We are seeking a strategic and hands-on Enterprise Risk Management (ERM) Manager to establish and lead the risk management function across multiple regulated subsidiaries, including peer-to-peer lending, insurance brokerage, and financial aggregator businesses.
This role will be responsible for setting up the group鈥檚 risk management framework, performing risk assessments, ensuring regulatory compliance, and launching operational risk initiatives such as RCSA and incident tracking. The ERM Manager will also play a critical role in Anti-Money Laundering (AML) compliance, including developing AML rules and collaborating with IT to ensure proper implementation in systems.
Once foundational elements are in place, the role will expand to manage the Policies & Procedures team, ensuring operational risk controls are aligned with business processes.
Enterprise Risk Management Framework & Execution
- Design and implement the ERM framework in the peer-to-peer lending, insurance brokerage, financial aggregator,and multifinance.
- Develop risk governance structure, risk appetite, and risk policies.
- Conduct risk identification, assessment, and prioritization across diverse business models by analyzing data and evaluating impact and likelihood of identified risks on business operations.
Regulatory Compliance & Reporting
- Ensure compliance with OJK and other regulators on risk-related requirements across subsidiaries.
- Prepare and submit risk profile reports, risk self-assessments, and ad hoc regulator requests.
- Coordinate with internal teams and regulators during audits and inspections.
Operational Risk & Program Development
- Launch and facilitate Risk and Control Self-Assessments (RCSA).
- Set up and manage a Risk Incident Database to log, track, and analyze operational risk events.
- Develop internal risk dashboards and reporting formats to support risk-informed decisions.
Anti-Money Laundering (AML) Compliance
- Develop, maintain, and update AML rules, scenarios, and red flags according to regulatory guidelines and best practices.
- Work closely with the IT department to translate AML requirements into system-based monitoring rules and alerts.
- Oversee transaction monitoring, unusual activity reports, and internal escalation processes.
- Stay updated on AML regulations and ensure the organization's AML practices remain compliant and effective.