NEOM is an accelerator of human progress and a vision of what a new future might look like. A region in northwest Saudi Arabia on the Red Sea, NEOM is being built from the ground up to include hyperconnected, cognitive cities, ports, next-generation infrastructure and industries, enterprise zones, research centers, sports and entertainment venues and tourist destinations. As a destination, it will be a home for people who dream big and want to be part of building a new model for exceptional livability, creating thriving businesses and reinventing environmental conservation. As a workplace, it is a place for people who share our core values of care, curiosity, diversity, passion, respect, and becoming a catalyst for change. Are you ready to help NEOM find solutions to the world’s most pressing challenges? Are you prepared to create a lasting legacy that benefits generations to come? Then we want to hear from you! |
Implementation of the Risk Framework for NEOM Company and building risk function - Support Operational Risk hiring process (for positions reporting into the Manager).
- Support the development of full year Operational Risk plans incorporating key activities that can improve the maturity of risk management activities. Support integration with the overall ERM Function’s yearly and long-term plans.
- Manage performance of the Operational risk vertical’s employees (for direct reportees). This includes choosing metrics and setting targets (to be conducted jointly with the ERM Leadership and HR function), identifying relevant training programs, creating targeted employee level development plans, enhancing team capabilities, and/or coaching team members.
Risk Governance - Support Risk Governance vertical (of ERM Function) to maintain the formalized risk and control policies, frameworks, and procedures.
- Develop Operational risk management processes. Integrate these processes with ERM’s Framework, guidelines, and risk management processes.
- Support development and maintenance of risk and control taxonomy linked to operational areas.
- Assist in defining and/or updating relevant Risk Appetites and limits / thresholds applicable to Operational risks
Risk Monitoring and Reporting - Support the monitoring of relevant Operational Risk Appetites, report breaches and propose treatment steps.
- Conduct regular risk and control identification and assessment programs with broader NEOM stakeholders, and report results to Senior Management.
- Implement the ERM governance documents in Operational risk vertical (including ERM Policy, ERM Framework, Internal Controls Framework, etc.)
- Maintain Operational Risk and Control Matrices (‘RCMs’). This includes identifying new / emerging risks, assessing control effectiveness, and defining appropriate treatment plans for risk mitigation (with support from front line stakeholder groups).
- Conduct the periodic assessment of NEOM’s Operational Controls. Ensure that adequate processes (aligned with the ERM and Internal Controls Framework) are implemented for self-assessment, monitoring, testing and reporting of control effectiveness.
- Implement appropriate processes to monitor the timely rollout of treatment plans. Monitor Operational Risks treatment plans, including escalating delayed treatments to relevant senior management.
- Support the business users in identifying best practice aligned risk treatment actions, with focus on improving business activities and mitigating underlying risk exposures.
- Support the identification, assessment, treatment, and monitoring of Operations linked key risks, principal risks and aggregated risk exposures.
- Develop related Key Risk Indicators (‘KRIs’), by closely collaborating with related stakeholders. Ensure that KRI limits are set and linked with Risk Appetites. Further, develop KRI data collection and evaluation mechanisms to ensure periodic monitoring.
- Conduct independent deep-dive reviews of Operational risk and control areas, related NEOM Entities, or risk incidents/ control breaches. Accordingly, also develop reports highlighting factual findings, root-causes, and treatment actions.
- Conduct regular on-time reporting of Operational risks to relevant stakeholders (including senior management, management committees, board committees, etc.).
- Timely collect and store applicable Operational risk data.
Risk Tools and Technology - Develop appropriate Operational risk management tools (e.g., continuous control monitoring tools, risk quantification methods/ models, etc.).
- Support the implementation and/or enhancement of core GRC systems and tools
- Where required, independently validate tools, and systems/ applications used in Operational areas.
Collaboration - Provide strategic and expert advice to the Senior Manager – Operational Risks, to other ERM Team Members, and to broader stakeholder groups, on Operational risk management, and associated governance.
- Promote a strong risk culture across NEOM.
- Promote a strong culture of collaboration across the ERM Function.
- Develop and conduct regular trainings for NEOM staff on Operational risk matters.
- Identify relevant emerging best practices in Operational risk management and ensure their implementation in NEOM if appropriate.
- Assist NEOM’s engagement with external parties, including external auditors, appointed consultants, and regulatory bodies.
- Work with other Risk Domain teams (i.e., Strategic and Financial Risks, Project Risks, and Risk Governance), providing input on operational risk exposures, control weaknesses, risk interdependencies, etc.
Culture and Values - Embrace NEOM’s culture and Values https://www.neom.com/en-us/about
- Act with honesty and integrity by following best practices, and upholding the robust standards and expectations set out in NEOM’s Code of Conduct.
- Maintain fair, ethical and professional work practices in accordance with NEOM’s Values and Code of Conduct.
|
BACKGROUND, SKILLS & QUALIFICATIONS Knowledge Skills and Experience - 7+ years of experience focusing on risk management and internal controls.
- Demonstratable exposure to large real estate companies, multi-nationals, consulting, large-scale manufacturing companies, utilities would be an advantage.
- Experience in the GCC region would be an advantage.
- Advance level of knowledge of ERM and Internal Controls frameworks (e.g. COSO, ISO, COBIT) and other best practices.
- Demonstratable expertise in Operational risk domains including experience of conducting risk reviews, control assessments, and enhancements.
- Knowledge of the principles, 1st-line procedures, and practices of operations and technology.
- Experienced in implementing automated controls systems linked to wider GRC technologies is desirable.
- Change leadership and organizing skills. A strong and organized personality.
- Self-confidence and the ability to communicate with others. Must be skillful at building collaborative relationships across NEOM and its Subsidiaries and across all lines of management.
- Ability to handle confidential and sensitive matters.
- Strong analytical skills, particularly in regard to assessing risk impact, likelihood or assessing internal control weaknesses.
- Ability to communicate clearly and effectively in English, both orally and in writing. Knowledge of other languages is desirable.
- Advanced skills in report-writing and presentation techniques.
Qualifications - Bachelor’s degree in Accounting / Business Administration / Technology / Engineering or similar from an accredited university. A postgraduate degree would be an advantage.
- Additional certifications from internationally recognized bodies would be an advantage (e.g., CA/CPA or equivalent, CIA, CRMA, CISA, CFE, etc.).
|