About the Job

We are looking for a Risk Operations Analyst to perform various merchant risk management activities at Xendit, including investigation of merchant-related risk alerts, reviewing and deciding on merchant requests for activating features and channels, updating transaction privileges, responding to risk-related queries from merchants and internal and external stakeholders, and managing other operational matters such as chargeback responses.

The role requires a strong ability to independently assess the context of the situation and alerts and apply sound judgment to decide the right course of action. This person needs to be proactive and have the acumen to apply risk management principles in varied situations. An ability to follow the standard operating procedures, owning the tasks and cases end to end, and the drive to bring cases to conclusion will be important requirements for this role.

The role will involve communication with teams across Xendit and with external partners and merchants. There will also be multiple priorities to manage. Clear and precise communication skills will be required as well as the ability to independently craft recommendations to senior stakeholders using risk protocols and SOPs instead of seeking constant direction.

Minimum Qualifications

• 2+ years of experience in Fraud Risk or Credit Risk specifically in Card Payments (acquiring/issuing) with strong exposure to Chargebacks and Disputes.
• Proven ability to identify high-risk merchants using transaction behavior, dispute trends, fraud signals, and compliance indicators.
• Hands-on experience performing merchant risk reviews and recommending appropriate risk mitigation actions.
• Deep understanding of the chargeback process and essential card scheme regulations, particularly those for Visa/Mastercard/JCB.
• Ability to conduct basic data analysis and structure the investigations in an organized way.
• Ability to work independently take ownership, and drive cases from detection to closure with minimal supervision
• Excellent communication skills with the ability to write clear investigation summaries and communicate decisions to internal stakeholders.
• Ability to understand and follow the standard operating procedures and risk protocols

Preferred Qualifications

• Bachelor’s degree
• Experience with risk operations and conducting fraud investigations and assessments
• Familiarity with Cards Products and handling chargeback operations including reconciliation
• Strong desire to learn and agility to apply basic concepts to multiple situations

Responsibilities

• Follow SOPs and conduct fraud and credit risk investigations triggered through alerts, dispute spikes, abnormal transaction behavior, and merchant risk signals.
• Monitor merchant performance and trends to identify high-risk merchants early and take appropriate mitigating actions to reduce fraud and chargeback exposure.
• Independently coordinate with internal and external stakeholders to drive investigations to closure, ensuring clear documentation, evidence collection, and decision traceability.
• Assess requests from merchants and internal stakeholders for enabling payment channels, features, and limits by performing risk assessment and recommending controls (limits,reserves, holds, enhanced monitoring, etc.)
• Follow the SOPs and manage daily chargeback operations including coordinating with multiple bank partners, internal stakeholders, and merchants.
• Manage weekly chargeback reporting. 
• Collaborate with cross-functional teams (Operations, Compliance, Support, Merchant Success) to improve risk controls, SOPs, and preventive measures.
• Do whatever it takes to make Xendit successful

As Tax Analyst, you will have a broad range of tax-related responsibilities, with a particular focus on maintaining an international tax compliance and reporting portfolio for the Smartly group of companies, while also assisting on adhoc advisory and project workstreams. Working directly with the Tax & Treasury Manager and collaboratively with internal teams and external advisors, you will be exposed to all aspects of tax and play a critical role in ensuring the group’s tax obligations are met on time and in full.

Given the global footprint of the business, you will gain exposure to diverse tax regimes and cross-border considerations, providing a unique opportunity to broaden your international tax expertise. Your knowledge of and proximity to the day-to-day inner workings of the business will enable you to identify areas of improvement and drive real change. Attention to detail and time management are therefore critical attributes required for this role.

This is a great opportunity to deepen your tax knowledge through practical experience across multiple jurisdictions, as well as developing related accounting and finance skills to enhance your skillset.

What You Will Do

• Support all direct and indirect tax matters, particularly corporation tax and sales tax/VAT/GST, across multiple jurisdictions.
• Preparation and timely submission of tax returns and ensuring related payments are actioned / received by relevant tax authorities.
• Review the accuracy and integrity of accounting balances recording tax, including preparing monthly/quarterly/annual tax calculations.
• Global mobility and fringe benefit tax compliance; involvement with employer-related tax obligations.
• Maintaining Smartly’s tax compliance calendar of all above workstreams and continually updating for new filing / payment obligations as the business grows.
• Continuous improvement of processes, controls and documentation to manage risk and create efficiencies.
• Establishing effective working relationships both within the tax / finance team and with other Smartly business units.
• Work with external advisors and tax authorities; assist / support audit responses and enquiries.

What We Are Looking For

• Bachelor's degree in Accounting with 3+ years of relevant work experience.
• Proven experience in a similar tax, finance, and / or accounting role.
• Understanding of direct / indirect tax, tax accounting, international tax law, and transfer pricing.
• Strong Excel or Google Sheet skills; experience with NetSuite is an advantage.
• Excellent analytical and problem-solving skills.
• High level of accuracy and attention to detail.
• Ability to prioritize tasks and meet deadlines in a fast-paced environment.
• Work well as part of a team, while being able to handle tasks independently.

What We Offer You

At Smartly, we offer a place where you can advance your career. Here, you'll find:

• An Inclusive Global Culture: Join a team of over 750 Smartlies, representing more than 60 nationalities across 24 locations in 13 countries. We cultivate a culture built on trust, transparency, and open feedback, where diverse perspectives are valued and encouraged.
• Global Impact: Contribute to a company making a global impact, directly influencing our customers' success and business growth.
• Focus on Wellbeing: We prioritize your health with healthcare packages, mental health services, and a commitment to work-life balance through paid holidays and family leave.
• Flexible Hybrid Workplace: Experience a hybrid work model, balancing office collaboration with remote work, and the option to work abroad for up to 30 days annually.

Smartly is committed to being a great place for growth-minded individuals to thrive. Explore more in our Culture Handbook!

Apply Now and Build Your Future with Smartly!

Curious what it’s like to work at Smartly? Visit our Careers page to see how we grow, collaborate, and make impact together

#LI-HYBRID

The Business Analyst role is responsible for providing necessary business analysis support from elicitation, analysis, and documentation of business needs and stakeholder requirements, solution requirements both functional and non-functional, and transition requirements relating to various software applications.

Duties And Responsibilities Business analysis

• Investigates business and operational needs, problems, and opportunities, resulting in the recommendation of improvements in automated and non-automated components of new or changed processes or systems

Business modeling

• Conversant with techniques covering a full range of modeling situations.
• Models current and desired scenarios
• Selects appropriate modeling techniques for meeting assigned objectives.
• Gains agreement from subject matter experts to models produced.
• Reviews resulting models with stakeholders and gains resolution to issues or needs.

Requirements Definition And Management

• Defines and manages scope, requirements definition, and prioritization activities for IT-related projects or change requests
• Follows the agreed standards, applying appropriate techniques to elicit and document detailed requirements.
• Provides a constructive challenge to stakeholders as required.
• Prioritizes requirements and documents traceability to source.
• Provides input to the requirements baseline. Investigates, manages, and applies authorized requests for changes to baselined requirements, in line with change management policy

Project Management

• Ensures tasks, milestones, timelines, resources, and other details are clearly communicated to the business owners
• Prepares and submits regular status reports to relevant stakeholders, indicating tasks completed, risk assessment, issues encountered and other items requiring management action
• Manages projects according to approved project management standards to ensure agreed scope, schedule, budget, and objectives are met

So, what’s the role all about? 

The Cyber Security Contract Analyst will work with the Trust Office and Legal team and is responsible for analyzing, correlating, documenting, and providing recommendations for customer and vendor service level agreements. Our cybersecurity team judiciously reviews each inbound (e.g. vendor services) and outbound (e.g. product services) contractual agreement to provision optimal and guaranteed customer success. This position will work closely with our Legal Office to quality control contract language and, support customer, partner, and vendor engagements to provide clarity, transparency, and recommendations to how our services provision cybersecurity controls.

Provides technical guidance and risk acceptance/denial parameters to Legal team and Vendor Management team to provision bilateral security gates amongst customers, partners, and vendors. Provide data analysis to support, compile, report, and communicate key security information for indirect and direct client engagements. Responsible for documenting and sustaining the company approved Security Profile, Standard Information Gathering (SIG) solution and, working with our current and future customers on accepting our industry adopted and accepted SIG.

This role is responsible for all facets of business contract analysis as it relates to cybersecurity; coordinating with our Legal, Customer Success, Technical Success, and Professional Services teams are instrumental to maintaining transparency and analyzing contractual service level agreements.

How will you make an impact?  

As a Cyber Security Contract Analyst, a Typical Day Might Include the Following:

• Perform and participate in the analysis, design and implementation of business processes and procedures for contract reviews and client engagements.
• Act as a liaison with various departments to resolve agreement disputes and improve security business objectives.
• Document and sustain industry accepted SIG solution to deliver above standard results to current and future customers.
• Engage, coordinate and continuously work with Sales Engineering and Technical Account/Support Management teams to document, provision, and communicate customer-available security instruments.
• Perform risk assessments of existing and proposed contracts; document acceptable solutions to amend contract language
• Conduct contract assessments, redline amended/proposed customer and vendor service agreements, and review contracts for completeness and accuracy prior to obtaining signatures.
• Anticipate contractual issues and recommend tailored solutions that will support payor contracts (new agreements, terminations, letter of agreements, amendments, regulatory agreements, and addendums) acceptable for secure environments.
• Perform cybersecurity clause contract evaluations to identify risk, outline key terms, and incorporate NICE inContact policies and procedures to align corporate business objectives into service obligations.
• Engage in business discussions with key internal teams and stakeholders (Sales, Sales Engineering, Technical/Customer Success, Finance, Legal, and Buyers) early in the contracting process to provide cybersecurity data and updates; and, to discuss potential service and obligations issues and contract requirements to deliver trust and success for the company and customers.
• Draft, redline, and coordinate NDAs and service agreements, contractual documents, reports, and other correspondence as directed.
• Maintain the highest level of personal certification, integrity and objectivity, following the company Code of Ethics and Nice inContact policies and procedures at all times.

Have you got what it takes?  

• Associate's degree in business information systems, Business Administration, Business Communications, Computer Science, Information Systems Security or related field or equivalent work experience required.
• Bachelor's Degree Preferred.
• 2+ years of contracting analysis experience at a technology or services company.
• Knowledgeable of all aspects of business procurement functions.
• Excellent communication skills, both written and oral.
• Understanding of cybersecurity methods and technologies within applications and cloud environments.
• Experience or education in program and contract analysis.
• Knowledge of contract drafting principles within technology organizations.
• Ability to present contract and service agreement recommendations supported by analytical evaluations.
• Proficient in Microsoft Office Suite and formal English grammar.
• Excellent critical thinking skills with ability to translate complex contract language into tangible and objective meaning, define contract problems, and provide language re-write recommendations to support successful agreements.
• Ability to map company policies and procedures and cybersecurity controls to vendor and customer service agreements.
• The attributes of a qualified candidate are a rational skepticism, a sense of risk appreciation, technical awareness, informed judgment and a strong operational understanding.

Bonus Experience: 

• Experience and familiarity with Salesforce operations.
• Working knowledge of Standard Information Gathering templates and solutions.
• Strong understanding of data security controls to include encryption (at rest and processing), network authentication, network security architectures, and access control.​

Certifications in security, contract analysis, or related field (one or more preferred):

• CompTIA Security +
• CompTIA Network +
• Certified Professional Contract Manager

Requisition ID: 10749
Reporting into: Manager, Information Security CX
Role Type: Individual Contributor

What’s in it for you?

Join an ever-growing, market disrupting, global company where the teams – comprised of the best of the best – work in a fast-paced, collaborative, and creative environment! As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. If you are passionate, innovative, and excited to constantly raise the bar, you may just be our next NICEr!

Enjoy NICE-FLEX!

At NICE, we work according to the NICE-FLEX hybrid model, which enables maximum flexibility: 2 days working from the office and 3 days of remote work, each week. Naturally, office days focus on face-to-face meetings, where teamwork and collaborative thinking generate innovation, new ideas, and a vibrant, interactive atmosphere.

This job description is not intended to be all-inclusive, and employees will also perform other reasonable related business duties as assigned by immediate supervisor and other management as required.

This organization reserves the right to revise or change job duties as the need arises. This job description does not constitute a written or implied contract of employment.​

Note: Remember, this job description isn't exhaustive. Employees may be asked to handle other reasonable business duties assigned by their supervisor or management. The organization also has the flexibility to adjust job duties as needed. Keep in mind that this role might entail overtime, and working during non-traditional hours like nights, early mornings, and weekends. Additionally, being on-call may be required.

• Fraud detection and analysis coming from monitoring parameters and processes to minimize and control fraud exposure.
• Proactive and continuous review and assessment of fraud monitoring parameters and processes, including:
• Quality assurance of fraud detections and how they were handled
• Assess performance of detection parameters, profiles, and processes; then provide recommendations
• Investigate fraud related cases to be able to provide information on the root cause, revenue impact, and on how to address this.
• Conduct research and information gathering activities so as to identify new fraud techniques and new fraud trends.
• Analyze and test current and new products and services so as to be able to identify possible fraud and revenue risks, if any.
• Partner and collaborate with business and other operating units across the organization in order to:
• - Provide relevant inputs to proactively alleviate and prevent fraud risk
• - Ensure that inherent and accepted risks are covered by the fraud team
• Deliver relevant, accurate, timely and actionable reports of fraud cases and detections

Qualifications:

• ▪proficient in SQL (preferably GSQL). Knowledgeable in MS Office and G-Suite; techno-literate and has strong internet research skills.
• With experience in handling a Fraud Management System.
• Organized, Keen on details, self-motivated, and with the ability to perform well with minimal supervision in a fast paced and target driven environment.
• With good analytical and problem solving skills.
• With good written and verbal communications skills
• Should be ok in working in shifts, including weekends and holidays.
• Should be ok in working for more than 8 hours a day, and may be requested to work even on non-scheduled days.
• Preferably with an e-commerce or fintech background but not required

Harbor is seeking Applications Support Analysts to join our dynamic Legal Technology & Operations – Applications Management Services team. Our team is at the forefront of delivery of a quality service for our clients who have managed service agreements.  We have both extensive experience in legal processes and technology across several platforms.  This mainly focusses on Intapp, Elite 3E and iManage products but also includes others where integration is essential, e.g. practice management systems, document management systems and external data providers.  We serve both as advisors and as experienced, hands-on resources, collaborating with our clients to contain risk and cost through operational improvement, efficient data management, and technology usage.   

As an analyst, you will be expected to collaborate with senior and junior-level internal resources, as well as clients, to ensure correct prioritization and timely delivery of both a “business as usual” type model for our clients as well as some “continual improvement” tasks.  This is a position that will be hybrid with an office in the metro Manila area.

Job Duties and Responsibilities: 

The role is split into 2 main areas of responsibility: 

• Monitoring and resolving issues within client production environments.  This is termed “business as usual”. 
• Improving configuration and processes for clients, based on changing needs.  This is termed as “continual improvement”.   

Business as usual includes the following responsibilities: 

• Carry out regular proactive monitoring on client systems. 
• Assist clients and other team members with production issues in a timely fashion, these could be data or process related. 
• Provide regular and concise client updates when resolving issues.  
• Collaborate with technology providers and clients to resolve defects. 
• Support integrations with third party applications. 
• Reconcile data across various systems. 
• Configure Intapp product software.  
• Gain knowledge to become proficient in both the supported applications and business processes. 

Continuous improvement includes the following responsibilities: 

• Collaborate with other team members to execute planned changes to client implementation components. 
• Execute test plans to validate outcomes from continuous improvement items. 
• Document small changes to include communication back to the client. 
• Actively participate in deployment of changes. 

Experience, Education and Qualifications:

• Degree in Finance, Business, Computer Science, Software Engineering, Information Science, Economics, Statistics, Accounting or Data & Analytics. 
• Understanding of the implementation process including requirement analysis, design, configuration/development, migration, testing, and change management. 
• Strong observational, analytical and numerical reasoning skills. 
• Effective communication and storytelling skills (written and spoken). 
• Excels in a cooperative team environment. 
• Positive, enthusiastic attitude and entrepreneurial spirit with an eagerness to quickly learn and develop new skills. 
• Competent in the following areas: problem solving, customer-focus, communication, collaboration and punctuality. 

Technical Skills: 

• Advanced computer skills (primarily Excel, Word, PowerPoint, and Visio); familiarity with use of Outlook, Teams, and SharePoint as collaboration tools. 
• Proficiency in the following technical areas: XML, JQUERY/JSON, REST APIs is an advantage. 
• Proficiency in SQL is an advantage. 

Why Join Harbor: 

• Exposure to international clients and global teams 
• HMO (health card) from Day 1
• Hybrid work setup - Metro Manila office
• Learning and development opportunities to build technical and consulting skills 
• Collaborative and supportive global team environment 
• Tech enabled workforce to set you up for success 
• Opportunity to grow your career in the legal technology and consulting 

Harbor is seeking a Security Analyst to join our internal IT Operations team. This role is responsible for strengthening Harbor’s security posture through proactive vulnerability management, third-party risk management (TPRM), and client-facing security assurance activities. The ideal candidate brings hands-on experience with vulnerability scanning tools (particularly Qualys), strong analytical skills, and the ability to communicate security practices effectively across internal and external stakeholders.

This is a fully remote position located in Canada or the Philippines and must align with United States working business hours (EST).

Key Responsibilities:

Vulnerability Management (Qualys-Focused)

• Administer and operate Qualys for continuous vulnerability scanning across infrastructure, endpoints, and cloud environments
• Analyze scan results, prioritize vulnerabilities based on risk, and coordinate remediation efforts with infrastructure and engineering teams
• Track remediation progress and produce reporting dashboards and metrics for leadership
• Continuously improve vulnerability management processes, including SLAs, exception handling, and risk acceptance workflows

Third-Party Risk Management (TPRM)

• Support and manage the third-party risk lifecycle, including vendor onboarding, assessments, and periodic reviews
• Evaluate vendor security posture using standardized frameworks (e.g., SIG, CAIQ, or equivalent)
• Maintain vendor risk inventory and ensure alignment with internal security policies

Client Security Questionnaires & Assurance

• Own and respond to client security questionnaires, RFPs, and due diligence requests
• Collaborate with internal stakeholders to ensure accurate, consistent, and timely responses
• Maintain a centralized knowledge base of standard responses to improve efficiency and consistency
• Support audits and client security reviews as needed

Security Posture & Governance

• Review, update, and maintain security policies, standards, and procedures
• Identify gaps in current security controls and recommend improvements aligned with industry frameworks (e.g., SOC2, ISO 27001)
• Partner with IT and engineering teams to enhance overall security posture and maturity
• Stay current on emerging threats, vulnerabilities, and best practices

Incident Support & General Security Operations

• Assist in the investigation and response to security incidents and vulnerabilities
• Support internal security initiatives, including awareness, compliance, and risk reduction efforts
• Contribute to continuous improvement of security tooling and processes

Required Qualifications:

• 4+ years of experience in information security, cybersecurity, or a related field
• Hands-on experience with vulnerability management tools (preferably Qualys)
• Experience responding to client security questionnaires or audit requests
• Foundational understanding of network security concepts (firewalls, SIEM, IDS/IPS, endpoint protection)
• Familiarity with risk management principles, including third-party/vendor risk
• Familiarity with M365 Security Tools, Exchange Online Protection, Purview, a plus.

Preferred Qualifications

• Experience with TPRM programs or vendor risk platforms
• Knowledge of security frameworks (ISO 27001, SOC 2)
• Experience with remediation tracking and security metrics/reporting
• Familiarity with penetration testing concepts and vulnerability exploitation techniques

Education & Certifications

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)

Why Join Us

This is a unique opportunity for a talented compliance professional to step into a high-visibility, hands-on role that blends operational responsibility with strategic influence. You'll be more than a contributor—you'll be a builder, shaping the frameworks and processes that support our global compliance objectives.

Whether you're a seasoned analyst ready for a bigger challenge or an emerging leader looking to expand your scope, this role offers the chance to grow with purpose and advance your career in a forward-thinking, high-impact environment.

About the Role

We are seeking a proactive, detail-oriented Compliance Sr Analyst to join our global Governance, Risk & Compliance (GRC) team. You will take ownership of key elements of our Continuous Monitoring (ConMon) program, partner with technical teams to track risks and improve control effectiveness, and maintain the common control framework (CCF) that underpins our security, privacy, and compliance posture.

This role is designed for someone who enjoys getting into the details while also thinking strategically about how to optimize compliance processes, scale efficiently, and contribute to audit readiness and regulatory alignment.

Key Responsibilities

• Own and evolve the enterprise-wide Continuous Monitoring (ConMon) program, ensuring that vulnerabilities are identified, tracked, and remediated, with accurate reporting and documentation.
• Conduct recurring control assessments to evaluate the effectiveness of technical, administrative, and operational safeguards, and use results to improve the CCF.
• Develop and maintain the Common Control Framework (CCF), ensuring alignment across regulatory and certification requirements (e.g., SOC 2, ISO 27001, PCI-DSS, NIST 800-53, DORA, C5).
• Manage the risk exception and deviation process, including intake, review, documentation, and tracking of compensating controls.
• Facilitate compliance syncs with internal teams, including Security, Engineering, IT, Legal, and Privacy. Drive action item closure, escalate risks, and promote visibility.
• Support audit and assessment readiness by aligning evidence to controls, updating documentation, and coordinating with process owners to demonstrate compliance posture.
• Maintain core compliance documentation, including policies, SOPs, control narratives, risk registers, and corrective action plans.
• Assist in incident response documentation, focusing on compliance impacts, reporting obligations, and post-incident reviews.
• Collaborate with Security and Engineering to review vulnerability scans and threat intelligence, helping assess risk exposure and prioritize remediation.
• Develop and manage compliance dashboards, metrics, and POA&M-style tracking to communicate program health and maturity.
• Continuously improve compliance processes, identifying automation opportunities, reducing manual tasks, and evolving the CCF to keep pace with a changing risk landscape.

Qualifications

• 3+ years of experience in compliance, audit, security assurance, or a related field within a technology or SaaS environment.
• Knowledge of major regulatory and industry frameworks (e.g., NIST SP 800-53, SOC 2, ISO 27001, PCI-DSS).
• Experience with vulnerability management, risk assessments, and control testing.
• Strong communication and collaboration skills with the ability to work across business and technical teams.
• Proven ability to manage multiple priorities, with attention to detail and a structured, documentation-driven approach.
• Bachelor’s degree in a relevant field or equivalent professional experience.

Preferred Skills

• Familiarity with tools like Tenable, Wiz, or other vulnerability scanners.
• Experience with GRC platforms (e.g., OneTrust, Drata, ServiceNow).
• Certifications such as CISA, CISSP, CRISC, or ISO 27001 Lead Auditor/Implementer.
• Knowledge of data protection regulations like GDPR, HIPAA, or DORA.

Company Benefits

• Company stocks
• Annual merit increase based on performance
• 15% night shift differential pay
• Paid Leave with Cash Conversion
• HMO with free dependents
• Retirement Plan
• Life Insurance
• While on work from home setup: Internet and meal allowance are provided
• Employee Assistance Program for mental and social well-being
• Government-mandated Benefits (SSS, PhilHealth, PagIBIG, 13^th month pay, Solo parent leave, Special leave for women)

#LI-MB1