Head of Business Risk Management - Risk and Compliance.Risk and Compliance

Mission/ Core purpose of the Job

Implement a comprehensive second line assurance function and framework for the Opco and its Board of Directors. The purpose being to effectively manage all risk exposures of an internal or external nature (strategic, operational, compliance, financial, technology, security, ethical, external etc) and ensure existence of effective internal processes and policies in general and specifically in relation to compliance to laws and regulations across the MTN business. The role is responsible for overseeing risk-taking/ enterprise risk, fraud risk, information and physical security risk, compliance and ethics management activities across the business as well as implementation of all aspects of the risk and compliance function, including implementation of processes, tools and systems to identify, assess, measure, manage, monitor and report risks.

 

 

 

Key Performance Areas: 

Key Deliverables

• Implement the Group risk management framework in the opco for MTN to effectively manage all risk exposures (opportunity, hazard, uncertainty etc) that pose an internal or external threat (political, economic, financial, market, international) to the business, its people and assets 
• Implement the Group compliance framework for MTN to effectively manage compliance to all applicable laws and regulations and a common set of policies and procedures
• Manage the risk to the Opco, its employees, customers, reputation, assets and interests of stakeholders
• Assist in the development of and manage processes to identify and evaluate business areas' risks and risk and control self-assessments.
• Build a risk-aware culture in the opco by providing ongoing education and appropriate briefing and training
• Investigate and research emerging risks and trends in the industry advising management where appropriate
• Implement appropriate systems for monitoring the effectiveness of all the risk management services and compliance; and present findings to the relevant parties and governance structures (MTN Group, Opco CEO, Opco ExCo, OpCo ARC etc)
• Manage the process for elevating / escalating control risks to more senior levels when appropriate.
• Effective management of the corporate risk and control assessment reporting process as well as management and maintenance of the infrastructure elements
• Analyse all costs associated to risk of non-compliance, maintenance and prevention
• Ensure risk evaluation, which involves comparing estimated risks with criteria established by the organisation such as costs, legal requirements and environmental factors, and evaluating the organisation's previous handling of risks
• Ensure corporate governance involving external risk reporting to stakeholders
• Ensure effective implementation of the disaster recovery, business continuity, risk management and access controls frameworks in the opco 
• Ensure effective implementation of insurance risk management framework and strategies including establishment of appropriate and effective claims management processes
• Ensure effective implementation of information, cyber and physical security risk management framework across the business
• Develop and implement security policies, protocols and procedures to ensure that the employees, assets, systems and buildings remain protected. 
• Implement the Opco Ethics management program to ensure that the organisation conducts business in an ethical and socially responsible manner 
• Develop, implement and drive continuous control monitoring to ensure early and timely identification of potential issues with clear management mitigation plan to address   
• Implement mechanisms to training, monitor and test compliance to all laws and regulations in the compliance universe of the Opco
• Provide recommendations to enhance the Company's Risk and Compliance Management's road-map, policy, framework, methodology and system
• Conduct Post Investment Reviews of major CAPEX to ascertain whether proposal cost benefits are being realized and reported to Senior Management
• Establish and chair risk and compliance management governance fora and act as the accountable head for chairing and monitoring such forums.
• Develop strategies for ensuring future compliance and mitigation of risk i.e Material legislations, fines and reporting requirements for various regulators (also includes JSE)
• Develop and present risk and compliance management plans, status and issues to Opco and Group governance structures as required
• Collaboratively work with Group, Regional and other Opco’s risk and compliance functions to enhance overall risk and compliance management posture of MTN as a whole
• Establish a continuous improvement mechanism to enhance the maturity level of risk management and compliance processes within the Opco
• Establish and lead high performance diverse teams to achieve MTN risk management objectives

 

Education:

• Degree in Business Administration (DBA/ Degree in Risk Management / Bachelor in Finance or other related disciplines)
• Minimum 4-year Academic Degree with, Post graduate MBA / Masters advantageous
• International certification in risk management, business continuity, insurance will be an added advantage

Experience:

• Minimum 8-10 years of Senior Management Experience
• Minimum 8-10 years relevant field 
• Minimum 8 years in telecommunications industry
• Work across diverse cultures and geographies
• Significant experience in evaluating the Policies associated with complex/ emerging business and operational processes
• Experience in audit / compliance and risk management is mandatory
• International exposure is an added advantage

 

MTN Eswatini, a subsidiary of the MTN Group, is the Kingdom’s leading mobile telecommunications company. Since its inception in 1998, the company has led the delivery of a new and bold digital world and currently has over a million subscribers.
 
This success is affirmed by the multiple global and regional awards that the company continues to accrue. MTN Eswatini has been named the best place to work, is accredited by the South African Board of People Practices (SABPP) and has Platinum accreditation by Investors in People (IiP) based in the United Kingdom, awards which confirm that the company employs brilliant people management practices.