Key Performance Areas:

• Develop and implement FSCA risk management policies, procedures, frameworks, and code of practice aligned with ISO31000 and COSO ERM frameworks.
• Facilitate, coordinate, and monitor the risk management processes (identification, measurement, monitoring, management, control and reporting of risk) in accordance with international risk management standards and organisational goals.
• Conduct regular risk assessments and identify potential risks and opportunities using established risk assessment methodologies aligned with ISO31000/COSO frameworks.
• Facilitate risk workshops with business departments to integrate risk management strategies and to develop risk registers.
• Coordinate and oversee the combined assurance reporting process, ensuring alignment between various assurance providers (internal audit, external audit, compliance, and other assurance functions) to provide comprehensive coverage of key risks.
• Develop and maintain an organisational risk register.
• Manage the FSCA fraud and ethics hotline inbox, as well as coordinate and compile reports on tip-offs received.
• Compile and maintain the FSCA tip-offs register and refer tip-offs to relevant departments within FSCA and or outside resolution providers.
• Prepare risk management reports for senior management, including combined assurance status reporting.
• Identify and assess emerging risks using established risk frameworks and methodologies
• Support the development of a risk-aware culture within the FSCA by maintaining ongoing risk management awareness programmes.
• Provide training and support to staff on risk management practices and frameworks.
• Stay up to date with industry trends and best practices in risk management.

Requirements

• A bachelor’s degree with 5 years of relevant experience in enterprise risk management.
• The candidate must have a thorough knowledge of ISO31000 and COSO Enterprise Risk Management frameworks, along with an understanding of the Public Finance Management Act (PFMA), corporate governance and organisational risk management.
• The candidate must also have the ability to maintain and manage risk and compliance management software and systems.
• A professional certification in Risk Management and membership in the Institute of Risk Management South Africa (IRMSA) would be an added advantage.