Manager/ Senior Manager (Enterprise Risk & Governance)

The Manager/ Senior Manager will lead and strengthen SSL Wireless’s enterprise-wide risk management framework by identifying, assessing, monitoring, and mitigating risks across business operations, technology, products, projects, vendors, compliance, and financial processes. This role ensures sound risk governance, drives a strong risk culture, supports strategic decision-making, and protects the organization’s reputation, customers, and business continuity.

What You Will Do:

1) Enterprise Risk Management (ERM) & Risk Governance

• Design, implement, and continuously improve the ERM framework aligned with business strategy and risk appetite.
• Establish and maintain the Risk Register, Risk Appetite Statements, KRIs (Key Risk Indicators), and risk reporting dashboards.
• Facilitate risk governance forums (e.g., Risk Committee meetings), prepare high-quality risk reports for leadership and stakeholders.
• Ensure consistent risk assessment practices across departments and promote a proactive risk culture.

2) Operational Risk Management

• Lead operational risk programs, including RCSA (Risk & Control Self-Assessment), process risk reviews, and control testing.
• Identify control gaps and drive remediation plans with clear owners and timelines.
• Review and challenge key operational processes (payments, merchant operations, customer support, settlements, finance ops, HR processes) to reduce loss events and service disruptions.
• Implement incident/loss event tracking, root cause analysis, and corrective/preventive action monitoring.

3) Technology, Information Security & Cyber Risk (in partnership with IT/Security)

• Oversee technology risk management for platforms, applications, APIs, cloud, infrastructure, and change/release processes.
• Ensure appropriate controls for access management, data protection, logging/monitoring, vulnerability management, and secure SDLC practices (as applicable).
• Partner with Engineering/InfoSec to assess cyber threats, monitor key risks, and ensure timely remediation of high-risk findings.
• Support security assurance and compliance readiness (e.g., ISO/PCI or equivalent standards if applicable).

4) Compliance, Regulatory & Policy Oversight (as applicable to business)

• Ensure compliance risks are identified and tracked, and key policies and controls remain effective.
• Maintain and update risk-related policies, SOPs, and governance documentation.
• Coordinate with Legal/Compliance for contractual risk reviews, regulatory obligations, and response to queries/audits (internal/external).

5) Vendor, Partner & Third-Party Risk

• Build a third-party risk management program for vendors, partners, and service providers.
• Conduct due diligence risk assessments for onboarding, renewal, and critical vendor monitoring.
• Ensure contractual safeguards and SLAs include risk, security, and continuity requirements.

6) Project, Product & Change Risk

• Embed risk review into new product launches, key projects, process redesigns, and system changes.
• Identify delivery risks, operational readiness gaps, and control requirements before go-live.
• Provide risk-based challenge to ensure growth is scalable and controlled.

7) Business Continuity & Crisis Management

• Own/coordinate BCP/DR governance with stakeholders; ensure plans are documented, tested, and improved.
• Lead crisis response coordination for major incidents and ensure post-incident lessons learned.

8) Audit & Assurance Coordination

• Coordinate risk inputs for internal/external audits and track closure of audit findings.
• Ensure remediation actions are practical, timely, and verified for effectiveness.

9) Leadership & Capability Building

• Lead and develop the Risk function (team structure based on company needs).
• Train stakeholders on risk awareness, control ownership, and best practices.
• Build strong cross-functional relationships to drive risk ownership across the organization.

Your KSAOs:

• Strong leadership, stakeholder management, and ability to influence without direct authority
• Excellent analytical, problem-solving, and structured thinking skills
• Strong communication: able to explain complex risks in simple business language
• High integrity, confidentiality, and sound judgment
• Practical mindset: balances control with business speed and customer experience