Job Summary:
The Chief of GRC will oversee and integrate governance, risk management, and compliance functions across the organization. This role is responsible for developing strategies, standards, policies, and procedures that ensure effective governance and risk management while fostering a culture of compliance. Additionally, the Chief of GRC will manage the Legal, Cyber Security, and Quality departments, ensuring alignment with organizational objectives and regulatory requirement.
Main Duties and Responsibilities of the job:
Governance Strategy Development:
- Develop and implement a comprehensive governance strategy that aligns with the organization's objectives and regulatory requirements.
- Establish governance standards, policies, and procedures to ensure effective decision-making and accountability.
Governance Operations:
- Create mechanisms and frameworks to operationalize good governance practices across the organization.
- Facilitate training and awareness programs to promote understanding of governance principles among staff.
Governance Quality Monitoring:
- Regularly assess the quality of organizational governance and recommend improvements.
- Conduct internal audits to ensure adherence to governance policies and best practices.
Risk Management
Risk Management Strategy Development:
- Develop and implement a risk management strategy that identifies, assesses, and mitigates risks across the organization.
- Establish risk management standards, policies, and procedures to guide risk management activities.
Contingency and Business Continuity Planning:
- Develop and maintain group contingency and business continuity plans to ensure the organization is crisis-ready.
- Conduct regular drills and testing of business continuity plans to ensure effectiveness.
Conducting Risk Assessments:
- Perform comprehensive risk assessments to identify potential threats to the organization's objectives.
- Analyze risk assessment results and collaborate with departments to develop appropriate risk mitigation strategies.
Compliance Strategy Development:
- Develop and implement a compliance strategy that ensures adherence to legal, regulatory, and internal policy requirements.
- Establish compliance standards, policies, and procedures to guide compliance activities across the organization.
Compliance Management and Reporting:
- Review and report on group-wide compliance management activities, including findings from compliance audits and assessments.
- Ensure timely reporting of compliance-related issues to the executive team and relevant stakeholders
Department Oversight
Management of Legal, Cyber Security, and Quality Departments:
- Oversee the Legal department to ensure legal compliance and effective risk management in contracts and operations.
- Manage the Cyber Security team to protect the organization's information assets and ensure compliance with data protection regulations.
- Supervise the Quality department to uphold quality standards and continuous improvement initiatives throughout the organization
Monitoring and Reporting:
- Develop metrics to measure the effectiveness of governance, risk management, and compliance initiatives.
- Prepare and present reports to senior management and the Board on GRC activities, including risk profiles, compliance status, and governance quality.
Fostering a Culture of Compliance:
- Promote a culture of ethical behavior and compliance within the organization through training and communication.
Implement feedback mechanisms to gather insights from employees on governance and compliance practices.
Knowledge, Skills & Experience Requirements:
Education and Qualifications:
A Bachelor's Degree in Business Administration, Law, or a related field; a Master's degree is preferred.
Professional certifications in governance, risk management, or compliance (e.g., CGEIT, CISM, CCEP) are highly desirable.
Knowledge and Experiences:
15-20 years of experience in governance, risk management, compliance, or related fields, with at least 5 years in a leadership role.
Proven experience managing multiple departments and integrating GRC functions within an organization.
Skills:
Language: English (Fluent).
Computer: Proficiency in GRC software, risk management tools, and Microsoft Office (Word, Excel, PowerPoint).
Supervision:
Supervision Received
- Receives functional and operational direction from the CEO.
Supervision Exercised
- Provides leadership and direction to the Legal, Cyber Security, Quality, and GRC teams.
