Risk Control Officer

The Risk and Insurance Officer is responsible for supporting the implementation and execution of the enterprise risk management (ERM) framework across the organization. The role focuses on identifying, assessing, monitoring, and reporting risks that could impact the company’s strategic objectives, operations, and compliance. The Risk Officer works closely with various departments to promote a risk‑aware culture and ensure alignment with industry standards such as ISO 31000 and COSO ERM.

• Assist in conducting enterprise-wide risk assessments and workshops.
• Support business units in identifying and documenting key risks, including strategic, operational, financial, and compliance‑related risks.
• Help develop and maintain the corporate risk register.

• Track the implementation of risk mitigation plans across departments.
• Prepare risk reports and dashboards for senior management and the Board Risk Oversight Committee (BROC).
• Monitor Key Risk Indicators (KRIs) and provide early warning alerts for emerging risks.

• Help maintain and update risk management policies, procedures, and templates.
• Ensure risk activities comply with regulatory requirements and internal standards.
• Support internal and external audit activities related to risk.

• Assist in promoting risk awareness and a proactive risk culture across the organization.
• Coordinate risk training sessions and awareness campaigns.
• Support business continuity and crisis management initiatives.

• Ensure alignment with risk‑related regulatory standards, including those from the DOE, ERC, and ISO guidelines.
• Monitor industry best practices and recommend enhancements to the risk framework.

• Bachelor’s Degree in Business, Finance, Risk Management, Engineering, or related field.
• At least 3–5 years of experience in risk management, audit, compliance, or operations, preferably in the energy, utilities, or infrastructure sectors.
• Familiarity with enterprise risk management frameworks such as ISO 31000 and COSO ERM.
• Strong analytical and problem‑solving skills.
• Effective communication and stakeholder coordination abilities.
• Proficiency in MS Excel, PowerPoint, and risk management tools is a plus.
• Risk certifications (e.g., CRMP, ISO 31000, ARM) are an advantage.