Job Description Risk Analyst AIFM Services #Luxembourg Monday to Friday (40 hours per week) #Hybrid This is a great opportunity to join a fast-growing AIFM and contribute actively to its development and evolution. The Risk Analyst will support the Risk Manager in implementing the risk management policies and procedures of the AIFM. Some of the things you'll be doing: - Perform risk assessment for existing and new AIFs, determination of risk profile, risk limits (market, credit, liquidity, counterparty, operational) - Monitor compliance of the risk profile with the risk limits and escalation to the senior management when necessary - Collect, analyze data and prepare risk reports - Monitor the liquidity of AIFs and perform stress tests - Provide regular updates to the Risk Team - Provide input to the CSSF reporting (Annex IV reports) and to the investors - Continuously improve the risk reporting, monitoring and enhance operational efficiency including automation - Support the Risk Team on any ad-hoc tasks to ensure smooth running of daily activities What technical skills, experience, and qualifications do you need? - Have a university degree in Economics, Finance or similar fields - Professional qualifications (FRM, CFA, CAIA...) would be considered as an asset - Have 1-3 years of relevant experience as a risk professional in the fund industry (preferably coming from AIFM, management company or Big Four with experience of Private Equity and/or Real Estate AIFs) - Have a good knowledge and understanding of the Luxembourg fund industry and AIFM regulations - Accuracy and a high degree of attention to data details - Have proven ability to work autonomously and demonstrate initiative - Are a team player with good communication skills - Have analytical approach and strong MS Excel skills - Are fluent in English. Any additional language would be considered as an advantage (French, German) When applying for this role, please note that additional background checks may be carried out and an original of your criminal record (n*3) may be requested as evidence of integrity justified with regard to the specific needs of the position to be filled. About Us CSC is a global business, legal, and financial services company based in Wilmington, Delaware, USA, providing knowledge-based solutions to clients worldwide. We have offices and capabilities in over 140 jurisdictions in the Americas, Europe, Asia Pacific, and the Middle East, and more than 8,000 colleagues. We are the business behind business.® Visit our careers site to learn more about CSC and our commitment to our clients, communities, and each other. CSC is committed to creating a feeling of belonging through a diverse and growth-oriented environment where everyone is valued. CSC colleagues have global career opportunities and excellent benefits, including annual success-sharing bonuses or commission plans based on individual performance. To learn more, visit cscglobal.com/service/careers. We offer a range of support to colleagues with disabilities, ensuring people have the necessary resources to thrive in their roles. We encourage candidates to work closely with our talent acquisition partners to convey their specific needs. Our commitment to accessibility reflects our broader dedication to diversity and belonging, CSC only accepts resumes from employment agencies that are part of our approved supplier program. Resumes submitted from other agencies either to talent acquisition, our hiring leaders, employees, or through any other mechanism other than our supplier process, will not be eligible to claim related fees and the submitted resumes will be considered property of CSC. We encourage candidates to apply directly to our website and not through third-party sources. Disclaimer: The information above describes the general nature and level of work performed by employees in this role. It is not intended to describe all duties, responsibilities, and qualifications. About the Team At CSC®, we're always looking ahead, finding ways to innovate, challenge the status quo, and anticipate the needs of our clients. We exceed expectations by adapting client ambitions and goals as our own. This Fierce Client Spirit has helped us adapt and create solutions that have enabled businesses to run smoother and smarter for more than 125 years. It's also the reason we're the trusted partner of many of the world's most successful organizations. CSC is committed to attracting, developing, and retaining talented people whose values align with ours. We empower our colleagues to bring the right solutions to market to meet client demand. That's why we are the leading provider of business administration and compliance solutions. - CSC is a great place to work with smart and dedicated people. - We have won several employer recognition awards, including Top Workplace USA, Great Places to Work India, and Built In's Best Places to Work. - We offer fulfilling work and career opportunities. Most positions are filled with internal moves and employee referrals. - Employees are eligible for Success Sharing, bonuses, or commission plans based on role and individual performance. - CSC offers a competitive and comprehensive benefits package that includes annual leave, tuition reimbursement, referral bonuses, and more. - As business needs allow, CSC offers hybrid or remote work schedules in alignment with local regulations. Specific details for this position will be discussed during the interview process.

• Responsible for leading the identification, assessment, and proactive management of technology risk across the enterprise. • Drives a forward-looking, data-driven risk management approach across cloud, cybersecurity, AI, and third-party ecosystems. • Leads execution of the Technology Risk Management framework, aligned to industry standards. • Oversees enterprise-wide identification and assessment of technology risks across various domains. • Delivers data-driven risk insights and reporting to senior leadership. • Drives continuous improvement of control maturity to meet regulatory expectations. • Oversees end-to-end issue management lifecycle, ensuring systemic fixes. • Leads adoption of automation and tooling to enhance risk identification and reporting. • Establishes governance and risk oversight for AI and emerging technologies.

linkRisk, Fraud & Payments Lead Bitfortune.com is a next-generation crypto casino at the intersection of gambling, internet culture, creators, and crypto. We’re building a brand that feels more like a movement than a casino: loud, edgy, and impossible to ignore. Our “IDGAF” motto is about attitude, not standards. We move fast, think big, and expect the people we hire to do the same. Role Summary We are looking for someone who thinks like a fraudster, spots problems before they become expensive, and knows how to protect the business without killing the player experience. This is not a corporate compliance role. We do not need someone who hides behind policies, blocks everyone, and creates friction for real players. We need someone who understands crypto gambling, understands how people abuse systems, and knows how to build smart, practical protections. Right now, our automated withdrawal and risk systems work well. However, we’re looking for someone who can truly own and shape risk – end-to-end. You should be the kind of person who: - immediately notices when something looks off - understands multi-accounting, bonus abuse, sportsbook arbing, collusion, and exploit behaviour - can investigate strange patterns and work out what is actually happening - knows when something is a real risk and when it is just noise - can work with data and engineering to build the tools and rules needed to stay ahead What You’ll Be Doing - Own risk, fraud, suspicious activity, and payments oversight across Bitfortune. - Investigate and stop: - multi-accounting - bonus abuse - sportsbook arbing - suspicious withdrawals - Crypto-focused risk - collusion - provider exploits - account farming - abuse of promotions or VIP rewards - Monitor player behaviour and identify unusual patterns before they become expensive. - Build and improve: - withdrawal rules - fraud rules - risk scoring - account flags - manual review process - Work closely with product, data, and engineering to identify what tools, alerts, reporting, and tracking are missing. - Know what questions to ask and what data you need in order to investigate properly. - Investigate players, accounts, sessions, wallets, betting patterns, game behaviour, and suspicious transactions. - Work with payments and on-ramp providers when required. - Create a proper process around fraud reporting, suspicious activity, and escalation. - Balance risk and player experience: stop bad actors without making life difficult for real players. - Stay close to the business and proactively identify new ways the platform could be exploited before somebody else does. What We’re Looking For - You have worked in fraud, risk, payments, or investigations in crypto gambling, sportsbook, casino, gaming, fintech, or a similar environment. - You understand how people abuse gambling platforms and how to stop them. - You have experience investigating: - multi-accounting - bonus abuse - sportsbook arbitrage - suspicious payment behaviour - exploit-driven activity - You are highly analytical and naturally suspicious. - You are hands-on and comfortable doing the actual investigation work yourself. - You know how to work with data and engineering to get the information you need. - You do not wait for somebody else to tell you there is a problem. - You think commercially and understand that the goal is to protect the business without damaging the experience for genuine players. - Experience in crypto gambling is strongly preferred. You’ll Work Closely With - Product Engineering - Data / BI - Head of Casino / Casino Product - Sportsbook Operations - VIP - Payments / Finance Success In The First 90 Days - There is finally one clear owner of risk and fraud. - We have a much better understanding of where we are vulnerable. - Multi-accounting, bonus abuse, and sportsbook arbing are reduced. - Suspicious players and exploit behaviour are identified faster. - We have better rules, better reporting, and better visibility into what is happening. - We know what tools, alerts, and data are missing and there is a plan to build them. - Fraud prevention becomes proactive instead of reactive. - Real players are protected without creating unnecessary friction. How To Apply BITFORTUNE.COM

About Us We are a premier cybersecurity consultancy, blending advanced offensive and defensive strategies to safeguard our customers. With a team known for its contributions to cybersecurity research at platforms like Black Hat and DEF CON, we excel at identifying and mitigating sophisticated threats. Large enterprises from a range of industries trust us for advanced adversarial emulation and for critical support in managing their cyber frameworks. Governments trust us with classified projects, relying on our precision and discretion to handle sensitive information securely. We’re a small group that makes a big impact. Our deep technical expertise and our commitment to clients continues to fuel our success, and with success comes growth – we’re currently searching for a GRC Consultant with a strong background in CMMC and/or NIST 800-171/53.… Role Profile In this position your mandate is to ensure that our clients meet the stringent cybersecurity standards set by regulatory bodies in their industries and jurisdictions. Working remotely, you'll advise clients on best practices, develop work plans, harness resources, and ultimately drive engagements to completion. This is a challenging role, but also an outstanding opportunity to join an accelerating startup in a position that’s crucial to the company’s continued success. Key Responsibilities - Provide guidance and support to client organizations throughout their cybersecurity maturity journey, helping them to build robust cybersecurity roadmaps. - Work with clients to design and implement right-sized cybersecurity controls in line with global industry, sector, and regulatory frameworks and standards. - Collaborate with clients’ teams to develop and implement risk treatment methodologies and plans necessary to achieve and maintain their program compliance. - Clearly articulate cybersecurity requirements to client organizations’ employees of all levels to ensure understanding and senior leadership sponsorship. - Assist organizations with the review and update of existing security policies and procedures to align with evolving requirements and best practices in cybersecurity. - Prepare detailed reports on the status of an organization's cybersecurity compliance. Prepare and deliver thoughtful, insightful, and professional presentations to clients and internal Malleum stakeholders. - Keep abreast of the latest cybersecurity threats and trends, as well as updates to the relevant industry standards such as the CMMC framework. - Achieve utilization targets, complete projects on time and budget, and meet quality standards. - Study, learn, test, document, execute and seek to continuously improve scalable consulting services processes to effectively deliver customer engagements while achieving a high level of customer satisfaction. - Execute project planning, scheduling, and other coordination of internal and client resources to conduct interviews, meetings, and presentations. - Develop a thorough understanding of our solution and service offerings, sales process, marketing materials, contract and Statement of Work structure, methodologies, delivery standards, work tools, and processes. - Pursue additional education and stay current on best practices, technical skills, and tools related to the position's duties. Candidate Profile We’re looking for a star. As an ideal candidate you’re a natural consultant: driven, highly organized, autonomous and analytical, with outstanding communication and interpersonal skills, and the ability to quickly establish your credibility and build trusting relationships with clients. You thrive under pressure, you learn fast, and your expertise stretches beyond typical GRC work into the implementation of cybersecurity controls to support clients’ continuous improvement efforts. It is essential that you fulfill the requirements to acquire a SECRET level II security clearance. Key Qualifications - Post-secondary education in information technology, computer science, or equivalent combination of education and experience. - 4+ years of experience in IT security, risk management, or compliance. - Current certification as a Registered Practitioner Advanced (RPA) or Registered Practitioner (RP) is an asset. The ability to achieve a Registered Practitioner (RP) credential under the CMMC version 2.0 framework is essential. - In-depth knowledge of NIST SP 800-171. Knowledge of the CMMC framework and DFARS 252.204-7012 regulations are a strong asset. - Relevant professional certifications such as CISSP, CRISC, CISA, CISM, coupled with advanced knowledge of a range of cybersecurity technologies and solutions. - Skilled and experienced in managing projects and leading consulting engagements, with a record of delivering exceptional value to clients. - Experience with cybersecurity systems and infrastructure design and configuration is a significant asset. - Superior communication and presentation skills with the ability to explain complex security concepts to non-technical staff. - Exceptional client-service orientation, with the ability to build trust and develop rapport with a broad range of client stakeholders, including Defense Industrial Base compliance and information system professionals. - Independent and autonomous, with the drive to seek out and leverage internal resources as needed, and proactively take ownership of their work and career development. - Excellent analysis and problem-solving skills, especially in the information systems, security, and privacy space. - Ability to learn new subject matter and context quickly and to maintain market and subject matter awareness. - Ability to understand SOWs, customer proposals, project notes, deliverables, and final reports; assimilate previous experience, relevant subject matter, data, facts, and results; and develop relevant questions of colleagues to hasten understanding scenarios, methodologies, processes, and "lessons learned." We thank all applicants for their interest, but only those selected for an interview will be contacted. Malleum accommodates individuals with disabilities throughout the recruitment process. Please indicate your need for accommodations in your application.