Job Summary

The incumbent is responsible in executing our group strategy with regards to the deployment of an enterprise wide Governance, Risk and Compliance framework.
Working across our global organization to identify opportunities for automating key risk indicators, the continuous monitoring of controls (CCM) effectiveness and fraud detection strategies.
He/She will provide a material contribution to the shaping of our Risk Management agenda, and the evolution of an effective and efficient enterprise wide risk management framework. From a risk management perspective, we envision this role to implement the infrastructure, processes, systems as well as facilitating risk management activities, not performing them on behalf of management. This is about empowerment of management who are responsible for all aspects of doing business - including monitoring their own achievement, assessing risk exposures and control effectiveness and reporting outcomes up the line by themselves.

Roles & Responsibilities

The role will also own and lead our GRC platform as product manager who will continuously enhance the vision and strategy for our GRC platform with the goal of mitigating risk, ensure regulatory compliance and prevent fraud.

• Implement processes and capability to enable automated continuous monitoring of control effectiveness, key risk indicators and fraud detection by utilizing the GRC data analytics tools and technologies.
• Providing training in the risk management process, including how to populate and maintain risk events in the risk register and produce reports, how to clearly and adequately describe risk events, how to assess risks and how to create effective risk reduction measures.
• Interact with the Risk, Audit and Business Teams and Functional IT teams to create, design and build the business rules and logics (using SQL) for automated monitoring on the GRC platform.
• Continuously evaluate opportunities to leverage complex data analytics and technologies such as machine learning, robotics process automation etc for risk insights and controls monitoring and challenge current audit and risk management methodologies.
• Interact and empathize with Risk and audit teams to understand their challenges and improvement areas.
• Support the business to Design and implement companywide end to end processes , Internal controls with a process for control self-assessments ,issue and remediation tracking and incident management, enabled by GRC technology.

• Curious to learn new technologies and not hindered by rapidly changing and growing suite of software tools and practices.

As a GRC Platform product owner you will:

• Continuously benchmark the organization\'s GRC maturity level to understand the gaps that exist, and to determine what needs to be done to get to the next stage of the maturity curve.
• Maintain a well-defined GRC roadmap with high level estimates of effort and resource requirements from a processes, people, and technology perspective.
• Communicate regular milestones and successes to stakeholders. Build in continuous improvements as the GRC program evolves and is rolled out across the enterprise.
• Contribute to the functional stability and user adoption of the GRC Platform:
• Configure and maintain the application (users, authorization structure, etc.);
• Communicate with the IT department regarding updates or other technical support;
• Maintain system documentation such as the System Design Configuration Manual and the
• authorization matrix;
• Manage change requests and communicate with business teams about their impact;
• Test implemented change requests;
• Maintaining master data;
• Maintaining business roles and profiles;
• Maintaining users and the authorization design / access control;
• Archiving closed assessments, nonconformities and incidents;
• Support and train end users on the GRC platform capabilities.

KPIs

• Risks identified
• controls designs and implementation
• Control improvement initiatives
• Processes implementation projects
• Trainings and awareness session delivered related to Risk and compliance Policies & Processes up to Date

Work experience requirement

• Minimum 10 years of work experience with Risk management , Governance and Internal controls with exposure to data analytics, data warehouse, business intelligence, data visualization, data mining, Big Data.
• SQL knowledge applied to Risk Management, Internal Control, Compliance is a plus.
• Previous knowledge or familiar with the use of data query and data visualization tools such as QlikSense, Tableau, or Power BI.
• Working Experience with GRC technologies (e.g. SAP GRC, MetricStream, Archer, Sai Global, Service Now etc.).

Qualification

• Chartered Accountant (CA), or /CIA / CPA/CRM with strong data analytics skills or graduated as Computer Engineering, Computer Science, Statistics, MIS, IT, BIS
• Knowledge of Risks , Internal controls and SAP .

Competencies

Accounting Standards and Practices

Advance Analytics Tools and Methodologies

Audit Professional Practices

Knowledge of Corporate Governance Practices

Leading and Managing Change

Ownership & Result Orientation

Project Management

Self and Team Management

Strategic Thinking

Analytical Skills

Business Unit: Corporate-Risk and Compliance (6100)

Business Group: Corporate- Risk and Compliance (6120)

IFFCO