Compliance Section Head

Company Description

Southern Province Cement Company (SPCC) was established in 1978 as a shareholding company. With its initial plant in Jazan, SPCC has expanded to include the Bisha and Tahamah plants, significantly increasing production capacity. The company has grown to a paid-up capital of SR 1.4 billion, demonstrating its substantial presence in the cement industry. SPCC continually develops its operations to meet the high demand in the cement market, ensuring efficient supply to challenging regions.

Job Purpose

Developing and implementing compliance policies within the company, ensuring the protection of digital assets and compliance with regulatory requirements. Works directly with other departments to ensure adherence to information security and data governance standards.

Key Duties & Responsibilities

• Adhere to internal policies, industry regulations, and legal obligations of governance, cybersecurity, and risk. Maintaining the integrity of digital assets and mitigating risks.
• Prepare compliance policies, procedures, roadmap and controls to ensure full compliance with laws and regulations.
• Develops, implements and monitors the company's compliance management program in accordance with ISO31000 and ISO37000 standards to ensure improved performance and risk avoidance.
• Generate a compliance risk register, including identifying and assessing risks, taking necessary measures to mitigate them, and monitoring them regularly.
• Monitor compliance with applicable laws, regulations and standards in the areas of governance, risk, compliance and cybersecurity.
• Ensure compliance with cybersecurity frameworks such as ISO 27001 and monitor compliance with local regulations related to data protection.
• Monitor daily operations to ensure compliance with regulations and internal policies and promote a culture of compliance.
• Assure employee compliance with professional conduct regulations and report any violations or irregularities.
• Check the compliance reports, audits in the Governance, Risk and Compliance Department, and periodically update risk assessments.
• Check the application of compliance standards in financial and administrative operations to ensure transparency and integrity.
• Contribute to the development of Key Performance Indicators (KPIs) to measure and improve the effectiveness of the compliance system.
• Follow up on complaints and inquiries related to compliance and work to resolve them effectively and quickly.
• Coordinate with legal and regulatory departments to provide guidance and advice on complex cases.
• Followup on internal and external reports of non-compliance and recommend corrective actions.
• Coordinate with IT, HR, Legal, and Finance departments to ensure integration of compliance and risk management practices.
• Enhance a work environment that supports adherence to ethical and legal standards across all departments.
• Responsible for monitoring and implementing best practices to ensure improved operations and increased efficiency to enhancing the company's competitiveness.
• Prepare periodic reports to the GRC Manager, outlining the performance of the Governance Department and suggestions for continuous improvement.
• Organize the workflow in the department, distribute work to its employees, coordinate their activities, and direct them to ensure that the specified objectives are achieved efficiently and effectively.
• Perform any other similar tasks or responsibilities that fall within the scope of his jurisdiction and are based on a mandate from the line manager.

Additional Tasks

1.Perform any duties requested by the direct manager.

2.Apply Total Quality Management requirements & procedures.

3.Apply all requirements of the integrated system of quality, environment, Safety & industrial health as per the requirements of ISO 14001/2015 - ISO 45001/2018 - ISO 9001/ 2015

4.Commit to the declared tasks in the emergency plan in case of emergencies.

Key Performance Indicators ( KPI’s )

1.% Completion rate of compliance awareness programs.

2.% Employee compliance with compliance regulations and procedures.

3.% Completion rate of compliance development plan compared to the target.

4.% Accuracy of periodic reports that verify compliance.

Key Competencies ( Core, Functional, Managerial )

·Positive reinforcement

·Effective collaborative teamwork

·Customer focus

·Initiative and courage

·Strategic direction

·Team leadership

·Analytical thinking

·Problem solving and decision making

·Attention to detail

·Planning & organizing

Job Specifications

Education: Bachelor's degree in Information Technology/Computer Engineering. An MBA or professional certification (CISA, CISSP, CISM) is preferred.

Experience:From 7- 10 years of experience in the same field in industrial companies is a must.

Analytical Skills: Strong analytical and problem-solving skills, with the ability to translate data into actionable insights.

Strategic Thinking: Demonstrated ability to think strategically and develop innovative solutions to complex challenges.

Computer Skills: Excellent Proficiency in using all MS Office packages.

Language Skills: Very Good command of English.