Head of Quality Assurance for Financial Crime Compliance - Compliance

Job Purpose

The Head of FCC QA is responsible for the design, implementation and ongoing management of the Financial Crime Compliance Quality Assurance framework across the bank. The role provides independent second-line assurance over the effectiveness, consistency and regulatory compliance of both second line and first-line financial crime controls (AML, CFT, sanctions, KYC/CDD, transaction monitoring and name screening included).

Principal Accountabilities

1. QA Framework & Governance

Develop, implement, and maintain the FCC QA methodology, standards, and procedures aligned with:

• UAE Central Bank regulations
• FATF recommendations
• Internal compliance policies

Ensure QA framework reflects a risk-based approach, prioritising higher-risk business areas and products.

Maintain independence from first-line operational execution.

2. Annual QA Plan

Develop and obtain approval for the annual QA plan, aligned to:

• Enterprise-wide financial crime risk assessment
• Regulatory priorities
• Internal audit findings and historical issues

Ensure dynamic updates to the plan based on emerging risks or regulatory developments.

Track execution against plan and provide periodic status reporting.

3. Execution of QA Reviews

Lead and oversee QA reviews across key FCC domains:

• Customer Due Diligence (CDD/KYC)
• Enhanced Due Diligence (EDD)
• Transaction Monitoring
• Sanctions Screening
• Suspicious Activity Reporting (SAR/STR)

Conduct:

• File reviews
• Process walkthroughs
• Control testing

Ensure sampling methodologies are statistically valid and risk-based.

Assess:

• Quality, completeness, and accuracy of first-line decisions
• Adherence to internal policies and regulatory requirements

4. First Line of Defense Review

Evaluate effectiveness of first-line controls and processes, including:

• Onboarding procedures
• Ongoing monitoring frameworks
• Alert handling and escalation

Identify control gaps, process inefficiencies, and inconsistencies in application.

Challenge first-line practices constructively while maintaining independence.

5. Issue Identification & Remediation

• Document findings with clear root cause analysis and risk impact assessment.
• Classify issues (e.g., high/medium/low severity) based on regulatory and financial crime risk exposure.
• Track remediation actions and validate closure.
• Escalate significant or systemic issues to CCO and relevant governance forums.

6. Reporting & MI

Produce high-quality management information (MI) and dashboards, including:

• QA results and trends
• Thematic issues
• Repeat findings

Provide regular reporting to:

• Chief Compliance Officer
• Compliance Committee and or to the Board

Highlight emerging risks and control weaknesses proactively.

7. Stakeholder Management

Engage with:

• First Line (Operations, Business Units)
• Second Line (Compliance Advisory, Risk)
• Internal Audit

Act as a subject matter expert on FCC quality and control effectiveness.

Support regulatory reviews and inspections as required.

8. Continuous Improvement

Drive enhancements in FCC controls based on QA insights.

Benchmark QA practices against international standards and peer institutions.

Leverage data analytics and technology to improve QA efficiency and coverage.

9. Team Leadership

Build and lead a specialised QA team with expertise in AML/CTF and sanctions.

Ensure adequate training, competency frameworks, and performance management.

Promote a culture of objectivity, rigor, and professional scepticism.

Experience & Qualification

• 5 years experience in Compliance Management, Audit, Regulatory experience
• Bachelor's degree will be preferable law and or economics, finance, risk
• AML, ICA diploma or equivalent
• Good understanding of protocols and procedures to be compliant with UAE regulations and requirements.