Director - GRC & BCM

Job Purpose:

The Director of GRC, DP, & BCM is responsible for providing strategic leadership over Governance, Risk, Compliance (GRC), Business Continuity Management (BCM), and Data Protection programs. Overseeing the framework that manages the company's overall governance, risk management, and compliance (GRC), DP, and BCM, ensuring alignment with laws, regulations, and internal policies. Also, responsible for ensuring that the organization adheres to legal standards and best operational practices while effectively managing risks and enforcing governance disciplines.

Job Accountabilities:

• Establish and maintain robust governance frameworks that define clear roles, responsibilities, and accountability within the organization to ensure effective management and control systems.
• Formulate policies that govern the organization's operations and strategic initiatives. Ensure these policies are clearly communicated and accessible to all employees.
• Serve as the key liaison between the executive management and the board of directors. Prepare reports for the board regarding the company's risk management processes, compliance issues, and other governance matters.
• Promote ethical business practices and corporate citizenship by integrating corporate governance standards throughout the business operations and corporate culture.
• Identify and assess threats to the organization's business objectives. Analyze risks in terms of likelihood and magnitude of impacts and prioritize the risks based on this assessment.
• Develop strategies to mitigate identified risks, including transfer, avoidance, reduction, and acceptance strategies. Implement risk management plans and monitor their progress.
• Prepare the organization for unexpected adverse events with proactive crisis management and business continuity planning.
• Oversee the insurance needs of the company, ensuring adequate coverage and policy management that aligns with the risk profile.
• Keep abreast of all regulatory changes that impact the organization's operations and strategic compliance. Ensure all aspects of the organization comply with statutory and legislative requirements.
• Ensure the facilitation of external audits and inspections to verify adherence to compliance standards, and implement corrective actions as needed, in order to obtain the required certifications, e.g. ISO certifications.
• Lead the integration of enterprise risk management, internal control, business continuity, and data protection initiatives into corporate strategy and daily operations.
• Collaborate with Legal, Internal Audit, IT, HR, and other departments to ensure consistency and synergy across GRC-related initiatives.
• Serve as the escalation point for major compliance violations, data breaches, or regulatory investigations.

Qualifications & Experience:

• Bachelor's degree in Environmental Management, Sustainability, Corporate Governance, Law, or related Field
• A minimum of 8 - 10 years of experience in the same or similar field