To lead and oversee the enterprise -wide risk management framework for the PERNAS Group, encompassing strategic, credit, market, operational, financial, compliance, and emerging risks.

The role supports the Board Audit & Risk Committee and Management by ensuring that risks arising from our client’s investment, financing, franchising, SME development, and subsidiary operations including credit and operational risk exposures are systematically identified, assessed, mitigated, monitored, and reported in line with approved governance standards and best practices.

1. STRATEGY & GOVERNANCE

Lead the development and implementation of our client's Group’s Enterprise Risk Management (ERM) philosophy, framework, and strategy for endorsement by the Board and ongoing oversight by BARC.

Oversee and maintain risk management policies to ensure alignment with organisational strategies, risk appetite, and governance frameworks.

Provide independent risk advisory to the Board, BARC, and Management on corporate

strategy, business plans, budgets, investments, joint ventures, franchise programmes, and new business initiatives.

Advise on the establishment and review of our client's Group’s risk appetite and tolerance levels at enterprise and subsidiary levels.

Assess and provide risk opinions on proposals for new products, services, investments, and business ventures prior to approval.

Monitor changes in our client's Group’s overall risk profile and escalate material risk issues to Management and BARC in a timely manner.

Cultivate and embed a strong risk management culture across the organisation, ensuring risk considerations form part of day-to-day decision making.

2. ORGANISATION & ENTERPRISE RISK OVERSIGHT

Coordinate and oversee enterprise-wide risk management activities covering Credit Risk, Market Risk, Operational Risk, Financial Risk, Compliance Risk, and Emerging Risks across our client's organization and its subsidiaries.

Provide specialist risk advisory and support to business divisions and subsidiaries to enhance risk identification, assessment, and mitigation practices.

Establish consistent risk definitions, methodologies, and reporting standards to ensure clarity and comparability across the Group.

Recommend and support appropriate risk governance structures, reporting lines, and organisational alignments to BARC where required.

Continuously enhance and embed the enterprise risk framework to ensure it remains fit for purpose and aligned with our client’s evolving business model.

3. CREDIT & INVESTMENT RISK

i. Oversee the review and enhancement of credit and investment risk assessment processes, incorporating both qualitative and quantitative methodologies in line with market best practices.

ii. Develop, review, and recommend credit risk policies, guidelines, procedures, and risk limits for approval by BARC.

iii. Conduct portfolio monitoring, concentration analysis, stress testing, and provisioning assessments for financing and investment assets.

iv. Provide independent credit risk evaluation and support credit referral processes for financing, investment, and strategic proposals.

v. Identify and analyse key credit risk factors affecting our client’s financing, investment, and franchise-related exposures.

vi. Review and recommend relevant policies and guidelines, including Shariah-related matters where applicable.

4. OPERATIONAL RISK, INTERNAL CONTROLS & BUSINESS CONTINUITY

i. Establish, communicate, and embed appropriate operational risk management methodologies, tools, and techniques, including Risk & Control Self-Assessment (RCSA).

ii. Monitor and report operational and financial risks relating to people, processes, systems, fraud, compliance, and regulatory requirements.

iii. Review and enhance internal controls, SOPs, and governance processes to strengthen operational resilience.

iv. Support and coordinate the development, maintenance, and testing of Business Continuity Management (BCM) and Disaster Recovery Plans (DRP) at operational and strategic levels.

v. Contribute to the enterprise-wide business continuity programme, including tools, guidelines, and awareness initiatives.

5. ANALYSIS, REPORTING & ASSURANCE

i. Prepare periodic risk reports, dashboards, and analysis for Management, BARC, and the Board, highlighting portfolio performance, key risk exposures, trends, and mitigation effectiveness.

ii. Identify and analyse key market risk issues, including liquidity and currency exposures, relevant to our client’s operations.

iii. Collaborate with Internal Audit to align enterprise risk assessments with audit planning and monitor corrective action plans.

iv. Identify system and process improvements to ensure availability of accurate and timely risk data for decision making.

6. PEOPLE MANAGEMENT & CAPABILITY DEVELOPMENT

i. Propose annual manpower planning, competency development, and budget requirements for the Risk Management Department.

ii. Lead, manage, coach, and develop Risk Management staff to achieve departmental objectives and performance targets.

iii. Implement continuous training and awareness programmes to strengthen risk management capability across our client's Group.

iv. Support succession planning and long-term capability development within the Risk Management function.

i. Member of the Management Investment Committee (MIC).

ii. Perform any other duties as assigned by Management or the Board in relation to risk governance and oversight.