Enterprise Risk Management (ERM)
Develops and facilitates the implementation of the organization’s ERM system in a manner that fulfills the strategic goals of the organization by reviewing and evaluating the risk management process, including the policy, frameworks, tools, forms and documents, and recommending and implementing revisions/enhancements whenever necessary.
Develops and implements policies, procedures, and systems for the identification, collection, and analysis of risk-related information to ensure the timely distribution, dissemination, submission, consolidation, analysis, and presentation of various risk management reports to relevant internal stakeholders.
Provides support to ensure continuous risk management awareness and education of the organization by educating and training personnel on risk management concepts and techniques for their respective organizations, responsibilities, and accountabilities.
Ensure the timely implementation of the ERM-related initiatives, projects, programs, policies, and procedures by conducting and facilitating meetings and collaborating with stakeholders and subject matter experts.
Provides support to ensure that the CRO and senior management are informed in a timely manner of the company’s top risk exposures by communicating critical and/or emerging risks and progress reports of strategic ERM-related activities.
Business Continuity Management (BCM)
Develops, reviews, updates, and maintains BCM policies and procedures in collaboration with relevant groups and subject matter experts to ensure organizational resilience.
Conducts BCM-related tests and exercises with all relevant groups as part of the BCM program and process.
Ensures BCM awareness and education of the organization by educating personnel on BCM and BCM-related activities.
Data Privacy Act (DPA)
Assists the Data Protection Officer (DPO) of the organization in facilitating the organization’s compliance with the DPA.
