Manager: Governance, Risk

**Role purpose**

To establish and align the company’s integrated risk management policies, processes and risk reporting to the Board’s enterprise-wide risk management approach. Provide independent audit assurance that Curo’s risk management, governance and internal control processes are operating effectively. To manage the compliance function and coordinate the function with the external compliance officer thereby assisting the company with discharging its regulatory responsibilities; and to manage the legal function.

**Key Responsibilities include**:
1. **People Management**
- Leading a team of professionals in the fields of:

- Legal - that are responsible for all the company’s legal contracting through internal and external legal support.
- Audit - An internal audit function that:
(a) Perform combined assurance planning and reporting

(b) Perform and report audits as assigned by the approved combined assurance plan

(c) Facilitate external client audit and Regulatory requests

(d) Managing audit engagement for ISAE3402 assurance.
- Compliance - manage relations with external Compliance Officer and keep business up to date with regulatory compliance requirements.
- Perform capacity planning and put actions in place to retain key and highly performing individuals
- Provide effective performance feedback through employee recognition, rewards and disciplinary action
- Coach, mentor and develop staff on all levels

2.
**Risk**
- Support the Board’s responsibility of setting the Risk management policy that is based on the principles and practices of enterprise-wide risk management.
- Responsible for managing and overseeing the risk management program for the organisation’s information technology systems and processes in line with the company’s risk management framework.
- Responsible for the oversight of cyber risk management initiatives to ensure the organisation is prepared for potential risks and disruptions.
- To conduct regular risk assessments to identify and evaluate potential threats to the organisation’s information technology systems and processes.
- To develop and implement risk mitigation strategies to minimise the impact of potential risks on the organisation.
- To conduct regular training and awareness sessions for employees on GRC matters.
- To collaborate with stakeholders across the organisation to ensure that GRC processes are integrated into all aspects of the business.

3. Act as custodian for all other company policies.
4. Relevant reporting to internal and client Audit, Compliance and Risk committees.

**Competencies: Experience, Skills, and Behavioural Attributes**
- Professional
- Planning and Organising
- Communicator (written, verbal presentation skills)
- Knowledge based Independent views
- Problem Solving
- Delegating
- Perseverance
- Ability to work independently and take responsibility
- Attention to detail and thoroughness
- Be a strong negotiator and able to interact confidently with Senior Executives
- Focused individual who is able to execute effectively, planning own outputs and meet specified deadlines
- Good interpersonal skills with the ability to communicate effectively, professional, diplomatic, cordial and collaborate sensitively with others
- Ability to influence and build good relationships at all levels in order to effectively carry out responsibilities
- Must be a team player
- Be able to conduct meetings and presentations skilfully

**Education**
- Minimum 5-7 years relevant industry and managerial experience where Legal, Audit, Risk and Compliance responsibilities formed a material portion of the role
- B.Com (Honours) with completed articles at leading audit firm
- Recommended CA(SA) or Certified Internal Auditor qualification
- Recommended Occupational Certificate: Compliance Officer
- Knowledge of Financial Services Legislative environment