Oyster HREU

Risk Analyst

Description

✨ One platform, a whole world of opportunity

The best jobs are often restricted to a few wealthy cities, but talent exists everywhere. Oyster set out to change this by launching a global employment platform that enables companies to hire, pay, and support talent anywhere.

We’re proof that a strong, engaged culture doesn't require an office. Since January 2020, Oyster has:

🌏 Built a distributed team of 400+ across 60+ countries

👩‍💻 as #9 in FlexJobs Top 30 Companies for remote jobs

🌈 Formed a diverse leadership team and a workforce that’s 60% female

🏆 Earned top employee engagement scores

🦄 Raised $286 million; valued at $1.2 billion

💚 Achieved B Corp status in 2023

Our momentum shows the power of global employment, and we’re just getting started! If you want to help us drive change and work remotely, we’d love for you to apply!

Location: While this position is posted in a specific location, all of Oyster’s positions are fully remote and you can work from home. Forever.To create the best experience for our new hire, this role requires you to be based within +3 / -4 UTC.

PLEASE NOTE: THIS IS NOT A PRACTICING ATTORNEY POSITION.

We seek a Risk Analyst to join our Governance, Risk and Compliance (GRC) team. Reporting to the Risk Manager. This role is designed for an early-career professional with a strong foundation on Enterprise Risk Management (ERM), KYC/AML support, and global compliance operations. In this role you will be instrumental in developing and maintaining Oyster's ERM program—supporting risk identification, assessment, monitoring, and reporting across our global employment platform. You'll also provide meaningful support to the KYC team and, on occasion, assist the broader Compliance function.

The Risk Analyst will also participate in broader GRC team goals, such as policy implementation, research and training initiatives. The professional will help ensure our operations align with global best practices, thus safeguarding our platform and customers.

Key Responsibilities

  • Assist the Risk Manager in building and maintaining an Enterprise Risk Management Programme.
  • Assist the Risk Manager in building, maintaining, and continuously improving Oyster's enterprise risk register, risk appetite framework, and risk taxonomy.
  • Support periodic risk assessments across business functions (e.g., Payments, Payroll, KYC, Vendor Management), identifying risk owners, inherent/residual risk ratings, and control gaps.
  • Help coordinate risk workshop meetings: prepare agendas, draft meeting notes, track action items, and maintain risk documentation.
  • Monitor Key Risk Indicators (KRIs) and assist in developing risk dashboards and executive-level reporting materials.
  • Support third-party and vendor risk management processes, including initial risk tiering, screening, and periodic reviews.
  • Assist with operational risk assessments for new product launches, geographic expansions, and process changes.
  • Help develop and maintain ERM policies, procedures, frameworks, and internal tooling.
  • Support control testing activities as required.
  • Document risk findings clearly, including rationale behind risk ratings and escalation decisions.
  • Assist with KYC/KYB due diligence on new and existing business clients, ensuring compliance with AML regulations across applicable jurisdictions.
  • Support sanctions screening workflows and escalate potential matches in accordance with internal procedures.
  • Help conduct Enhanced Due Diligence (EDD) reviews for high-risk customers, as directed.
  • Maintain accurate audit trails and case documentation.
  • Assist with vendor onboarding and offboarding screening, including adverse media and sanctions checks.
  • Support investigations into flagged activity using public and non-public databases and records.
  • Help prepare case recommendations with documented findings and clear decision rationale.
  • Assist in monitoring regulatory developments relevant to Oyster's global operations (employment law, AML, data, payroll reporting).
  • Contribute to the development of compliance policies, playbooks, FAQs, and training materials.
  • Support fulfillment of regulatory, legal, and client information requests.
  • Participate in compliance training initiatives and cross-functional GRC projects.

Core Requirements

  • 1–2 years of experience in risk management, compliance, KYC/AML, internal audit, or a related field.
  • Basic understanding of risk management frameworks (e.g., ISO 31000, COSO ERM) — or demonstrated willingness and ability to learn quickly.
  • Familiarity with KYC/AML concepts, customer due diligence (CDD/EDD), and sanctions screening fundamentals.
  • Strong analytical, research, and organizational skills with high attention to detail.
  • Clear written and verbal communication; abilit

Skills

GoAIScala