The Compliance Manager will report to the CFO on matters relating to the creation, review and implementation of policies and procedures established by the Group that regulates the company in risk management and compliance.
Roles & Responsibilities:
- Serve as the main/first point of contact between the Group and all relevant data protection authorities/ regulators.
- Ensure the Group's policy is in line with the General Data Protection Regulation (GDPR) and code of practice.
- Evaluate, review and enhance the existing framework, ensuring its relevance with the Group's businesses in consultation with key stakeholders
- Proactively conduct regular internal security audits to ensure compliance, address potential issues and submit monthly reports for management's review.
- Provide guidance, and support, and act as the subject matter expert to Management and fellow colleagues
- Conceptualise, and translate ideas and regulations into an effective training package train and conduct workshops for internal staff members
- Train and guide members of staff involved in processing data on all the key salient points for compliance
- Follow up with changes in law and provide suggestions to ensure compliance with GDPR
- Foster a data protection culture amongst employees and communicate personal data protection policies to stakeholders
- Manage personal data protection-related queries and complaints
- Alert management of any risks that might arise with regard to personal data management
- Liaise with PDPC on data protection matters
OTHER COMPLIANCE DUTIES
- Creating and implementing an effective compliance program
- Ensuring that the compliance program effectively prevents and/or detects violations of law, regulations, organization policies, or the code of conduct
- Regularly reviewing the compliance program and recommending appropriate revisions and modifications, including advising the Senior Management of potential compliance risk areas
- Conducting yearly compliance refresher training
- Process owner for the following policies:
a. Anti-bribery policy
b. Gifts and hospitality
c. Whistleblowing policy
d. Code of conduct
- To spearhead the implementation of Enterprise Risk Management
- Minimum degree from accredited universities with 5 years of relevant experience
- Critical and strategic thinking, ability to provide sound judgements in challenging situations and be assertive as needed.
- Experience in legal, audit, and/or risk management role will be an added advantage.
- Good interpersonal skills and ability to work independently, objectively, and constructively.
- Strong interpersonal, negotiation, organisational and report-writing skills.
- Team player with project management skills.
- Excellent communication and presentation skills.
- Ability to work under pressure, hand on experience in audit, investigation, training, policy development and process improvement.