Description:
The Senior Specialist Governance, Risk, and Compliance (GRC) is responsible for developing, implementing, and maintaining an integrated GRC framework that ensures the organization operates in compliance with internal policies, external regulations, and industry standards. This role plays a key part in risk mitigation, promoting ethical conduct, and enhancing the organization’s overall governance structure through proactive assessment, investigation, and process improvement initiatives.
Key Responsibilities:
1. Governance and Policy Management
- Support the development, review, and maintenance of governance frameworks, Artifacts, and procedures.
- Ensure alignment of organizational policies with applicable regulations and best practices.
- Identify and address gaps in governance and provide actionable recommendations.
- Oversee the operational governance, such as Employees and board disclosures.
- Ensure governance policies and requirements are applied at all levels for TAWAL Pakistan.
2. Risk Management
- Identify, assess, and monitor enterprise risks (operational, financial, reputational, compliance).
- Maintain a risk register and contribute to the development of risk mitigation strategies.
- Collaborate with departments to implement risk controls and track effectiveness.
- Support the development of ERM artefacts and continuously update these documents in alignment with industry best standards and with TAWAL’s strategic direction.
3. Compliance Oversight
- Ensure organizational adherence to laws, regulations, and internal policies.
- Design and conduct compliance reviews and monitoring programs.
- Provide guidance and support on compliance requirements across business units.
- Support the development of compliance artefacts and continuously update these documents in alignment with industry best standards and with TAWAL’s strategic direction.
- Conduct a Compliance assessment to ensure the organization is fully compliant with internal and external mandates.
4. Investigations and Incident Management
- Lead or support internal investigations related to policy violations, misconduct, or compliance breaches.
- Collect, preserve, and analyze evidence in a structured and objective manner.
- Document findings and present outcomes to senior stakeholders, ensuring confidentiality and legal alignment.
5. Reporting and Documentation
- Prepare clear and concise reports on risk Management, compliance Reviews, and investigations.
- Maintain organized records of incidents, risk evaluations, and GRC activities.
- Present periodic GRC updates to senior management and relevant committees.
- Manage reporting to the parent company requirements and initiatives related to GRC.
6. Training and Awareness
- Develop and deliver training programs to promote GRC culture.
- Conduct awareness campaigns on key regulatory topics, ethical conduct, and governance protocols.
- Provide advisory support to departments on risk and compliance issues.
7. Regulatory Engagement and Legal Coordination
- Stay updated on relevant legal and regulatory developments.
- Liaise with regulatory bodies during inspections or inquiries.
- Collaborate with the Legal department to ensure legal integrity of compliance and risk processes.
8. Ethics and Confidentiality
- Promote ethical standards and integrity throughout the organization.
- Maintain strict confidentiality of sensitive information and investigation materials.
- Serve as a trusted advisor on ethical conduct and decision-making.
Minimum Qualifications:
- Bachelor’s or Master’s degree in Law, Business Administration, Risk Management, Finance, Accounting, or a related field.
- Relevant certifications are preferred.
Minimum Experience:
- 8+ years of progressive experience in governance, risk management, compliance, internal audit, or a related function.
- Proven track record of conducting investigations, policy assessments, or risk reviews.
- Experience working with cross-functional teams and interacting with senior leadership.