Head of GRC

Job Description

<strong>Role Purpose </strong><p><br></p>Active ongoing management and reporting of all governance, risk and compliance requirements as necessary for Media HoldCo and its Business Units. Plan, develop strategy and lead implementation and continuous monitoring and improvement of the GRC practice for Media. Provide active relationship management including support, education, training to build a strong performance / risk culture across Media and guidance, assistance to the business to help identify, evaluate, understand, manage and communicate risks and comply with GRC requirements.<p><br></p><strong>Key Accountabilities &amp; Activities</strong><p><br></p><strong>Planning, Strategy, Implementation and continuous monitoring/ improvement</strong><p><br></p><ul><li> Establish, communicate, and facilitate use of appropriate ERM methodologies, tools &amp; techniques. </li><li> Lead the identification, communication, measurement, and management of Media risks. </li><li> Manage the Business Continuity program across Media and its BUs </li><li> Developing or supporting ERM strategies, objectives, processes, policies and procedures. </li><li> Developing, maintaining, and continually improving key aspects of an ERM program, such as enterprise risk reporting (board level reporting), risk appetite, risk identification &amp; measurement, risk assessment methodology, emerging risk, and risk committee structures. </li><li> Manage Media’s risk appetite – specify supporting KPIs and KRIs. </li><li> Assist in the development and planning of ERM activities, budgets and resources. </li><li> Periodically review risk policies, procedures, reporting templates and framework to ensure everything is up to date. </li><li> Ensure Comprehensive Mitigation Action Planning and monitor and report the progress of Mitigation Action Plans. </li><li> Facilitate periodic enterprise-wide risk assessment exercise/ workshops. </li><li> Develop monitoring methods to highlight performance of ERM Framework. </li></ul><p><br></p><strong> Relationship Management </strong><p><br></p><ul><li> Holding periodic risk workshops with MEC’s businesses to ensure adequate risk identification and visibility </li><li> Engage and develop effective working relationships to support cooperative responses to risk management matters and issues. </li><li> Provide guidance to each business units while acting as a centralized resource center. Work with “Risk Owners” to help them analyze Media’s key risks and prepare risk self-assessments, including evaluation of controls/ gaps and creation of treatment strategies/ action plans. </li><li> Proactively monitor &amp; report the risks, build tools &amp; processes, drive risk informed decision making and enhance risk informed execution. </li><li> Provide: </li><li> Support/ education/ training to build a strong performance/ risk culture across Media </li><li> Guidance and assistance to the business to help identify, evaluate, understand, manage and communicate risks. </li><li> Coordinate with Internal Audit Department to achieve desired performance of Risk Management </li><li> Facilitate sharing of risk management best practice across the organization and assist Senior Management in communicating ERM’s role throughout the organization. </li></ul><p><br></p><strong>Background, Skills &amp; Qualifications</strong><p><br></p><ul><li> 8+ years of ERM, audit, project management or related experience with 2 – 3 years developing/ operating an ERM process and/ or in a broad risk management/ strategic consulting role for Executive and Senior Management. </li><li> Strategic/enterprise wide/collaborative (rather than compliance) mindset. </li><li> Excellent interpersonal skills to: “win hearts and minds”; and communicate complex issues in a simple way to management, executives and the Audit Committee and Board. </li><li> “Master facilitator” – able to organize, run and deliver quality output from risk workshops. </li><li> Agility. Ability to: work independently in a continuously changing environment; and meet tight deadlines. Detailed/ results oriented. Problem solving/critical thinking. </li><li> Experience with risk quantification (to check validity of business plans/ key assumptions e.g. scenario planning/Monte Carlo simulation). </li><li> NEOM sector/ industry experience (e.g. Capital Projects, Technology, Energy, Leisure). </li><li> Experience using/implementing Corporate Objectives/Governance, Risk and Compliance (GRC) software/ dashboards. </li><li> Advanced Excel, Word, PowerPoint, Visio. SAP knowledge an advantage. </li><li> Disciplined project management and document recording/ retention. </li><li> Exceptional report writing skills. </li><li> Advanced degree/ risk qualification and/ or qualified accountant (preferred). </li></ul><p><br></p><strong> COMMUNICATION – MAIN STAKEHOLDERS </strong><p><br></p><strong> Internal </strong><p><br></p><ul><li> Sector and Division Heads </li><li> Functional Heads </li><li> Finance, IT, HR, Legal, GRC, Compliance, Data Privacy, Risk, and Internal Audit teams </li></ul><p><br></p><strong> External </strong><p><br></p><ul><li> Advisors and Consultants </li><li> Consultants, suppliers, vendors and service providers </li><li> Regulatory bodies and government agencies</li></ul>