Risk Compliance Manager

Overview

To supervise and manage the organization's risk management, governance, and regulatory compliance initiatives, we are seeking a Risk Compliance Manager. In order to establish and uphold a strong risk management framework and guarantee adherence to internal guidelines, external laws, and industry standards, the risk compliance manager will work in conjunction with many departments.

Responsibilities

• Create, put into practice, and uphold the organization's risk management system. • Determine, evaluate, and rank the risks (financial, operational, legal, cybersecurity, etc.) and suggest ways to reduce them. • Collaborate with multidisciplinary groups to evaluate and resolve new threats and possible weaknesses. • Keep an eye on risk reduction initiatives and report on their progress on a regular basis. • Make sure that all relevant laws, rules, and industry standards—such as GDPR, ISO 27001, PCI-DSS, and SOX—are followed. • Keep abreast of pertinent legal and regulatory developments and make sure the organization's policies and procedures reflect these developments. • To confirm adherence to corporate policy and legal obligations, conduct internal audits and evaluations. • Create and keep up with reports, certifications, and compliance documents. • Create, evaluate, and put into effect policies and processes related to risk and compliance. • Encourage a culture of compliance and risk awareness across the entire company. • Make certain that every employee receives enough training on risk and compliance subjects, including pertinent internal policies and legislation. • React to and oversee non-compliance or risk events by offering prompt analysis, inquiry, and correction. • Inform senior management and important stakeholders about the state of compliance and risk. • Work together with the security, IT, legal, and other departments to address and resolve any risk-related problems or compliance infractions. • Serve as the main liaison between external auditors and regulatory agencies. • Organise regulatory evaluations and external audits to make sure the business's records and practices adhere to the necessary standards.

Requirements

• A bachelor's degree in law, finance, information technology, business administration, or a similar discipline. An advanced degree, such as an MSc or MBA, is advantageous. • Five years or more of expertise in internal auditing, risk management, or compliance, ideally in the IT services or consulting sector. • A thorough understanding of industry standards and legal requirements pertaining to IT, cybersecurity, data protection, and business operations (such as GDPR, ISO 27001, PCI-DSS, and SOX). • Demonstrated expertise in creating, putting into practice, and overseeing risk management and compliance systems. • Strong problem-solving and analytical abilities, as well as the capacity to evaluate intricate risk scenarios and reach well-informed conclusions. • Familiarity with internal controls, audit procedures, and compliance oversight. • Outstanding interpersonal and communication abilities, with the capacity to work productively with cross-functional teams and senior management.