General Responsibilities:
System Management & Integration
- Administer and maintain the risk and resilience platforms (e.g., GRC tools, BCM software, crisis management dashboards).
- Ensure seamless integration of risk systems with ERP, cybersecurity systems, SCADA (if applicable), and internal reporting tools.
- Automate risk reporting and scenario modeling, enabling real-time visibility and alerts.
Risk & Resilience Data Management
- Ensure accurate and timely capture, classification, and storage of risk events, incidents, and mitigation actions.
- Maintain metadata integrity and implement robust access controls and version management.
Governance & Compliance
- Ensure IT systems support ISO 31000, ISO 22301, NCEMA, and cybersecurity regulations.
- Prepare for audits and external reviews; maintain digital traceability and audit logs of risk-related actions.
User Support & Training
- Provide user training, manuals, and support to all departments using the risk/resilience platforms.
- Serve as the point of contact for troubleshooting, system enhancement, and feedback loops with vendors.
Project & Vendor Management
- Manage the lifecycle of technology solutions (requirements gathering, configuration, testing, deployment, upgrades).
- Liaise with external vendors and ensure Service Level Agreements (SLAs) are met.
Scenario Simulation & Decision Support
- Support real-time simulations and exercises by maintaining digital inject libraries, risk dashboards, and scenario-based modelling tools.
- Develop automated risk scoring systems and resilience indicators linked to strategic objectives.
Key Objectives:
1-Full Implementation & Optimization of Risk and Resilience Platforms.
Ensure the successful configuration, deployment, and user adoption of the integrated risk and resilience system (covering ERM, BCM, and Crisis Management modules).
Expected Deliverables:
- Complete system setup aligned with ISO 31000, ISO 22301, and NCEMA requirements.
- Automation of risk registers, incident logs, and resilience dashboards.
- At least 80% user adoption rate across key departments with tailored training programs.
2-Real-Time Incident and Scenario Management Capability
Develop and operationalize a real-time simulation and response platform supporting crisis scenarios, injects, and business continuity events.
Expected Deliverables:
- Digital library of scenario injects and response workflows.
- Functional integration with operational systems (e.g., SCADA, outage alerts, communication tools).
- Conduct two full-scale simulations using the platform with executive-level decision support.
3-Data-Driven Reporting and Early Warning System
- Establish real-time risk intelligence and early warning dashboards that support executive decision-making and proactive risk mitigation.
Expected Deliverables:
- Configurable dashboards linked to enterprise risk indicators and resilience KPIs.
- Integration with external feeds (e.g., geopolitical risks, weather alerts, cyber threat intel).
- Monthly executive reports and alerts auto generated from the system.
Essential Requirements
- Bachelor’s degree in information technology, Management Information System, Computer Science, or related field.
- 4+ years of experience in risk management systems, IT platforms, or business continuity technology administration.
Desired Requirements
- Master’s degree or MBA is a plus.
- Professional certifications such as ISO 31000, ISO 22301, CBCI, CRISC, or equivalent preferred.
- ICS/NIMS training, or equivalent preferred.
- Experience in regulatory compliance framework, or CEIM automation.
