Manager - Risk and Compliance at Kenya Red Cross Society

Reporting to:              

Secretary General

JOB SUMMARY

This position is responsible for the Society’s Enterprise Risk Management, which includes oversight and leadership of all risk management activities and compliance to policies across the Society and its affiliate entities. The manager will oversee the risk management framework and align to policies, tools and practices in addition to providing leadership in driving a culture in which Risk Management has sufficient voice and is embedded in all key decision-making processes.

KEY RESPONSIBILITIES:

Risk Management Framework execution

• Advise and technically support the Society and KRCS commercial units on risk management matters, while working with Risk Owners and Risk champions towards discharging relevant responsibilities and accountabilities to manage risks collaboratively in compliance with agreed upon policies and procedures.
• Provide technical guidance in the formulation and implementation of the organization’s risk appetite statement and risk tolerance indicators suitable to KRCS needs, creating mechanisms for streamlining escalation protocols where key risks exceed the Society’s agreed upon risk appetite.
• Implement Risk management Framework and related reporting mechanism that includes risk management indicators and targets as a basis for achieving the desired organizational risk maturity level.
• Work and develop the capacity of Risk and Compliance champions to ensure that risk registers are validated and updated on a regular basis.
• Advise and monitor risk treatment and response plans in collaboration with regional and HQ risk management champions.
• Facilitate and/or participate in risk assessments for all key business processes, high risk initiatives and large programs as requested.
• Support the organization’s fraud risk management and implementation plan across the organization to enhance awareness of fraud risks and ensure that fraud risk assessments are completed on a cyclical basis by relevant risk entities.
• Consolidate, disaggregate and report on risk data across the Society by undertaking qualitative and quantitative analysis of risks in order to review and determine the risk profile for the Society.
• Monitoring and reporting of compliance with Society’s risk policies and risk framework.
• Keep abreast of risk events locally and globally that may impact KRCS strategic direction and operations and keep monitoring risks continuously.
• Ensure that Risk and Compliance considerations are properly reflected in the decision-making processes of KRCS. Champion the risk aware culture within KRCS.
• Perform stress testing and modelling of risks where appropriate.
• Responsible for consulting and advising on actions to address significant risk issues and events, table recommendations to the risk committee for approvals.
• Responsible for the day-to-day management of the Risk and Compliance teams
• Closely Work with Internal Audit and help identify areas of existing or potential risks to be addressed.
• Capacity Building
• Conduct risk management sensitization sessions to new staff, project teams, governance members, regional teams, etc.
• Provide technical support required to be able to adequately identify, evaluate, mitigate, and monitor the organization's operational and strategic risks.
• Build internal capabilities and competencies related to general risk management

Reporting

• Prepare a monthly and quarterly risk reports for use at the Senior Management meetings, Management Risk Committee and Board ARC Committee that provides an overview of the risks faced by KRCS together with recommended actions where appropriate.
• Develop regular risk reporting for each function that provides functional heads with the quantitative and qualitative measures identified with respect to risk exposure and control compliance.
• Prepare risk management reports at various levels as required
• Report on all risk events on system failures and other emergency issues.

DESIRED COMPETENCIES:

Technical:

1. Strong analytical and risk assessment skills
2. Adaptable to emerging challenges
3. Excellent written and verbal communications skills including effective report writing ability.
4. Strong relationship management and Interpersonal skills.
5. Confident and self-motivated.
6. Proven ability to implement a successful risk strategy in a medium/large organization.
    

EDUCATION AND EXPERIENCE:

1. Bachelor’s degree in finance, business administration, commerce, economics, information systems management or equivalent field plus relevant professional qualifications. Master’s degree will be an added advantage.
2. Professional risk certifications from IRM, ISRM, ICPAK or any relevant professional body
3. At least five (5) years of relevant professional experience in risk management, risk governance and compliance.
4. Experience in risk and organizational change management, particularly business process review, in a non-profitable international organization is preferred.
5. Proven ability to develop and conduct organizational training and awareness with a diverse audience.