Erm Officer

**Role purpose**
The ERM Officer role is responsible for the implementation and execution of the Enterprise Risk Management (“ERM”) governance framework for the business. The ERM Officer is responsible for the development and execution of risk management policies, standards, methodologies and processes to implement ERM governance. The ERM Officer provides effective monitoring and reporting of the risk profile of the organisation to assist all business functions and the business leaders with effective decision-making on internal controls or risk mitigation. The ERM Officer proactively analyses the enterprise and its external environment to identify risk and consult or facilitate effective strategies to mitigate such risk. The ERM Officer effectively liaises with the Internal Audit, Legal and Compliance functions.

**Responsibilities include**:
**Responsibility 1: Implementation and Execution of ERM framework.**

**Key Tasks**
- Improve, implement and/or execute the ERM framework and methodologies.
- Effectively facilitate risk and control self-assessments with all areas of the business (incl. Operations, IT, Projects, etc.) in accordance with the risk management methodology.
- To analyse data to estimate the degree of risk and levels of associated risk, both from an operational and technology perspective
- Continuous monitoring, review and timely reporting of key risks to closure of mitigating actions.
- Maintains the risk event database and monitors events to ensure adequate mitigation has been implemented to prevent future recurrence.
- Perform annual, planned and ad hoc risk review projects as required by management or as independently identified.
- Perform ongoing risk awareness training at all levels including the provision of input to the training strategy initiatives with respect to risk management.
- Maintain business resilience planning through effective coordination with responsible counterparts in IT and Facilities. Conducting ongoing awareness training and participation in the coordination of annual disaster recovery tests.
- To evaluate and report on the business exposure to Technology risk, Data risk, Cyber Security risk, etc. and to keep up to date with emerging trends.
- Facilitate and co-ordinate Fund Audits.
- Stay abreast of various regulatory changes and consult with Compliance to evaluate the level of regulatory risk.
- Any other task as directed by the ERM Manager to execute the risk management framework effectively.

**Responsibility 2: Risk Management Consulting, Collaboration and Relationship Management.**

**Key Tasks**
- Independently identify and/or provide advice or recommendations on key risks or issues at all levels within the organisation including the Executive Management (Exco) and the Operations Committee (Opco).
- Consults with the business at all staff levels including Exco and Opco on strategic and risk related issues and problems.
- Leads workgroups by evaluating issues and problems of strategic or operational significance.
- Attends key project meetings and independently identify and / or provides advice or recommendations on key project risk areas. Additionally, investigates and prepares briefings on risk status of key projects and business initiatives to the ERM Manager.
- Continuously research best practice and provide recommendations to the ERM Manager.
- Develops robust capabilities for an end-to-end view on risks in the business and helps to facilitate transition from existing approaches to newer approaches; overcomes barriers to mindset change.
- Establishes effective working relationships throughout the organisation, both at a corporate level and within the various business units.
- Effectively facilitates risk assessment discussions and analyses with various teams across the business.

**Responsibility 3: To report relevant risk information to the business and the Curo Board.**

**Key Tasks**
- Prepare risks reporting dashboards for required management meetings, e.g. Exco, Opco, the Board.
- Gather and combine risk event information for reporting to clients, Exco, Opco and the Board and other relevant governance forums.
- Report operational incident detail and outstanding statistics monthly to the Opco.
- Gather, maintain and report key risk indicator information to the Opco, Exco and the Board, as required.
- Any other task as directed by the ERM Manager to provide relevant risk information.

**Education and Experience for this role**
- Degree with and Accounting, Information Technology, Risk Management or Audit background is preferred.
- Completed CA, CIA, CISA designations are advantageous.
- 5-7 year’s Audit Management or Enterprise Risk Management working experience is preferred.
- IT Risk experience is preferred.
- Proficiency in MS Office suite.
- Knowledge of the Financial Markets and Instruments.
- Knowledge of the Company and Financial Legislative environment.
- Previous work experience in Asset Management is advantageous.

**Competencies for t