Manager/ Senior Manager (Enterprise Risk & Governance)

Job Description

Title: Manager/ Senior Manager (Enterprise Risk & Governance)

Company Name: SSL Wireless

Vacancy: --

Age: Na

Job Location: Dhaka

Salary: Negotiable

Experience: --

Published: 2026-02-17

Application Deadline: 2026-02-28

Education:

Requirements: --

Skills Required:

Additional Requirements:

Responsibilities & Context:

The Manager/Senior Manager will lead and strengthen SSL Wireless’s enterprise-wide risk management framework by identifying, assessing, monitoring, and mitigating risks across operations, technology, products, projects, vendors, compliance, and finance. The role ensures effective risk governance, promotes a strong risk culture, supports strategic decision-making, and safeguards the organization’s reputation, customers, and business continuity.

Key Responsibilities

1) Enterprise Risk Management (ERM) & Risk Governance

• Design, implement, and continuously improve the ERM framework aligned with business strategy and risk appetite.

• Establish and maintain the Risk Register, Risk Appetite Statements, KRIs (Key Risk Indicators), and risk reporting dashboards.

• Facilitate risk governance forums (e.g., Risk Committee meetings), prepare high-quality risk reports for leadership and stakeholders.

• Ensure consistent risk assessment practices across departments and promote a proactive risk culture.

2) Operational Risk Management

• Lead operational risk programs including RCSA (Risk & Control Self-Assessment), process risk reviews, and control testing.

• Identify control gaps and drive remediation plans with clear owners and timelines.

• Review and challenge key operational processes (payments, merchant operations, customer support, settlements, finance ops, HR processes) to reduce loss events and service disruptions.

• Implement incident/loss event tracking, root cause analysis, and corrective/preventive action monitoring.

3) Technology, Information Security & Cyber Risk (in partnership with IT/Security)

• Oversee technology risk management for platforms, applications, APIs, cloud, infrastructure, and change/release processes.

• Ensure appropriate controls for access management, data protection, logging/monitoring, vulnerability management, and secure SDLC practices (as applicable).

• Partner with Engineering/InfoSec to assess cyber threats, monitor key risks, and ensure timely remediation of high-risk findings.

• Support security assurance and compliance readiness (e.g., ISO/PCI or equivalent standards if applicable).

4) Compliance, Regulatory & Policy Oversight (as applicable to business)

• Ensure compliance risks are identified and tracked, and key policies and controls remain effective.

• Maintain and update risk-related policies, SOPs, and governance documentation.

• Coordinate with Legal/Compliance for contractual risk reviews, regulatory obligations, and response to queries/audits (internal/external).

5) Vendor, Partner & Third-Party Risk

• Build a third-party risk management program for vendors, partners, and service providers.

• Conduct due diligence risk assessments for onboarding, renewal, and critical vendor monitoring.

• Ensure contractual safeguards and SLAs include risk, security, and continuity requirements.

6) Project, Product & Change Risk

• Embed risk review into new product launches, key projects, process redesigns, and system changes.

• Identify delivery risks, operational readiness gaps, and control requirements before go-live.

• Provide risk-based challenge to ensure growth is scalable and controlled.

7) Business Continuity & Crisis Management

• Own/coordinate BCP/DR governance with stakeholders; ensure plans are documented, tested, and improved.

• Lead crisis response coordination for major incidents and ensure post-incident lessons learned.

8) Audit & Assurance Coordination

• Coordinate risk inputs for internal/external audits and track closure of audit findings.

• Ensure remediation actions are practical, timely, and verified for effectiveness.

9) Leadership & Capability Building

• Lead and develop the Risk function (team structure based on company needs).

• Train stakeholders on risk awareness, control ownership, and best practices.

• Build strong cross-functional relationships to drive risk ownership across the organization.

• Festival Bonus: 2

• Attractive salary as per industry best practice.

• Yearly salary review based on performance.

• Weekly 2 holidays.

• Weekly medical consultancy.

• Annual leave encashment.

• Medical coverage.

• Congenial & friendly working environment.