Director (Risk Management)

  • Job Category
    General Management
  • Job level
    Senior Management
  • Contract type
  • Location
  • Salary
    S$7500 - S$11000

Job Description

Job Purpose

This role is to prepare the organisation for BizSafe Level 3 and Data Protection Trustmark (DPTM) Certification including guidance and training for the data protection governance

Identify, address and document the following risks:

 PDPA compliance risks.

 Data inventory risks

 Business process risks.

 On-site audit of physical risks.

Maintain a Risk Register - Identify and document inherent risks (with related treatments and controls) relating to processing of personal data together with related treatments and controls.

Prepare and deliver a draft compendium of standard data protection policies (“Standard DP Policies”) and, where applicable, standard operating procedures for our organisation's review.

Develop a compliance manual with recommendations and next steps for organisation's follow-up action and consideration

Communicate organisation's data protection policies.

Key Responsibilities 

 Prepare organisation for BizSafe Level 3 and Data Protection Trustmark (DPTM) Certification

 Identify areas of risk (both financial and non-financial), as outlined in the Charity Council’s Enterprise Risk Management (ERM) framework.

 Work closely with all divisions and preside over efforts to implement staff training and self-assessments with regards to ERM.

 Review THKMC’s existing Personal Data Protection Policy and Standard Operating Procedures (SOPs) for compliance with the Personal Data Protection Act (PDPA).

 Work with all divisions to put in place and enforce all Workplace Safety and Health (WSH) practices in preparation for BizSafe Level 3 certification.

 Ensure all Divisions are equipped with knowledge of risk assessment and guided on how to address the identified areas of risks and to drive compliance for ERM, PDPA and WSH protocols.

 Refine the ERM Framework and Plan based on changes within the organisation.


Degree or Masters holder, DPTM Certification is preferred

 Possess at least 8 years of relevant experience. Proven project expertise in enterprise risk management and compliance is a must.

 Strong communications skills, proficient in both written and spoken English .

Closing on 25 Jan 2021