Job description

The role leads the organization’s enterprise-wide governance, risk, and compliance framework, ensuring transparency, accountability, and regulatory alignment across all business units and operational systems. Responsibilities include establishing and maintaining the Enterprise Governance Framework, leading policy governance across departments with version control, ownership, approval workflows, and lifecycle management, and facilitating cross-functional committees such as the Risk Committee and Compliance Steering Group. The position develops and implements a comprehensive risk management framework integrating strategic, operational, financial, and compliance risk domains, maintains the Enterprise Risk Register, leads risk assessments and workshops, and oversees Business Continuity Planning and Crisis Management exercises. Compliance responsibilities include overseeing regulatory adherence to national, regional, and international frameworks such as PDPL, NCA standards, ISO certifications, labor regulations, financial reporting rules, and corporate governance requirements, supervising the Data Protection & Privacy Officer, coordinating internal audits and certification efforts, and maintaining a Regulatory Obligations Register mapping applicable laws and controls. Legal coordination includes liaising with internal and external counsel to operationalize regulatory requirements, reviewing compliance implications of client contracts, MSAs, and DPAs, coordinating responses to client audits and regulatory inquiries, and monitoring regulatory developments relevant to SaaS operations, AI applications, and cross-border hosting. Ethics and internal control responsibilities include overseeing the Code of Conduct, whistleblowing channels, fraud prevention, conflicts of interest, procurement integrity, and due diligence for vendors, partnerships, and acquisitions. The role drives a risk-aware, compliance-first culture, partnering with HR on training programs and ensuring departmental ownership of governance responsibilities. Continuous improvement duties include monitoring emerging regulations, improving governance maturity, enhancing audit readiness, refining control design, and delivering periodic reports to executive leadership and the board on risk posture and compliance performance.