EXL (NASDAQ: EXLS) is a global data and artificial intelligence ("AI") company that offers services and solutions to reinvent client business models, drive better outcomes and unlock growth with speed. EXL harnesses the power of data, AI, and deep industry knowledge to transform businesses, including the world’s leading corporations in industries including insurance, healthcare, banking and financial services, media and retail, among others. EXL was founded in 1999 with the core values of innovation, collaboration, excellence, integrity and respect.
We are headquartered in New York and have more than 60,000 employees spanning six continents. For more information, visit www.exlservice.com.
Role:
Open Banking Governance Analyst
Location:
United Kingdom (Flexible hybrid working in London or Remote)
We have a new opportunity for an Open Banking Governance Analyst to support the expansion of Buy Now Pay Later (BNPL) offerings across European markets.
In this role, you will support regulatory reporting, operational governance, and compliance activities across open banking frameworks including PSD2 and UK Open Banking regulations. You will be responsible for monitoring API performance, managing regulatory reporting obligations, investigating operational incidents, and ensuring compliance across multiple jurisdictions.
Working closely with engineering, product, compliance, and risk teams, you will help maintain compliant and high-performing open banking operations in a fast-paced, regulated environment. The ideal candidate will have experience within payments, fintech, banking operations, or regulatory reporting, alongside strong analytical skills and experience working with data and SQL.
As part of your duties, you will be responsible for:
* Generate, review, and submit regulatory reports for PSD2-compliant outbound open banking activities in the EU, including incident reporting, fraud reporting, and statistical/transactional reporting required by national competent authorities
* Own equivalent regulatory reporting obligations under the UK Open Banking framework (FCA/CMA requirements) and Australia's Consumer Data Right (CDR) regime, as well as any future reporting in markets such as Israel, Canada, and the US
* Monitor API availability, uptime, latency, downtime events, error rates, and TPP-related operational issues, and work closely with relevant engineering teams to help ensure API performance remains aligned with direct customer interfaces
* Investigate operational deviations, reporting anomalies, and API performance issues; coordinate with API owners and engineering teams to identify root causes and support timely remediation activities
* Maintain documentation related to reporting methodologies, operational processes, API metrics, and regulatory reporting requirements
* Maintain and apply incident classification frameworks across jurisdictions – including major incident thresholds under PSRs 2017 / EBA Guidelines on major incident reporting (EBA/GL/2017/10), and their FCA equivalents – ensuring timely initial, intermediate, and final notifications are submitted and internally documented.
* Track regulatory deadlines, filing calendars, and reporting cadences across all in-scope markets, ensuring no missed submissions
Cross-Functional Collaboration
* Partner with engineers to define data requirements, validate report outputs, and design automated reporting pipelines based on regulatory needs
* Coordinate with adjacent engineering teams to source data and troubleshoot issues flagged by reporting, by third party providers (as defined by PSD2), by internal audits, or by regulators
* Work closely with open banking product managers to flag regulatory implications of product changes and translate compliance requirements into product/engineering tickets
* Serve as the liaison to the compliance function and other governance entities within the Risk organization, including participating in regular working groups to review API performance trends, incidents, remediation progress, and reporting obligations
* Support internal and external audits, regulatory examinations, and ad hoc information requests from regulators
Skills and Personal attributes we would like to have:
* 3+ years of regulatory reporting, compliance analytics, or financial regulatory operations experience, ideally in payments, banking, or fintech
* Regulatory literacy and exposure to, at a minimum, the EU or UK with knowledge of Australia a bonus:
* EU: PSD2, EBA technical standards on SCA and secure communication (EBA/RTS/2017/02), major incident reporting guidelines (EBA/GL/2017/10), and NCA reporting structures.
* UK: Payment Services Regulations 2017, FCA supervisory reporting for payment institutions and e-money institutions, CMA Open Banking obligations, FCA SCA/RTS implementation including the Dedicated Interface framework, and awareness of the UK Smart Data reform agenda.
* AU: Consumer Data Right framework, CDR Rules, ACCC data holder performance reporting requirements, CDR Register obligations, and OAIC privacy obligations under the CDR regime.
* Comfort writing SQL, working with observability tools to gather data and working with large transactional datasets; able to independently validate report figures end-to-end
* Strong stakeholder management and communication skills with the ability to work effectively across engineering, product, compliance, and operational teams
* Ability to operate as an individual contributor with minimal oversight in a fast-moving, multi-jurisdictional environment
Nice to Haves
* Experience with open banking APIs, TPP/ASPSP relationships, or PISP/AISP regulatory frameworks
* Knowledge of open banking API standards across jurisdictions: OBL Read/Write API Specification (UK), Berlin Group NextGenPSD2 (EU), and CDR Consumer Data Standards (AU).
* Prior experience standing up reporting workflows in newly regulated markets
* Experience in building canonical "regulatory event store" off the API gateways/IAM stack that captures every TPP request with the fields defined by different regulations for banks and fintechs.
To be considered for this role, you must already be eligible to work in the United Kingdom.
#J-18808-Ljbffr