External AML officer
the role, outsourced

Many Swiss financial intermediaries must hold the anti-money-laundering function to a proper standard, but do not have the volume to justify a full-time officer. An external AML officer fills exactly that gap: qualified oversight under one mandate (policies, monitoring, MROS reporting, training and SRO-audit liaison) scaled to the firm. We hold the role with real authority and exercise it honestly, which is what makes the outsourcing genuine.

Marcus AltenburgMarcus Altenburg, Managing Partner Published Updated
At a glance

Qualified compliance, scaled to the firm.

The whole AML function under one mandate, without a full-time hire.

Covers
Policies, oversight, MROS, training
Plus
SRO-audit preparation & liaison
For
Intermediaries without a full-time need
Liability
Stays with the governing body
Authority
Real, exercised honestly
Hire, part-time or external
The essentials

What an external AML officer is

A financial intermediary under the Anti-Money Laundering Act must have its AML function held to a proper standard. An external AML officer carries that function under an outsourcing mandate (maintaining the framework, overseeing compliance, deciding MROS reports, training staff and liaising at the SRO audit) for a firm whose size does not justify a full-time hire. The governing body keeps ultimate responsibility; the external officer provides the qualified, engaged oversight the role demands.

Who this is for

  • smaller fiduciaries, asset managers, payment and crypto intermediaries;
  • firms whose volume does not justify a full-time compliance officer;
  • intermediaries replacing an under-skilled part-time arrangement;
  • new financial intermediaries building the function from the start.

What it pulls together

The mandate spans KYC, monitoring, the policy framework and SRO-audit preparation: the whole function under one accountable role.

The decision

Hire, part-time, or external

A small intermediary has three ways to cover the AML-officer role, and the middle option is usually the trap. Here is how they compare.

Covering the AML-officer function (Switzerland, as of June 2026).
 Full-time hireExternal officer
Cost for a small firmHigh, often under-occupiedProportionate to risk
QualificationDepends on the hireQualified by mandate
IndependenceReports internallyLess exposed to pressure
Audit-readinessIf maintainedContinuous

The third option, an unqualified employee given the AML title part-time alongside another job, is the one that fails at audit. For a firm that genuinely needs the function but not a full-time hire, the external officer gives qualification, independence and audit-readiness at a cost matched to the risk.

In practice

Three firms, one mandate

The same role carries a different load depending on the business. Three intermediaries, and what the external officer actually does for each.

A two-person asset manager

Low client turnover, transparent ownership, FinIA-supervised. The officer maintains the framework, signs off the periodic risk review, handles the rare clarification, and carries the relationship through the audit cycle: a light but genuine standing engagement, not a once-a-year file refresh.

A crypto VASP

High onboarding volume, remote clients, cross-border flows and the sanctions and Travel-Rule layer that crypto adds. Here the officer is closely involved (tuning the monitoring rules, ruling on alerts, deciding MROS reports) because the risk profile is materially higher and moves fast.

A payment startup scaling fast

The risk picture changes month to month as volumes and corridors grow. The officer’s work is to keep the risk assessment and controls in step with a business that is outrunning its original framework: the case where an under-skilled part-time arrangement breaks first.

How it runs

How the mandate runs

The mandate is set up once and run continuously, which keeps the firm audit-ready year-round.

  1. Step 1

    Mandate & review

    Documenting the outsourcing mandate, reviewing the existing framework, and confirming the firm’s governing-body oversight.

  2. Step 2

    Framework in order

    Bringing the risk assessment, policies and procedures up to standard for the firm’s actual activity.

  3. Ongoing

    Oversight & reporting

    Reviewing onboarding and monitoring, handling escalations, deciding and filing MROS reports, and running sanctions escalations.

  4. Periodic

    Training

    Delivering role-appropriate AML training to staff and management, documented under the framework.

  5. Annual

    SRO audit

    Preparing for and liaising through the SRO audit, so findings are answered rather than carried forward.

Budget

What it costs

An external mandate is scoped to the firm’s size, activity and risk. A low-volume fiduciary is lighter than a higher-risk payment or crypto intermediary with frequent escalations. The point of the model is cost matched to risk: qualified oversight without the fixed cost of a full-time hire.

We scope and quote the mandate against the firm’s profile. Pricing is on request.

Discuss a mandate
What you need

What the mandate requires

A compliant outsourced mandate rests on:

  • a documented outsourcing arrangement with clear scope and authority;
  • the firm’s governing body retaining ultimate responsibility and oversight;
  • genuine access for the officer to records, systems and people;
  • enough internal competence to oversee the mandate;
  • the firm’s cooperation on remediation and reporting.

Outsourcing the role does not outsource the liability

The dangerous misreading of an external officer is that it moves the firm’s legal accountability onto the provider. It does not. The governing body remains ultimately responsible for AML compliance, and a provider who implies otherwise is selling a false comfort. What the mandate does is put the function in qualified, independent hands, reducing the risk that reaches the firm. That only works if the firm gives the officer real access and acts on their escalations. An external officer kept at arm’s length, or overruled on reports, protects no one. We hold the role with the authority it needs, and use it.

Why Goldblum

The officer role: how we run it

Holding the AML-officer function joins financial-crime law, the SRO relationship and honest judgement. Carrying it properly for an intermediary that does not need a full-time hire is the compliance work this firm does.

Qualified

The whole function, held

Policies, oversight, MROS reporting, training and the SRO audit carried under one mandate by a qualified officer, not a part-time title.

Independent

Authority, exercised

Real authority to escalate, remediate and report on the officer’s own judgement, less exposed to internal pressure than an employee.

Ready

Audit-ready year-round

The framework maintained continuously, so the SRO audit is a continuation of ongoing work, not an annual scramble.

Related

What the officer maintains

Foundations

AML policy framework

The written policies and procedures the officer maintains, drafted to the business model, not a template.

AML policy framework
Annual

SRO audit preparation

The pre-audit review and liaison the officer runs, so findings are answered rather than carried forward.

SRO audit preparation
The permission

Financial regulation

SRO membership and FINMA licensing, the authorisation the AML function sits underneath.

Financial regulation
FAQ

External AML officer: FAQ

01What is an external AML officer?
An external AML officer is a qualified compliance professional who holds the anti-money-laundering responsibility for a financial intermediary under an outsourcing mandate, instead of the firm employing a full-time officer. They maintain the policies, oversee day-to-day compliance, handle escalations and MROS reporting, deliver training and liaise with the SRO at audit. For a smaller intermediary whose volume does not justify a full-time hire, it provides the qualified oversight the law requires at a proportionate cost, without the role being neglected or under-skilled.
02Can a Swiss financial intermediary outsource the AML officer role?
Yes, within the rules. A financial intermediary can outsource the AML-officer function to a qualified external provider, but the firm's governing body keeps ultimate responsibility: outsourcing the role does not outsource the liability. The arrangement must be properly documented, the external officer must have genuine access and authority, and the firm must retain enough internal competence to oversee the mandate. We take the role on under a clear mandate that meets these conditions, so the outsourcing is real and compliant rather than a name on a form.
03Who needs an external AML officer rather than a full-time hire?
Smaller financial intermediaries (fiduciaries, asset managers, payment and crypto businesses, and others subject to the Anti-Money Laundering Act) whose transaction volume and headcount do not justify a dedicated full-time compliance officer, but who still must have the function covered to a proper standard. A full-time hire is expensive and, for a small firm, often under-occupied; an unqualified part-time arrangement is a compliance risk. The external officer sits between the two: qualified oversight, scaled to the firm.
04What does the external AML officer actually do?
The mandate covers the full function: maintaining the AML policy framework and risk assessment, overseeing KYC and onboarding, reviewing monitoring alerts and clarifications, deciding and filing MROS reports where required, running sanctions-screening escalations, delivering staff training, and preparing for and liaising through the SRO audit. It is ongoing oversight, not a one-off document. The firm runs its business; the external officer carries and maintains the compliance function to the standard the SRO and the law expect.
05Does outsourcing the role remove the firm's liability?
No. Any provider suggesting otherwise is misleading you. The firm and its governing body remain ultimately responsible for AML compliance; the external officer carries the function, not the firm's legal accountability. This is why a serious external officer insists on real access, proper records and the firm's cooperation, and will not simply rubber-stamp. The value is that the function is held by someone qualified and engaged, reducing the risk that lands on the firm, not a transfer of responsibility that the law does not permit.
06How does the external officer work with the SRO audit?
The external officer prepares the firm for its annual SRO audit, closing gaps before the auditor arrives, and then liaises through the audit, answering findings and providing the documentation the SRO expects. Because the same officer maintains the framework year-round, the audit is a continuation of ongoing work rather than a scramble. This is one of the main reasons firms outsource the role: the function is audit-ready continuously, not reconstructed each year when the SRO is due.
07Is an external AML officer independent enough?
A properly structured mandate gives the external officer the independence the role needs: the authority to escalate, to insist on remediation, and to file an MROS report on their own judgement. That independence is in fact a strength of outsourcing: an external officer is less exposed to internal pressure than an employee reporting to the people whose transactions they must question. We hold the role with genuine authority and will exercise it, which is the point of having a qualified officer rather than a compliant signature.
08What if the firm and the officer disagree on a report?
The AML officer's duty is to the law, not to the firm's preference. If the officer concludes there are reasonable grounds to report to MROS, that judgement governs, regardless of the commercial inconvenience. A firm that wants an officer who will suppress reports is misunderstanding the role and exposing itself to far greater risk. We take the role on the basis that we exercise it properly. That protects the firm, because the function is done honestly. A captured officer is a liability, not a convenience.
09Can the external officer cover more than one entity?
Yes. A qualified external officer can hold the AML-officer mandate for several financial intermediaries, each under its own mandate and with its own framework, which is part of what makes outsourcing efficient. Each firm gets the oversight its risk profile requires, drawing on experience across mandates, without the cost of a dedicated hire. The arrangement must keep each firm's compliance distinct and confidential. We structure each mandate separately while bringing the breadth of cross-mandate experience to bear.
10What does Goldblum provide as external AML officer?
We hold the AML-officer mandate in full: maintaining the risk assessment and policy framework, overseeing KYC, monitoring and sanctions screening, deciding and filing MROS reports, delivering training, and preparing for and liaising through the SRO audit, under a documented mandate that keeps the firm's governing body properly in oversight. We take the role with real authority and exercise it honestly, so the firm has qualified, engaged compliance at a proportionate cost rather than a full-time hire it does not need.

Need the AML function covered properly?

Tell us about the firm and its activity. A partner scopes an external AML-officer mandate (policies, oversight, reporting and SRO-audit liaison) sized to your risk, not a full-time hire.