Job Title:  Deputy Manager | Risk Management | Cyber Strategy & Transformation

Key Responsibilities

1. Governance

• Support and maintain enterprise governance frameworks (policies, standards, procedures)
• Define and track risk and control ownership
• Facilitate governance forums (Risk Committee, Audit Committee, Compliance reviews)
• Ensure alignment with risk appetite and organizational objectives
• Promote accountability and “tone at the top”

2. Risk Management

• Identify, assess, and prioritize enterprise, operational, IT, and compliance risks
• Maintain and update the risk register
• Facilitate risk assessments (inherent vs residual risk)
• Define and monitor Key Risk Indicators (KRIs)
• Support risk acceptance and escalation decisions

3. Controls & Compliance

• Design, document, and optimize internal controls
• Perform control testing (design and operating effectiveness)
• Support SOX, regulatory, or internal audit requirements
• Track issues, remediation plans, and action owners
• Evaluate segregation of duties (SoD) conflicts and mitigating controls

4. Reporting & Insights

• Prepare risk and compliance dashboards for management and Board
• Perform trend analysis on risk, incidents, and control failures
• Deliver clear, concise, decision‑oriented reporting
• Support audits and regulatory reviews with evidence and analysis

5. Tooling & Automation

• Administer and enhance GRC platforms (risk, control, issue, and reporting modules)
• Drive adoption of GRC tools across the business
• Improve data quality, workflows, and automation
• Integrate tooling with source systems where applicable
• Ensure strong controls over GRC data and access