Enterprise Risk Management Manager

We are seeking a strategic and hands-on Enterprise Risk Management (ERM) Manager to establish and lead the risk management function across multiple regulated subsidiaries, including peer-to-peer lending, insurance brokerage, and financial aggregator businesses.

This role will be responsible for setting up the group’s risk management framework, performing risk assessments, ensuring regulatory compliance, and launching operational risk initiatives such as RCSA and incident tracking. The ERM Manager will also play a critical role in Anti-Money Laundering (AML) compliance, including developing AML rules and collaborating with IT to ensure proper implementation in systems.

Once foundational elements are in place, the role will expand to manage the Policies & Procedures team, ensuring operational risk controls are aligned with business processes.

• Design and implement the ERM framework in the peer-to-peer lending, insurance brokerage, financial aggregator,and multifinance.
• Develop risk governance structure, risk appetite, and risk policies.
• Conduct risk identification, assessment, and prioritization across diverse business models by analyzing data and evaluating impact and likelihood of identified risks on business operations.

Regulatory Compliance & Reporting

• Ensure compliance with OJK and other regulators on risk-related requirements across subsidiaries.
• Prepare and submit risk profile reports, risk self-assessments, and ad hoc regulator requests.
• Coordinate with internal teams and regulators during audits and inspections.
• Launch and facilitate Risk and Control Self-Assessments (RCSA).
• Set up and manage a Risk Incident Database to log, track, and analyze operational risk events.
• Develop internal risk dashboards and reporting formats to support risk-informed decisions.

Anti-Money Laundering (AML) Compliance

• Develop, maintain, and update AML rules, scenarios, and red flags according to regulatory guidelines and best practices.
• Work closely with the IT department to translate AML requirements into system-based monitoring rules and alerts.
• Oversee transaction monitoring, unusual activity reports, and internal escalation processes.
• Stay updated on AML regulations and ensure the organization's AML practices remain compliant and effective.

Qualifications

• Bachelor’s degree in Finance, Law, Industrial Engineering, Mathematics or a related field (Master’s or certifications such as FRM, CAMS, CRMP preferred).
• At least 5 years of experience in enterprise or operational risk managementwith at least 2 yearsas a Manager or Assistant Manager.
• Preferably has a background in Banking/Financing institutions (not from other P2P/Fintech companies), preferably part of a conglomerate.
• Solid understanding of Indonesian financial regulations, especially from OJK, including those related to AML and risk management.
• Hands-on experience in implementing ERM frameworks and AML programs
• Has experience in conducting RCSA (as the PIC for Operational Risk RCSA), including involvement in the development and implementation of RCSA from the ground up
• Holds a BSMR certification from LSPPI or a banking-recognized BSMR certification from LSPMR, at least Level 2 or 3.
• Strong project management skills with the ability to lead cross-functional initiatives (e.g., system implementation for AML rules).
• Strong communication and analytical skills, with the ability to work independently in a fast-paced, multi-entity environment.

Preferred Qualifications:

• Experience in a group-level compliance or risk function across regulated financial businesses
• Familiarity with digital product environments, and tech-driven AML/monitoring tools.
• Comfortable bridging between compliance/risk frameworks and technical system implementation.