Risk Management Manager

The Risk Management Manager is responsible for leading the identification, assessment, monitoring, and mitigation of risks across the organization in alignment with the company’s Enterprise Risk Management (ERM) framework. The role ensures compliance with laws, regulations, and governance requirements of a publicly listed entity in Saudi Arabia, including Capital Market Authority (CMA) guidelines and Tadawul listing rules. It plays a critical part in preparing accurate and transparent risk disclosures for the annual Board of Directors report, in line with best practice corporate governance standards.

• Lead the implementation, maintenance, and continuous improvement of the organization’s ERM framework, policies, and procedures.
• Embed risk management practices into strategic planning, operational execution, and decision-making across all business units.
• Conduct periodic reviews of the ERM framework to align with regulatory changes and industry best practices.
• Coordinate enterprise-wide risk identification workshops and assessments with business and functional leaders.
• Maintain a comprehensive risk register covering financial, operational, strategic, compliance, reputational, ESG, and cyber risks.
• Assess risks based on likelihood, impact, and velocity, prioritizing in line with risk appetite and tolerance levels.
• Partner with functions to develop and implement mitigation strategies, controls, and contingency plans.
• Monitor key risk indicators (KRIs) and escalate emerging risks to senior management and the Board Risk Committee.
• Conduct follow-up reviews to ensure mitigation actions are implemented effectively and on time.
• Ensure risk practices comply with CMA, Tadawul listing rules, and Saudi Corporate Governance Regulations.
• Support audits related to risk management and coordinate alignment with compliance and internal audit teams.
• Prepare regular risk reports for senior management and the Board Risk Committee.
• Lead preparation of the risk section of the Annual Board Report, ensuring compliance with disclosure requirements.
• Oversee the Business Continuity Plan (BCP) and Crisis Management Framework, including testing and maintenance.
• Coordinate crisis responses to minimize operational and reputational impacts.
• Deliver risk awareness training and workshops to promote a risk-aware culture.
• Build strong relationships with regulators, external advisors, and stakeholders while staying ahead of emerging risk trends.
• Represent the company in external forums on risk management and governance.

• Bachelor’s degree in Finance, Accounting, Economics, Business Administration, or a related field.
• Professional certifications preferred: CFA, FRM, CRM, CPA, or equivalent.
• 7–10 years of experience in risk management, internal audit, or financial control, preferably in a publicly listed company or regulated industry.
• Strong knowledge of CMA guidelines, Tadawul listing rules, and Saudi Corporate Governance Regulations.
• Expertise in Enterprise Risk Management (ERM) frameworks and risk assessment methodologies.
• Strong analytical and problem-solving skills with the ability to assess and prioritize risks.
• Proficiency in developing risk registers, KRIs, dashboards, and reports.
• Experience in business continuity planning and crisis management frameworks.
• Strong stakeholder management and relationship-building skills.
• Excellent presentation, reporting, and communication skills for Board and executive audiences.
• High level of integrity, discretion, and professionalism in managing sensitive information.
• Bilingual proficiency in Arabic and English (written and spoken).