Section Head, Enterprise Risk Management & Business Continuity Management (ERM & BCM)

Life at U Mobile
We are Passionate, Innovative, Trustworthy, Team-Oriented & Fun-Loving.
At U Mobile, we are always on the lookout for great talents and passionate individuals to join our growing team.
Let’s start your journey with an award-winning organization!

Top Reasons To Join Us!

• Awarded For Most Preferred Employers in Telecommunication Industry (2022, 2023 & 2024)
• Bronze Winner in Cross-Generational Workforce Engagement (2024)
• Gold Winner for Excellence in Workplace Culture (2021)
• Comprehensive medical, dental, optical and insurance benefits
• Flexi working hours arrangements
• Staff Line & Device Subsidy
• Smart Casual Attire
• Child Parental Care Leave
• Convenient location with access to public transport (Imbi Monorail/Bukit Bintang MRT)
• Special employee discounts for selected F&B Brands

Job Summary
The Section Head, Enterprise Risk Management (ERM) & Business Continuity Management (BCM) is responsible for managing the ERM and BCM functions within the Finance Division. The role ensures effective implementation of ERM and BCM frameworks in line with regulatory requirements, governance standards, and business objectives.

This position provides oversight of risk identification, assessment, and monitoring, as well as continuity planning to safeguard critical operations. The role manages one team member and works closely with risk owners and stakeholders across the organization to strengthen risk awareness, resilience, and support sustainable business performance.

The Day-To-Day Activities

• Enterprise Risk Management (ERM)
  • Lead the design, implementation, and continuous enhancement of the ERM framework in alignment with regulatory requirements and internal governance standards.
  • Drive enterprise-wide risk identification, assessment, monitoring, and reporting to management and Board Committees.
  • Facilitate risk workshops, profiling, and scenario analysis to support informed decision-making.
  • Provide independent risk insights and recommendations to strengthen controls and mitigation actions across business units.
• Business Continuity Management (BCM)
  • Oversee the development and maintenance of BCM strategies, policies, and plans, including crisis management and disaster recovery.
  • Coordinate business impact analyses (BIA), continuity planning, and BCM risk assessments across the organization.
  • Lead BCM drills and testing, ensuring readiness for disruptive events and continuous improvement of plans.
  • Ensure compliance with industry standards (e.g., ISO 22301) and regulatory expectations for business continuity.
• Compliance
  • Ensure ERM & BCM practices comply with internal policies, external regulations, and industry guidelines.
  • Monitor regulatory developments (e.g., MCMC, Bursa Malaysia) and update frameworks accordingly.
  • Support management in addressing compliance requirements and ensuring governance processes are properly followed.
• Internal Control
  • Oversee the review and monitoring of internal control effectiveness within risk and continuity processes.
  • Collaborate with Internal Audit and relevant business units to address audit findings and strengthen controls.
  • Recommend process improvements to close control gaps and reinforce accountability across functions.
• Leadership & Governance
  • Manage and develop the ERM & BCM team, including one Manager, through guidance, coaching, and performance oversight.
  • Collaborate with senior leaders, risk owners, and stakeholders to embed a strong risk, compliance, and resilience culture across the company.
  • Support the Head of Financial Strategy & Investor Affairs in preparing risk and BCM reports and updates for Board/Audit Committee engagements.
  • Stay abreast of emerging risks, compliance requirements, and industry best practices to keep frameworks relevant and effective.

About You

• Bachelor’s degree in Finance, Accounting, Business, Risk Management, or related field.
• Strong knowledge of ERM, BCM, compliance, and internal control frameworks (e.g., ISO 31000, ISO 22301, COSO).
• Minimum 12 years’ working experience, with at least 5 years in risk management, business continuity, compliance, or internal control functions, preferably in the telecommunications or financial services industry.
• Proven experience in leading ERM and BCM frameworks, regulatory reporting, and risk governance processes.
• Prior experience in leading teams and managing cross-functional initiatives.
• A strategic mindset with advanced technical skills in data visualisation tools such as Power BI, Tableau, or equivalent is an added advantage.
• Strong business acumen with the ability to align ERM & BCM outcomes to organizational strategy.
• Resilient, adaptable, and proactive in driving change and embedding risk culture.
• Excellent stakeholder management and communication skills, with the ability to present to senior management.
• Sound understanding of compliance, regulatory requirements, and internal control principles.
• Agile and adaptable to changing business needs and priorities to meet reporting deadline.

What’s Next ?
Once you have applied online, our team will review your application and due to a high volume of applications, only shortlisted candidates will be notified.