Manager Governance, Risk & Compliance (GRC) in

JOB DESCRIPTION

JOB PURPOSE

To be responsible for developing, implementing, and ensuring the highest standards of governance frameworks, risk management processes, and compliance programs to support the organization’s strategic objectives in the renewable energy sector. This role ensures that business operations comply with regulatory requirements, internal policies, and industry best practices, while fostering a strong risk culture across the organization.

JOB ACCOUNTABILITIES / KEY RESULT AREAS

1. Governance

Develop, review, and implement governance frameworks, policies, and procedures in line with regulatory and corporate requirements.
Ensure proper documentation, reporting, and adherence to Board and Management governance standards.
Provide guidance to management, including Board of Directors / Board Committees and staff, on governance and compliance matters.

2. Risk Management

Lead the development and implementation of the organization’s risk management framework, policies, and processes.
Identify, assess, monitor, and report key business risks, including operational, financial, regulatory, new business, and project-related risks.
Partner with project teams to evaluate risks in renewable energy projects (e.g., solar, wind, hydro, waste-to-energy) from feasibility through operations.
Conduct periodic risk assessments, scenario analysis, and recommend mitigation strategies, including facilitating risk appetite setting and monitoring in line with Board-approved frameworks.
Prepare regular risk reports for Management, Risk Committee, and the Board.

3. Compliance

Monitor and ensure compliance with applicable laws, regulations, licenses, and guidelines relevant to the renewable energy sector.
Develop and maintain compliance monitoring plans, including audits and periodic reviews.
Manage regulatory reporting and liaise with authorities on compliance-related matters.
Drive compliance awareness programs and training across the organization.
Oversee investigations and resolution of compliance breaches, reporting outcomes to management.

4. Internal Control & Assurance

Develop and enhance internal control processes to safeguard organizational assets and ensure integrity in financial and operational reporting.
Collaborate with Internal Audit on audit reviews and ensure timely closure of audit findings.
Support anti-bribery and corruption requirements and implementation of relevant ISO standards (e.g., ISO 37001, ISO 9001, ISO 14001, ISO 45001).

5. Reporting & Miscellaneous

Undertake tasks or directives assigned by the superior in relation to governance, risk, and compliance matters as required.
Conduct identification, assessment, analysis, and reporting of GRC-related information to relevant stakeholders to support effective execution of investment and portfolio risk management plans.

ESSENTIAL QUALIFICATIONS & TECHNICAL COMPETENCIES

Formal Education

Bachelor’s degree in Law, Finance, Accounting, Risk Management, Business Administration, or related discipline.
Professional certifications such as CRMA, CIA, CIRM, ICA, or IIA certifications are an advantage.

Experience

Minimum 7–10 years of relevant experience in governance, risk, and compliance.
Prior experience in renewable energy, utilities, or infrastructure sectors preferred.
Exposure to Malaysian regulatory frameworks (e.g., energy regulators, capital markets, anti-corruption frameworks) is an advantage.

Skills / Knowledge / Qualifications

Strong knowledge of GRC frameworks and best practices.
Good understanding of renewable energy project lifecycle risks (EPC, regulatory, operational, environmental, health & safety).
Excellent stakeholder management and communication skills (Board, regulators, management, project teams).
Strong analytical, problem-solving, and report-writing skills.
High integrity, professional judgment, and ability to maintain confidentiality.

Manager Governance, Risk & Compliance (GRC)