Compliance Analyst II, Third Party Products

About the role

Merrick Bank: The bank that builds CardWorks Servicing: One partner, total performance Carson Smithfield: Resolution with respect With nearly 40 years of operating history, our track record is solid: disciplined in downturns and built to accelerate in recovery. The CardWorks Financial Group companies take precise approach in complex markets, as a top three non-prime focused general purpose card issuer and a top fifteen U.S. merchant acquirer. Our team tackles the industry's most complex credit and payment challenges. And we believe that excellent work starts with a team that feels supported, respected, and empowered to grow. CardWorks Servicing, LLC provides end-to end operational servicing functions for credit cards, secured cards, and installment loans. We service consumer and small business loans across the credit spectrum and offers backup servicing and due diligence services to capital providers and trustees. Founded in 1997, Merrick Bank is an FDIC®-insured financial institution headquartered in South Jordan, Utah, with over $10 billion in assets. A wholly owned subsidiary of CardWorks Financial Group, Merrick Bank serves roughly five million cardmembers and more than 100,000 merchant customers, offering credit cards, recreational loans, deposit accounts, merchant services and bank sponsorships to consumers and businesses. Carson Smithfield, LLC provides a variety of post-charge-off debt recovery services, including digital self-service, IVR, live agent, and external agency management. Position Summary: Our Compliance organization is forward-thinking, embracing efficiency and modernization rather than relying solely on traditional regulatory approaches. Our culture is rooted in teamwork, transparency, and open collaboration-where your voice is valued. In this role you will support our overall Compliance Management System activities of Merrick Bank (the "Bank") by designing, operating, monitoring, and continuously improving the framework that ensures the bank complies with applicable laws, regulations, and internal standards. The Analyst II operates with limited supervision, independently executes compliance testing and risk assessments, leads components of the Compliance Management System (CMS), and serves as a primary compliance contact for assigned products, processes, or initiatives. The role requires structured thinking, comfort navigating ambiguity, and sound risk judgment. This position emphasizes analytical problem-solving and contributes to program design, risk identification, and continuous improvement, not solely execution. Essential Functions: Execute and enhance components of the Bank's Compliance Management System (CMS), including development and refinement of the overall compliance oversight program. Develop and maintain comprehensive testing plans for compliance related risks throughout the Bank, including designing key risk indicators and metrics associated with all risks with compliance impact, including cross-functional processes with compliance impact. Independently design and conduct third party compliance testing and monitoring activities, develop formal written reports of findings, and present results and risk implications to compliance leadership. Evaluate ongoing oversight effectiveness. Revise and/or customize oversight processes based on the identification of process weaknesses, gaps, regulatory changes, changes to internal processes, or audit/examination findings. Lead and support multiple projects simultaneously, track project progress, and report milestone and potential risks with recommended resolutions. Track and complete all assigned project framework requirements. Independently perform change management risk assessments for internal projects and processes, exercising regulatory judgement to determine compliance impact and required control enhancements. Lead compliance due diligence and risk assessments for new and existing partnerships, including evaluation of regulatory exposure, control environments and consumer protection risk. Participate in issue triage meetings and lead the compliance validation of business unit remediation efforts, determining readiness for issue closure in accordance with governance standards. Provide recommendations to management on CMS enhancements based on testing results, regulatory change and risk trends. Stay abreast of federal and state regulatory ch