Responsibilities
General
- Manage key day-to-day risk management operational work including matters such as:
- reviewing higher priority incidents
- responding to or following up on queries on insurance,
- monitoring risk indicators or risk developments in specific areas
- collecting data and analysing or collating information for reporting
Daily
- Assessing risk areas, identifying potential systemic risk trends, and working with stakeholders for more information to complete assessment.
- Managing Incidents. Review of higher priority incidents and assess incident investigation and outcomes to determine if root cause analysis has been appropriately applied to identify actionable areas for risk mitigation.
- Insurance. Works closely with stakeholders as liaison for insurance – both claims and renewals. Follow up on outstanding claims and all other insurance matters.
Quarterly/Bi-monthly
- Works closely with VP and stakeholders to prepare for periodic meetings – collect and review relevant data, analyses key information, and prepares reports/presentation materials.
- Attends relevant periodic meetings and prepares key notes/minutes/action items for follow up.
- Prioritises key action points from meetings and works with VP to execute each within expected timelines.
- Assess, review specific technology risk areas such as cybersecurity and other key topics such as:
- 3rd party / vendor & contract risk assessments
- Cloud security and enterprise architecture risks
- Technology risk standards (eg, ISO27001) / Data protection
- Crisis / Business Continuity Management
Annually
- Assists in the collection of data, analysis and review of the GRS team’s annual work plan including all matters relating to the preparation and publication of the Group’s Annual and Sustainability Reports
Ad-Hoc
- Assist with planning and execution of assigned risk and sustainability projects (to work on multiple projects and be resourceful in resolving issues)
- Liaise with key stakeholders to assist in executing the GRS team’s role in cascading a risk-focused culture including working with the Learning and Development team to conduct or cascade training.
- Work with auditors (internal & external) or other departments / external third parties (Aid in information gathering, document preparation or liaison).
- Assist in the review of key GRS policies / processes / standard operating procedures and work with VP in the documentation / drafting of these.
- Work with VP, GRS on the delivering, improving, or optimising the GRS target-operating-model to build out a scalable GRS function that is fit-for-purpose for FEOR business needs.
- Research, evaluate, and analyse the best practices/trends/recommendations that can be most applicable and impactful in ongoing initiatives and efforts.
- Engage key stakeholders in any other existing and future efforts.
- Deputises VP, GRS on all GRS team matters during periods of unavailability.
- Aids with any other GRS responsibility or administrative matters as or when tasked with.
Requirements
- Between 5 to 10 years of work experience
- Some relevant knowledge or have interest in risk management (either enterprise or any specific risk related work areas)
- Proficient in MS Office applications, specifically spreadsheets
- Numerate or possesses a quantitative / mathematical educational background.
- Comfortable working in a de-centralised team culture/environment
- Independent and resourceful when dealing with ambiguity.
- Prior experience or have a keen interest to develop knowledge in risk or sustainability areas: Enterprise Risk Management, Global Reporting Initiative (GRI), Greenhouse Gas (GHG) emissions, Cybersecurity (eg, ISO27001, NIST standards), Data Protection (eg, CSA / PDPA / GDPR standards), Workplace Health and Safety, Taskforce for Climate-related Financial Disclosures (TCFD), ISO31000, COSO framework, etc.
