DHLE_Management.Manager - Governance, Risk and Compliance

Merex Investment Group

Strategy & Framework:
o Develop and implement a comprehensive Governance, Risk & Compliance strategy and framework, covering enterprise-wide risk management, regulatory compliance, and internal controls aligned with business objectives
o Integrate GRC practices with project management where applicable to ensure risk-aware decision making.
o Embed and promote effective governance, risk management, and compliance practices across the vertical to foster a strong risk culture
Governance:
o Adopt and implement corporate governance best practices.
o Lead and coordinate the development, review, and approval of corporate governance, risk, and compliance policies in collaboration with relevant stakeholders, in line with DH.
o Contribute to the set up and review of internal governance structures for various functions.
o Support Internal Audit /Government Audit teams to facilitate closure of high-risk audit recommendations and identify process gaps and opportunities for improvement.
o Prepare regular reports pertaining to governance dashboards, compliance status, risk management as per DH requirements.
Enterprise Risk Management:
o Lead implementation of the Risk Management Framework, promoting a risk culture and ensuring risks are managed appropriately by Risk Owners.
o Conduct risk assessment and oversee mitigation plans.
o Appoint, train and support risk champions across functions.
o Monitor compliance and report on significant risks to GRC Director.
o Develop and review annual risk appetite.
o Maintain and report the vertical risk register, and report to GRC Director, CEO and DH Head of ERM on major risks.
Compliance:
o Identify, assess and monitor compliance Risks.
o Assist, support and advise Executive Management and employees on Compliance obligations.
o Support functions in policy and procedures development.
o Coordinate with legal regulatory updates and alerts (as applicable).
o Assess the adequacy and effectiveness of the internal policies and procedures, systems and controls to manage Compliance Risk.
o Provide advisory services to the functions on an on-going basis, including responding to queries and issues as they arise.
Policies, Processes and Procedures:
o GRC promotes a standardized approach to policies and procedures to avoid conflicts and gaps & ensures that policies reflect best practices and industry standards reviewing and approval to ensure they adequately address risks and compliance obligations before seeking final approvals
DOA:
o Develop and maintain vertical DOA and ensure alignment with DH DOA.
o Provide guidance and training teams on accurate interpretation and application of the DOA.
o Coordinate DOA changes and updates, stakeholder reviews and approvals.
Transactional Compliance Review:
o Review transaction submitted to vertical CEO for compliance with internal policies and DOAs.
Internal Control Framework:
o Assess and test internal controls to manage business and financial risks (including fraud risks).
o Ensure control design and control effectiveness are adequately tested.
o Report findings and ensure corrective actions are implemented.
Executive Management Committee focal point of contact:
o Act as a focal point of contact for EMC document submission.
o Ensuring compliance with all internal DOAs, policies and procedures
o Disseminate EMC instructions and provide updates to EMC secretary.
Business Continuity & Crisis Management:
o Establish and maintain BCM protocols as per DH guidelines.
Planning and Reporting:
o Assist in development of operational plans.
o Monitor compliance and suggest improvements based on best practices.
o Prepare accurate and timely reports to Management as per DH requirements.
o Prepare reports to support informed decision-making by senior management.