Principal Duties:
Risk Management
- Assist in the development, implementation, and maintenance of the Enterprise Risk Management (ERM) framework across the organization.
- Assist in identifying, assessing, analyzing, and evaluating potential risks across various domains, including financial, operational, cybersecurity, climate change, social, governance, reputational and any emerging risks.
- Assist in coordinating comprehensive data collection and conducting analyses to support informed risk management decisions and strategies.
- Assist in coordinating Risk and Control Self-Assessment (RCSA) activities to assess the effectiveness of key controls associated with key risks.
- Assist in facilitating Project Risk Assessments for new and ongoing projects (new/additional scope), including identifying project risks, assessing impact and likelihood, as well as recommending mitigation measures.
- Collaborate with risk owners and champions to assist in developing, prioritizing, and implementing risk alerts and risk indicators, ensuring appropriate actions are taken to mitigate potential risks.
- Maintain liaison with internal and external stakeholders to ensure compliance with regulatory requirements and industry best practices.
Business Continuity Management
- Assist in developing, implementing, and maintaining the Business Continuity Management (BCM) framework, to ensure alignment with organizational objectives and regulatory requirements.
- Assist in conducting Business Impact Analyses (BIA) to identify critical business functions, dependencies, and potential operational disruptions.
- Assist in developing and periodically reviewing Business Continuity Plans (BCP) to ensure effective response and recovery during business disruptions.
- Assist in coordinating regular BCP testing and exercises, as well as monitoring action plans, recovery strategies, and corrective actions arising from such activities to ensure readiness and continuous improvement.
- Assist in liaising with internal stakeholders, business units, and external parties on BCM-related matters.
Other Responsibilities
- Assist in facilitating the preparation of group-wide periodic reporting and monitoring for enterprise, operational, and project risk management, as well as BCM, for the Management Compliance & Risk Committee, Board Risk & Investment Committee, and other relevant committees.
- Assist in developing and delivering continuous, structured risk management and BCM training and awareness programmes.
- Assist in the preparation and review of the Statement on Risk Management and Internal Control, as well as other relevant sections of the Annual Report.
- Assist in identifying and assessing climate- and sustainability-related risks and opportunities.
Knowledge/Experience Required for the Job
- At least 4 years of experience in governance, risk management, business continuity, assurance, audit, or other related fields.
- Strong knowledge of risk management and business continuity management frameworks such as COSO, ISO 31000, and ISO 22301.
- Strong analytical skills and business acumen.
Academic/Professional Qualifications
- Possess a Bachelor's Degree in a relevant field such as Business, Finance, or Risk Management.
- Professional certifications such as CRMA, ERM, ERP, ABCP, CBCP, or CBCI will be an added advantage.