Vacancies at CIC Insurance

PURPOSE:

Reporting to the Risk Manager, the Assistant Risk Manager will be responsible for identifying, analyzing, assessing and designing control/mitigation activities for the risks within the company and to ensure compliance to the set controls.

PRIMARY RESPONSIBILITIES:

Risk Management

• Assessment of risk positions and exposures for all CIC Group entities as well as actions taken to manage these risks.
• Analysis of trends and patterns and developing rules and strategies to improve the efficiency of risk identification and assessment
• Preparation and/or regular update of the risk framework, risk registers, risk appetite statements and risk tolerance statements for each of the CIC Group entities.
• Assessment of changes in CIC Group’s risk profile and pre-defined risk limits and advising management accordingly.
• Analyze emerging risks and trends, and develop strategies to mitigate exposure.
• Oversee development and implementation of risk mitigation plans and action tracking mechanisms.
• Ensure timely reporting to senior management and the Board, including updates on risk appetite, tolerance levels, and residual risk.
• Preparation of action tracking plans on risks and controls and monitoring agreed actions to closure.
• Maintenance of risk and incidence logs as well as monitoring of emerging risks.
• Monitor the residual risk within the set control;
• Coordinate risk champions in risk identification and analysis;
• Develop and recommend risk responses to management;

 Reporting & Communication

• Prepare high-quality reports and presentations for executive and board-level risk and compliance discussions.
• Provide quarterly status reports on data protection and risk management to senior and middle management.
• Escalate instances of non-compliance or high-impact risk events promptly, with recommended actions.

Leadership & People Management

• Supervise and coach the reportees, including performance appraisals and development planning.
• Foster cross-functional collaboration on risk and compliance initiatives across CIC subsidiaries.

Key Skills, Knowledge, Experience and Behavioural Competencies
Academic and Professional Requirements

• Education    Bachelor’s Degree    Bachelor’s degree from a recognized university.
• Professional Qualification    CISA/CISM/CRM or Progress in CPA.

Experience Required:

 Description    Required years of experience

• Relevant experience    5 years

go to method of application »

PURPOSE:

Reporting to the Director Risk & Compliance, the Risk Manager will be responsible for identifying, analyzing, assessing and designing control/mitigation activities for the risks within the company and to ensure compliance to the set controls.

PRIMARY RESPONSIBILITIES:

Risk Management

• Develop, implement, and continuously improve the company’s Enterprise Risk Management framework aligned with ISO 31000 and COSO ERM standards.
• Conduct comprehensive risk assessments across operational, strategic, financial, compliance, cyber, ESG, and reputational areas.
• Facilitate annual risk appetite and tolerance reviews with the Board and Executive Committee.
• Establish and maintain a centralized risk register and ensure regular updates by all departments.
• Develop, test, and monitor business continuity and disaster recovery plans.
• Provide actionable risk insights to support strategic decision-making.
• Assessment of risk positions and exposures for all CIC Group entities as well as actions taken to manage these risks.
• Analysis of trends and patterns and developing rules and strategies to improve the efficiency of risk identification and assessment.
• Preparation and/or regular update of the risk framework, risk registers, risk appetite statements and risk tolerance statements for each of the CIC Group entities.
• Assessment of changes in CIC Group’s risk profile and pre-defined risk limits and advising management accordingly.
• Analyze emerging risks and trends, and develop strategies to mitigate exposure.
• Oversee development and implementation of risk mitigation plans and action tracking mechanisms.
• Ensure timely reporting to senior management and the Board, including updates on risk appetite, tolerance levels, and residual risk.

Business Continuity

• Review and maintain the Business Continuity Management (BCM) Framework and ensure alignment to ISO 22301: 2019 and other laws, regulations and standards in relation to business continuity management.
• Manage the implementation and coordination of the Group’s Business Continuity Management (BCM) Framework and support the Management on Business Continuity Management (BCM) policies and practices, to identify, evaluate, and address the entire portfolio of strategic & operational risks and vulnerabilities that presents risks to the continuity of business in the event of various impacts.
• Coordinate the Annual Business Impact Analysis for all units across the Group and ensure documented Business Continuity Plans (BCPs) are in place and updated in line with the Company’s Business Continuity Management (BCM) policy and International best practice.
• Plan, coordinate, and document regular testing of Business Continuity Plans (BCPs) to validate their effectiveness, identify gaps, and ensure organizational readiness during potential disruptions.

Reporting & Communication

• Prepare high-quality reports and presentations for executive and board-level risk and compliance discussions.
• Provide quarterly status reports on data protection and risk management to senior and middle management.
• Escalate instances of non-compliance or high-impact risk events promptly, with recommended actions.

Leadership & People Management

• Supervise and coach the reportees, including performance appraisals and development planning.
• Foster cross-functional collaboration on risk and compliance initiatives across CIC subsidiaries.

Key Skills, Knowledge, Experience and Behavioural Competencies
Academic and Professional Requirements

• Education    Bachelor’s Degree    Bachelor’s degree from a recognized university.
• Professional Qualification    CISA/CISM/CRM or Progress in CPA.
• IRMCert / ISO 31000 is an added advantage

Experience Required:

• Relevant experience    8years