Executive, Risk Management & Integrity

To assist the Manager in the day-to-day operations and implementation of activities under the Risk Management & Integrity Unit, particularly in the areas of data protection, policy and procedure management, and process improvement.

Acts as a support resource to ensure effective coordination and implementation of the Company’s policies and procedures across the Group.

• Assisting in implementing and monitoring data protection practices to ensure compliance with the Personal Data Protection Act (PDPA).
• Implementation & Monitoring: Help put the organization’s data protection practices into effect and ensure ongoing compliance with the PDPA.
• Policy & Documentation: Support the drafting and revision of data protection and privacy policies, as well as related operational procedures.
• Training & Awareness: Coordinate the rollout of PDPA training sessions, manage attendance records, and maintain training materials.
• Incident Management: Assist in handling data breach incidents by compiling reports, maintaining logs, and tracking corrective actions.
• Assessment & Review: Support the execution of Data Protection Impact Assessments (DPIAs) and general compliance reviews.
• To support the formulation, review, and maintenance of internal policies and procedures (P&P) to ensure effective governance and alignment with organisational objectives.
• Development and Review: Assist in the development, drafting, formatting, and formal review of all internal policies, procedures, and SOPs.
• Coordination and Consistency: Coordinate and gather input from various departments during the drafting/review process to ensure all documents adhere to company standards and consistency.
• Record Management: Maintain and update a central repository or database for all approved organizational policies and procedures.
• Tracking and Timeliness: Track policy review cycles and monitor expiry or revision dates to ensure timely and necessary updates are executed.
• Communication and Awareness: Support the communication of newly approved policies to relevant departments and assist with related awareness efforts.
• To attend to ad hoc matters and assignments as and when required by the Manager or Head of Department.
• Ad Hoc Support: Assist with non-routine projects, investigations, or other duties as assigned by the unit.
• Administration: Perform crucial administrative and coordination functions necessary for the efficient operation of the Risk Management and Integrity Unit.

• Professional Qualification/Degree in Law/ Business Administration/ Public Policy/ Governance.
• 1-3 years of experience in data protection/ privacy compliance, risk management, policy & procedures, integrity, or whistleblowing frameworks.
• Basic understanding of PDPA, internal control, governance, and compliance principles.
• Strong organisation, coordination, and communication skills.
• Detail-oriented with good analytical and writing ability.
• Proficient in Google Workspace (Docs, Slides, Sheets).
• Ability to maintain confidentiality and work with integrity.
• Good IT knowledge and analytical skills.
• Good teamwork and follow-through attitude.
• Willingness to learn and support continuous process improvement initiatives.