Governance, Risk & Compliance Manager – Maritime & Shipping

AD Ports Group • Full-time • أبو ظبي, AE • 1w ago

Job Purpose

Implement the Governance, Risk & Compliance (GRC) Frameworks within the Maritime & Shipping cluster, ensuring alignment with AD Ports Group’s Corporate GRC frameworks and strategic objectives as well as those of the Cluster. Manage the implementation of Policies, Subsidiary Governance Framework, risk management, Internal Control, and the compliance programs tailored to the Cluster Industries and operational needs while maintaining adherence to group’s requirements and standards.

About the Maritime Cluster

AD Ports Group’s Maritime & Shipping Cluster is led by Noatum Maritime, a globally connected agile entity operating across multiple countries. With a fleet of over 250 vessels and decades of expertise, Noatum Maritime offers a diverse portfolio of services delivering “everything you need on the seas.”

Responsibilities

Core Responsibilities:

Implement the Subsidiary Governance Framework and ensure that the Cluster aligns with the Group’s GRC Frameworks, policies, and procedures set by Corporate GRC function, adapting them to the Cluster’s specific industry, activities and regulatory requirements.
Support and ensure the implementation of governance structures, delegation of authority, Risk management, internal control, and compliance mechanisms within the Cluster and its subsidiaries.
Act as the GRC Focal point of contact to the Cluster and Subsidiaries management, ensuring adherence to Corporate and Cluster policies and ethical business practices.
Support Monitor and keep abreast of emerging GRC trends and regulatory changes, proactively adapting strategies to ensure compliance and competitive advantage.
Work closely with the Cluster and Subsidiaries management to identify potential areas for improvements with regards to governance practices, to enhance accountability, transparency, and decision-making efficiency.
Work closely with the Cluster and Subsidiaries management to identify operational and financial risks, and to help define and implement mitigation strategies; monitor key risks.
With the support of the Cluster GRC Director, Risk Owners and Champions, to develop and maintain the Risk Register for the Cluster, ensuring continuous risk monitoring, mitigation, and escalation where required; share outcomes and actions with the Cluster GRC Director for review and consolidation.
Support the risk management process at the Cluster, ensuring risks are managed in accordance with Group Risk Management guidelines; and escalate significant risks to the GRC Director when and as required.
Conduct risk scenario analysis, stress testing, and business impact assessments for key operational risks, including safety, supply chain disruptions, financial risks, and regulatory changes.
Conduct Third Party Risk Management for the Cluster and drive compliance with Group Policies and requirements.
Implement the internal control framework, conducting internal control testing, reporting findings, and ensuring corrective actions are taken.
Work with the management of the Cluster to ensure compliance with local and international regulations and continuously monitor regulatory changes and their impact on the business.
Liaise with regulatory bodies, agencies, and government stakeholders to ensure compliance and manage regulatory inspections, audits, and investigations.
Develop and maintain the Cluster’s Regulatory Compliance Register, Conduct Compliance Risk assessment and ensure continuous Compliance risk monitoring, mitigation, and escalation where required.
Support and ensure that Clusters’ Subsidiaries are in line with the GRC Policies and requirements including but not limited to:
Developing and maintaining a Risk Register for the Subsidiary, ensuring continuous risk monitoring, mitigation, and escalation where required; share with the Cluster GRC Director for review and directions.
Ensure that the risk management process at the Subsidiary is conducted in accordance with Group Risk Management guidelines; and an escalating process exists for significant risks to the Cluster’s GRC Function when and as required.
Maintaining robust Third-Party Risk Management for the Subsidiary and drive compliance with Group and Cluster’s Policies and requirements.
Developing and maintaining the Subsidiary’s Regulatory Compliance Register, Conduct Compliance Risk assessment and ensure continuous Compliance risk monitoring, mitigation, and escalation where required.
Conduct regulatory self-assessments of the GRC activities, in line with corporate requirements, and report compliance data to the Cluster GRC function.
With the Support of the Corporate GRC Cyber Security Team, ensuring cybersecurity frameworks are implemented, ensuring compliance with data protection policies, monitoring security risks, and reporting on security incidents to the Cluster leadership.
Conduct regular reviews, assessment and testing of governance practices and activities in the Maritime & Shipping cluster and its Subsidiaries, recommending improvements to enhance accountability, transparency, and decision-making efficiency.
Conduct investigation with regards to non-compliance issues and drive the analysis of root causes with the management team.
Facilitate GRC reporting and compliance monitoring to meet Group-wide requirements.
Coordinate with internal and external auditors, ensuring alignment with Corporate Internal Audit and regulatory requirements.

People Management Responsibilities:

Promote awareness and skills of GRC personnel at the cluster level and across Subsidiaries.

Strategic Responsibilities:

Promote Maritime & Shipping's innovation, and Automation of services.
Implement the strategic direction of the GRC function within the cluster, ensuring alignment with AD Ports Group’s overall GRC strategy.
Act as a focal Point of Contact to the Maritime & Shipping employees on risk management, compliance, and governance matters.
Collaborate with the Cluster GRC director and Corporate GRC Function to integrate Cluster GRC initiatives with group-wide objectives.

Qualifications

Minimum of 8 years of experience in Governance, Risk, and Compliance roles or similar field.
Bachelor’s Degree in Audit, Finance, Risk Management, Management or a related field. A master’s degree is a plus.
Professional certifications such as CRISC, CISM, CISA, CFE, CCP, GRC or equivalent in GRC, Risk Management, or Compliance.

Required Skills

Excellent English. Arabic is a plus
Proficient knowledge in GRC activities
Strong interpersonal skills and the ability to collaborate effectively with individuals at all levels of the organization.
Proficiency in GRC methodologies, tools and best practices that suit the Maritime & Shipping activities.