1. Role Objective

JOB CONTENT

The Governance, Risk & Compliance (GRC) Lead is responsible for supporting the Executive Management in establishing, maintaining, and continuously enhancing the Company’s governance, risk management, and compliance frameworks to ensure alignment with regulatory requirements, shareholder expectations, and best practices. The role acts as a key interface with the Management and Audit & Risk Committee, providing oversight, coordination, and reporting on governance and risk matters, promoting a strong control environment, and embedding a culture of accountability, transparency, and compliance across the organization.

2. Duties and Responsibilities

Strategic

1. Ensure the appropriate implementation of the Enterprise Risk Management (ERM) framework, policies, and procedures in line with international best practices (ISO 31000 / COSO ERM) and company governance requirements.
2. Lead the identification, assessment, and prioritization of strategic risks impacting PODC’s long-term objectives and growth plans.
3. Advise Executive Management and the Board / relevant committees on emerging risks, risk appetite, and risk tolerance levels.
4. Integrate risk management into strategic planning, business planning, and major investment or expansion initiatives.
5. Promote a strong risk culture across the organization through awareness, training, and leadership engagement.

Financial

1. Identify, assess, and monitor financial risks including budget overruns, revenue volatility, contractual risks, insurance exposure, and financial controls.
2. Support the development of risk-based financial strategies by analyzing trends, variances, and potential financial impacts.
3. Coordinate with Finance to ensure adequate insurance coverage, claims management, and risk transfer mechanisms.
4. Contribute to cost optimization by reducing risk-related losses and enhancing preventive controls.

Operational

1. Identify and assess operational risks across port operations, marine activities, logistics, infrastructure, IT systems, and support services.
2. Develop and maintain a Corporate Risk Register, ensuring regular updates and validation with risk owners.
3. Monitor the implementation of risk mitigation actions and report on their effectiveness.
4. Review major contracts, projects, and operational changes to identify risk exposure and recommend controls.
5. Coordinate with HSE, Quality, Internal Audit, Legal, IT, and Operations to ensure integrated risk coverage.
6. Establish risk indicators (KRIs) and dashboards to support proactive risk monitoring.
7. Support business continuity planning (BCP) and crisis management preparedness.
8. Ensure compliance with regulatory, contractual, and corporate governance requirements related to risk management.

Governance & Compliance

1. Support Board Committees (Audit Committee / Risk Committee / RCC) by preparing compliance reports, presentations, and dashboards.
2. Ensure alignment between risk management, internal controls, internal audit findings, and compliance requirements.
3. Monitor changes in laws, regulations, and external environment that may impact PODC’s risk profile.
4. Develop compliance checklist and conduct gap analysis on the applicable laws and regulations
5. Act as a focal point for external auditors, regulators, insurers, and consultants on risk-related matters.

Corporate Governance Framework

1. Support the implementation and maintenance of the company’s corporate governance framework, including policies, charters, and delegation of authority.
2. Coordinate governance matters for the Board and committees, including preparation of papers, tracking resolutions, and monitoring action items.
3. Maintain the governance policy register and monitor compliance with approved governance policies and regulatory requirements.
4. Support ethics, conflict-of-interest declarations, and governance disclosures, ensuring proper documentation and reporting.
5. Perform any other risk-related duties as assigned by Management.

MINIMUM EDUCATION & QUALIFICATIONS

Education:

• Bachelor’s Degree in Risk Management, Finance, Accounting, Business Administration, Engineering, or related field or equivalent or as approved in the Minimum Qualifications and Experiences matrix.

Experience:

• 6-8 years of progressive experience in Risk Management, Governance, Internal Audit, or Compliance, preferably in Big 4 audit firms. or related field or equivalent or as approved in the Minimum Qualifications and Experiences matrix.

Special Skills & Knowledge:

• Enterprise Risk Management (ERM)
• Risk Assessment & Mitigation Techniques
• Strategic & Analytical Thinking
• Strong Stakeholder Management
• Report Writing & Board-Level Communication
• Leadership & Team Management
• Excellent Communication Skills (English & Arabic)
• Proficiency in MS Office (Excel, PowerPoint) and risk management tools