MANAGER, RISK MANAGEMENT

MANAGER, RISK MANAGEMENT

JOB PURPOSE:

• Lead the risk management function for Citaglobal Group, encompassing industries such as Construction, Civil Engineering, Property Development, Renewable Energy, Telecommunications, Environment Management, and Steel Manufacturing.
• Responsible for developing, implementing, and maintaining a robust risk management framework to ensure risks are identified, assessed, and mitigated across the Group.
• Closely collaborate with senior management, Board members, and other stakeholders to promote a proactive risk culture and ensure the effective integration of risk management into decision-making processes.
• Update the Management and Board on the status of Risk Management for Citaglobal Group.

Key Responsibilities:

Risk Management Framework

1. Develop, implement and maintain the organizational Risk Management Framework, ensuring alignment with global and industry best practices and regulatory requirements.
2. Regularly review and update the framework to address evolving business needs and emerging risks.
3. Establish and implement risk management tools, policies, and procedures to support organizational resilience

Risk Identification and Assessment

1. Collaborate with departments and subsidiaries and facilitate:

• The development and maintenance of operational, strategic, and bribery risk registers for the Group, ensuring comprehensive risk coverage across industries.
• Annual reviews of risk registers to update existing risks, the corresponding controls and identify emerging risks.
• Tailor risk management approaches to address industry-specific risks, ensuring relevance to sectors within the Group i.e. construction, civil engineering, property, renewable energy, telecommunications, etc.

1. Facilitate risk assessments for new business initiatives and projects, providing practical and actionable recommendations to effectively mitigate risks.
2. Monitor and support the relevant stakeholders in improving risk management / mitigating strategies and techniques and carrying out follow up action plans and its effectiveness of risk mitigation plans, and recommend improvements as needed.
3. Collaborate with senior leadership to integrate risk management priorities into the broader organizational strategy and decision-making processes, including the development and monitoring of KRIs.

Risk Monitoring and Reporting:

1. Monitor and track key risks and mitigation measures, providing insights and recommendation for improvement, effectiveness and alignment with Group objectives.
2. Provide quarterly Strategic Risks updates to Senior Management and Audit & Risk Committee (ARC), including the analysis of the risks and progress of mitigation strategies.
3. Develop and present risk management dashboards and reports to stakeholders (KRIs).
4. Monitor industry trends, regulatory changes, and emerging risks to provide timely updates and advice to Senior Management and ARC.

Stakeholder Engagement:

1. Act as the primary point of contact for risk management activities across the Group, collaborating with various department and subsidiaries to embed risk management practices.
2. Facilitate, influence and guide cross-functional teams, on risk identification, assessment, and mitigation processes
3. Promote a risk-aware culture across the Group through risk training / workshops and engagement initiatives.

Crisis Management and Business Continuity

1. Support the development and testing of business continuity and crisis management plans to ensure organizational resilience.
2. Coordinate responses to significant risk events and provide risk insights to inform decision-making during crises.

Governance and Compliance

1. Ensure compliance with all applicable laws, regulations, and corporate governance requirements related to risk management.
2. Collaborate with internal and external auditors to address risk-related findings and recommendations.

Others

1. Stay abreast with the latest changes in the Group policies, relevant technology requirements, regulatory, standards and guidelines to ensure proper risk identification, assessment and mitigation are in place.
2. Documenting and maintaining risk register and relevant Risk Management documents

Qualification

1. Master / Degree in Accounting, Economic, Finance or other equivalent qualification
2. Professional qualification / certification will be an advantage Certified Risk Manager (CRM), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), or equivalent certifications
3. 5-7 years of working experience in risk management, internal audit, or related fields, with at least 3 years in managerial capacity.
4. Proven experience in implementing and maintaining risk management across multiple industries.

Knowledge

1. Solid working knowledge of risk management frameworks and processes and familiar with corporate governance and industry best practices
2. Proficient knowledge and understanding of ISO 31000 requirement

Job Skills

1. Strong analytical and problem-solving skills, with the ability to identify, assess, and prioritize risks.
2. Excellent communication, presentation, and stakeholder management skills, with the ability to engage effectively with senior leadership and Boards.

Key attributes

1. High integrity and ethical standards
2. Strategic thinker with attention to details
3. Proactive, positive working attitude and self-motivated, with the ability to work independently.
4. Independent, resourceful and adaptable to diverse industries and dynamic environments.
5. Good people management and leadership abilities

Employment Terms:

Full-Time

Based at Citaglobal HQ in KL Sentral with occasional travel to subsidiaries or project sites as needed.