Head of Compliance

CloudTech Group is building a simpler, safer, and smarter financial future for all Australians. Powered by blockchain, backed by compliance, and built for real life, we're transforming how Australians interact with financial services through innovative technology solutions. As we continue to expand our operations and navigate the evolving regulatory landscape, we are seeking an experienced Head of Risk and Compliance to join our executive team.

We are seeking a highly skilled and proactive Head of Compliance to build and lead the Group's compliance function. This critical leadership role requires an expert who can not only interpret complex laws and regulations but also translate them into actionable policies, systems, and timely regulatory submissions. The successful candidate will be the key driver of our compliance culture, ensuring that all CTG subsidiaries operating in Digital Currency Exchange (DCE), remittance, crypto custody, and managed investments services meet their regulatory obligations in a dynamic and evolving landscape.

Strategic Compliance Framework & Governance:

• Develop, implement, and maintain the Group's overarching Compliance Management Framework, Risk Management Framework, and integrated policies and procedures.
• Provide strategic advice to the Board, CEO, and Senior Managers on all compliance matters, ensuring the Group proactively addresses regulatory change.
• Oversee the Group's contracts management process from a compliance and risk perspective.

Regulatory Oversight & Reporting for Core Business Lines:

• Crypto Exchange & Stablecoins: Provide comprehensive compliance oversight for our digital currency exchange and stablecoin services, ensuring adherence to relevant regulations and future-proofing for upcoming frameworks, including ASIC Regulatory Guide 274 (RG 274) and APRA CPS 230.
• Crypto Custody & Digital Assets: Manage all compliance aspects for our crypto custody operations, including the application of ASIC RG 78 (Cyber resilience), RG 104 (Licensing: Meeting the general obligations), RG 105 (Licensing: Organisational competence), and RG 133 (Managed discretionary account services).
• Financial Products & Licensing: Lead the compliance work for the issuance of our debit card and other financial products, including the drafting and review of Product Disclosure Statements (PDS) and Financial Services Guides (FSG) in line with ASIC RG 168 (Disclosure: Product Disclosure Statements), RG 185 (Credit licensing: Responsible lending conduct), and RG 234 (Advertising financial products and services). Ensure the operational resilience requirements of APRA CPS 220 (Risk Management) and CPS 230 (Operational Risk Management) are met.

Regulatory Reporting & Submissions Management:

• Own the end-to-end process for the Group's critical regulatory reporting, ensuring the accuracy and timely submission of all returns, including but not limited to:
• ASIC: Form 5111 (Compliance plan audit), Form 388 (Financial statements), Form FS70/FS71 (AFS Licence financials and auditor's report), Industry Funding Annual Return, and Internal Dispute Resolution (IDR) data reporting.
• APRA: Form 701 (GI Intermediary Semi-Annual Return).
• AUSTRAC: SMR/TTR/IFTI reporting and the Annual Compliance Report.
• Innovation and Science Australia: All ESVCLP returns (Quarterly, Annual Return, and Annual Report Forms).

Privacy, Data Governance & Breach Management:

• Implement and oversee the Group-wide Privacy Program in accordance with the Privacy Act 1988 and the Australian Privacy Principles (APPs), including Privacy Impact Assessments (PIA) and managing cross-border data transfers.
• Lead the response and notification process for any Significant Data Breach, including reporting to the OAIC.

Internal Governance:

• Prepare and present comprehensive reports for the internal Risk & Compliance Committee and provide regular Management Updates on the status of the compliance framework.

Requirements

Experience and Qualifications

• A minimum of 8-10 years of experience in a senior compliance role within the Australian financial services sector.
• Essential: Demonstrable, hands-on experience interpreting and applying the Corporations Act 2001, AML/CTF Act, and key regulatory guides, including RG 78, RG 104, RG 105, RG 133, RG 168, RG 185, RG 234, and RG 274.
• Essential: Proven, practical experience in the preparation and submission of key regulatory returns to ASIC (e.g., Forms 5111, 388, FS70/71), APRA (Form 701), and AUSTRAC.
• Deep understanding of APRA prudential standards, particularly CPS 220 and CPS 230 is preferable.
• Proven experience in a compliance leadership role covering one or more of the following: Digital Currency Exchanges (DCE), remittance, crypto custody, or managed investments.
• Direct experience liaising with ASIC, AUSTRAC, and/or APRA.
• Tertiary qualifications in Law, Business, Finance, IT, or a related field are required.
• Ability to anticipate regulatory changes and translate them into actionable business requirements.
• Capable of explaining complex legal and regulatory concepts to technical and business teams.