Manager (Risk & Governance)

Job Purpose:

Lead, review, highlight, monitor and advise the implementation of MESRA's Risk Management Framework with insight of the company's risk exposure and necessary intervention/mitigation plan and the implementation of Risk Management capability and knowledge management initiatives for MESRA.

Principal Accountabilities:

Enterprise Risk Management:

Establish, review and update risk profile through consolidation and review various sources of information with an awareness of emerging trends and risk events in order to identify principal risk exposures arising from the uncertainties which require close monitoring and oversight to ensure the success of MESRA's business.

Business Continuity Management (BCM) & Crisis Management (CM):

Drive, review and plan the execution of Business Continuity Management (BCM) & Crisis Management (CM) activities for MESRA. Support BCM & CM subject matter expert role to provide insights and updates to Management and Business Lines/Enablers on BCM & CM practices/mitigations/interventions for preparatory stage and during actual crisis & prolonged disruptions in order to strengthen MESRA's business resiliency and protect its brand/reputation.

Corruption Risk Assessment:

Manage other recurring exercises such as the Corruption Risk Assessment (CRA), Insurance Renewal submissions, and other relevant risk reviews required by evolving business needs.

Governance and Compliances:

Strategize and lead the development and sustainability of MESRA's Governance policy/framework/procedure and guideline including work process by ensuring alignment to PDB and/or PETRONAS policies, standards and guideline.

Risk Assessment in Decision Making (RADM):

Advise and review the RADM in every material business proposal submitted by requestor prior approval in accordance with the LOA. Conduct and implement the capability development by sharing of experience, knowledge, lessons learnt and best practices in Risk Assessment in Decision Making.

Risk Capability Development & Knowledge Sharing:

Drive, plan and support the implementation of Risk Capability Development initiatives through collaboration and cross business activities with PDB and/or PETRONAS Group Risk/Downstream Risk/external parties in the design and conduct benchmarking exercise, sharing of experience, knowledge, lessons learnt and best practices in risk management.

Limits of Authority (LOA):

Plan, manage and coordinate the development and review of the Limits of Authority (LOA) manual across MESRA.

Secretariat for MESRA Credit Control Committee (3C):

Develop the MESRA CCCs Term of Reference, organize CCCs meeting on a monthly basis and act as the Secretariat of MESRA CCCs. Monitor outstanding matters and their action plan by respective department in relation to the CCC.

Know Your Counterparties (KYC) Fit for Purpose:

Strategize and drive the development and sustainability of MESRA's KYC including counterparties financial assessment and assurance operation by ensuring alignment to MESRA Guidelines.

Document Control:

Manage the systematic control of both physical and digital records, ensuring proper classification, indexing, version control, and secure archival in line with MESRA's and regulatory requirements. Implement strict access controls to protect sensitive information and ensure adherence to MESRA's data security policies. Continuously review and improve document management processes to enhance efficiency, traceability, and audit readiness.

Other Duties & Responsibilities:

As and when required, by advice and/or as instructed by the Chief Financial Officer, MESRA.

Job Requirements:

• Minimum Bachelor's Degree in Law, Business, Finance, or any related discipline.
• Proven experience as a Risk Manager.
• Knowledge of risk assessment and control.
• Experience with auditing and reporting procedure
• Analytical mind with problem-solving aptitude
• Excellent communication and presentation skills
• More than 8 years' experience in risk management especially in retail business

Personal Data Protection:

Mesra Retail & Café Sdn Bhd ("MESRA") is fully committed to the protection of Personal Data and compliance with the Personal Data Protection Act 2010 ("Act"). Mesra Retail & Café Sdn Bhd ("MESRA") assures that any Personal Data collected, stored, processed and used for the purpose of this registration/application shall comply with the requirements of the Act and only be used within Mesra Retail & Café Sdn Bhd ("MESRA"). We ensure that the data you submit to us remains confidential and is used for the purposes stated in the data privacy.