Old Mutual

Risk, Compliance and Data Protection Officer - OMIU

Old Mutual  •  Kampala, UG (Onsite)  •  6 hours ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Lets Write Africa's Story Together!

Old Mutual is a firm believer in the African opportunity and our diverse talent reflects this.

The purpose of this role is to provide an efficient and effective service for the Compliance function which contributes to business growth and strategy realisation.

KEY RESPONSIBILITIES

Enterprise Risk Management

  • Support implementation of the Enterprise Risk Management Framework across all business functions.
  • Coordinate enterprise-wide Risk and Control Self-Assessments (RCSA).
  • Maintain the corporate risk register and ensure risks are regularly reviewed and updated.
  • Monitor Key Risk Indicators (KRIs) and report emerging risks.
  • Monitor adherence to approved Risk Appetite Statements and escalate breaches.
  • Coordinate risk incident reporting, root cause analysis and tracking of corrective actions.
  • Facilitate periodic risk assessments across all departments.
  • Support scenario analysis and stress testing where applicable.
  • Prepare monthly, quarterly and annual risk reports for Management Committees and the Board Risk Committee.
  • Review departmental risk registers and provide independent challenge.
  • Support implementation and maintenance of the Business Continuity Management (BCM) Framework.
  • Participate in Business Impact Analysis and business continuity testing.

Operational Risk Management

  • Monitor operational risks across underwriting, claims, finance, ICT, investments and support functions.
  • Monitor implementation of key controls.
  • Track operational losses and near misses.
  • Identify emerging operational risks arising from new technologies, outsourcing and process changes.
  • Monitor effectiveness of control actions.

Regulatory Compliance

  • Implement the Compliance Management Framework.
  • Maintain the regulatory universe applicable to the Company.
  • Monitor compliance with:
    • Insurance Act
    • Insurance Regulatory Authority (IRA) Guidelines
    • Anti-Money Laundering legislation
    • Tax regulations
    • Financial reporting requirements
    • Data Protection and Privacy Act
    • Consumer Protection requirements
    • Other applicable laws.
  • Perform compliance monitoring reviews according to the approved Compliance Monitoring Plan.
  • Report compliance findings and recommend corrective actions.
  • Monitor implementation of agreed management actions.
  • Provide regulatory advisory support to business units.
  • Track regulatory developments and assess their business impact.
  • Coordinate regulatory returns where assigned.
  • Promote ethical conduct and compliance awareness across the organization.

Financial Crime Compliance

  • Support implementation of the AML/CFT/CPF Programme.
  • Review effectiveness of Customer Due Diligence (CDD) controls.
  • Monitor sanctions screening and customer onboarding controls.
  • Assist in preparation of AML regulatory returns.
  • Monitor implementation of AML action plans.
  • Participate in investigations of suspicious activities.
  • Conduct AML awareness training.
  • Prepare AML dashboards and reports.

Data Protection and Privacy

Act as the Company's designated Data Protection

Responsibilities include:

  • Implement the Company's Data Protection Framework.
  • Ensure compliance with the Data Protection and Privacy Act, 2019 and related regulations.
  • Maintain the Personal Data Inventory.
  • Coordinate Data Protection Impact Assessments (DPIAs).
  • Maintain records of processing activities.
  • Monitor compliance with privacy policies.
  • Investigate data breaches and coordinate incident response.
  • Liaise with the Personal Data Protection Office (PDPO).
  • Coordinate annual renewal of the Company's Data Controller/Data Processor registration.
  • Coordinate submission of statutory returns.
  • Deliver privacy awareness training.
  • Monitor closure of data privacy findings.
  • Prepare periodic Data Privacy reports and dashboards.

New Products, Projects and Change Risk

  • Conduct independent risk assessments for new insurance products.
  • Review significant projects and strategic initiatives.
  • Assess regulatory implications of new initiatives.
  • Provide recommendations before implementation.
  • Monitor emerging risks during project execution.

Risk Governance

  • Coordinate Risk Management Committee meetings.
  • Prepare committee papers and minutes.
  • Monitor implementation of committee resolutions.
  • Coordinate periodic review of risk policies.
  • Assist in ORSA (Own Risk and Solvency Assessment) activities where applicable.
  • Support combined assurance activities with Internal Audit, External Audit and Regulators.

Risk Culture and Awareness

  • Conduct risk and compliance awareness training.
  • Promote risk ownership across the business.
  • Support departmental risk champions.
  • Prepare awareness materials and newsletters.
  • Foster a strong culture of integrity, accountability and ethical conduct.

Reporting

Prepare periodic reports including:

  • Enterprise Risk Reports
  • Compliance Reports
  • Risk Appetite Reports
  • Operational Risk Reports
  • Incident Reports
  • AML Reports
  • Data Protection Reports
  • Board Risk Committee Papers
  • Regulatory Compliance Dashboards

ANTI-MONEY LAUNDERING (AML) EXPECTATION

The incumbent will be responsible for ensuring adherence to, implementation of, and adoption of Compliance, Anti-Money Laundering (AML), and Sanctions-related policies, procedures, and process requirements within Old Mutual and its subsidiaries. This includes execution of customer due diligence processes, ensuring compliance with Know-Your-Customer (KYC) standards, conducting ongoing and enhanced due diligence, and maintaining data quality. Additionally, the role involves identifying and monitoring potential AML, Sanctions, or Compliance breaches and unusual activities, and escalating these concerns to the Risk and Compliance Office for further action.

KEY COMPETENCIES

Skills required:
Technical skills

  • Strong understanding of risk management, internal control and corporate governance framework(s), financial services.
  • Good Knowledge of Money Laundering Risks and Regulations.
  • Ability to anticipate and mitigate risk by developing appropriate Risk Management Policies for the Business Unit.
  • Compliance Standards and Legislations: Excellent knowledge of International Accounting Standards, and Legislations.
  • Good understanding of relevant regulatory requirements
  • Strong financial modelling, analytical and problem-solving skills with an emphasis on data science and risk management.

Personal attributes

  • Must be honest, fair, just but firm with themselves, and of high integrity.
  • Strong interpersonal & team management/leadership skills.
  • Strategic, critical, and analytical thinking and pragmatic problem solving.
  • Result Oriented and operationally astute.
  • Strong Communication & Organizational skill

EDUCATION

Bachelor's Degree in any of the following: Risk Management, Insurance, Finance, Business Administration, Law, Accounting, Economics, Statistics, Actuarial Science, Information Systems or related field.

Professional Qualifications

One or more of: IRM, CRM, ACCA, CPA, ICA Certificate in AML, CAMS, Data Protection Certification, ISO 31000 Risk Management training

EXPERIENCE

  • Minimum 3–5 years' experience in Risk Management, Compliance, Internal Audit, Governance or Data Protection.
  • Experience within Insurance or financial services is highly desirable.
  • Experience interacting with regulators.
  • Experience conducting compliance reviews and enterprise risk assessments.
  • Experience preparing Board and Management reports.

Skills

Business Risks, Compliance Management, Operational Risks, Operation Risk Management, Regulatory Compliance, Regulatory Compliance Management, Risk Governance

Competencies

Action OrientedCommunicates EffectivelyDecision QualityEnsures AccountabilityInstills TrustManages ComplexityOptimizes Work ProcessesOrganizational Savvy

Education

Bachelors Degree (B): Business Administration, Bachelors Degree (B): Finance, Economics, Bachelors Degree (B): Risk Management And Insurance

Closing Date

12 July 2026 , 23:59

The Old Mutual Story!

Old Mutual

About Old Mutual

Old Mutual Limited is a listed company on the Johannesburg Stock Exchange and has secondary listings on the London, Malawi, Namibia and Zimbabwe stock exchanges. As a Pan-African financial services company, we are focused on Africa, her needs and her people.

Together with you, we have educated our children, given more homes warmth and light, empowered small businesses and improved infrastructure in Africa. Our story will continue #WithAfricaForAfrica.

Industry
Finance & Insurance
Company Size
10,000+ employees
Headquarters
Johannesburg, ZA
Year Founded
Unknown
Social Media