exit planning in collaboration with the Outsourcing function. Ensure third party risk is consistently assessed and reported within the ERM framework. Risk Culture and Continuous Improvement: Contribute to risk policies, procedures, and training; promote risk awareness and pragmatic control ownership across the business. Drive continuous improvement of risk metrics, reporting quality, and governance effectiveness.

Key Requirements:

Education:

Bachelor’s or Master’s degree in Risk Management, Finance, Business, or a related field.

Experience:

5+ years in enterprise/operational risk management within regulated financial services. Experience with payments/EMI/PI and/or crypto/fintech risk environments is a strong advantage.

Skills:

Strong facilitation and stakeholder management, with the ability to challenge constructively and drive outcomes. Excellent written communication and ability to produce concise, Board-ready materials.

Languages:

Fluent English required; French is an advantage.