Develop and update risk management policies and procedures in alignment with ISO 31000 standards and the company's corporate governance framework.
Review and ensure the alignment of risk management policies with existing business processes.
Conduct periodic risk identification, analysis, evaluation, and mitigation planning in collaboration with Risk Owners and Risk Champions.
Monitor the effectiveness of risk controls, including evaluating residual risks and tracking the progress of risk mitigation actions.
Prepare risk reports covering Top Risks, cross-unit risk trends, Key Risk Indicators (KRI), and improvement recommendations.
Support the implementation of Business Impact Analysis (BIA), updates to the Business Continuity Plan (BCP), and the execution of BCM testing and simulations according to the annual plan.
Qualifications
Bachelor's degree in Management, Accounting, Statistics, or a related field.
Minimum 1 year of experience in risk management or related roles.
Basic understanding of Enterprise Risk Management (ERM) frameworks and familiarity with ISO 31000, ISO 27001, COSO ERM, and Business Continuity Management (BCM) concepts.
Professional certifications such as Certified Risk Management Officer (CRMO), Qualified Risk Management Analyst (QRMA), or equivalent are an advantage.
Understanding of quantitative and qualitative risk analysis methods.
Strong communication, coordination, and presentation skills.
High integrity, detail-oriented mindset, and ability to work both independently and collaboratively.
