World Vision international
Join and be part of a global relief, development and advocacy NGO, dedicated to work with children, families & communities to overcome poverty and injustice. World Vision International was established in 1950 & operates in nearly 100 countries worldwide.
World Vision is committed to the protection of children and we do not employ people whose background is not suitable for working with children. All employment is conditioned upon the successful completion of all applicable background checks, including criminal record checks where possible.
Job Title: Risk and Compalince Manager
Employee Contract Type: Local - Open ended Contract
JOB PURPOSE
The Risk and Compliance Manager (RCM) will ensure compliance with local laws, regulations, and donor guidelines for grants. lead compliance efforts during project opening, review, and closure meetings for donor grants. Additionally, actively the RCM will support transparent partner selection processes and conduct thorough reviews of agreements for compliance. This will be done in cooperation with the Partnership Manager. The RCM will assist management in achieving adherence to WV compliance standards as well as by partner organizations through providing assessments as to the Risk, compliance, and regularity environment of partner operations. The RCM will proactively identify any risk or compliance issues and perform periodic spot checks on the partner organization’s finances, programming and operations. Will lead efforts to raise the awareness of compliance within WV and the partner organizations, and to create a Risk and Compliance Framework to support the organization to comply with relevant external regulatory and internal requirements.
Major Responsibilities:
20% Risk Management – Enterprise Risk Management(ERM)
- Develop and maintaining the organization’s Risk Mitigation Plan, and Enterprise Risk Management plan and actively monitor the status of mitigation measures
- Advise management on strategic risks and facilitate the use of risk assessments in decision-making processes.
- Organizing learning and communication activities to equip managers, staff, and partners with risk identification and management skills, and implemented control measures.
- Implement and enhance Standard Operating Procedures (SOPs) for high-risk activities, ensuring standardized compliance practices across the organization.
- Support Management to determine effective and efficient solutions to operational issues that ensure adherence to World Vision (WV) policies and donor regulations and requirements, to mitigate different types of risks and to facilitate the achievement of program objectives
- Support SLT and their respective teams to implement SOPs as necessary, and/or develop enhanced SOPs for high-risk activities
- Oversee the implementation and embedding of risk management across all division of the World Vision Syria Response (WVSR) in accordance with WV risk appetite and Enterprise Risk management policy and framework
- Build maturity in risk management across the organization, supporting timely risk analysis, mitigation, and reporting, development and dissemination of best practice guidance, and internal learning in risk management.
- Continually develop WVSR risk registers and oversee the implementation of mitigation strategies provide insight and organizational focus on emerging risks and the effectiveness of planned mitigation.
WV ERM Policy – Defined Responsibilities
Implement the WVI ERM Policy and Framework:
- Oversee the application of the policy and framework in a way that suits the size, complexity and risk profile of the organization.
- Facilitate the annual review of the risk appetite statement and setting of risk limits.
- Evaluate existing risk governance structures and recommend changes where required, such as setting up a management risk committee or integrating ERM into existing management meetings
- In consultation with managers, assess ERM effectiveness at least annually and identify opportunities for improvement
- Prepare an annual work plan and budget for cross-functional risk management activities. These activities should align with organizational objectives and priorities.
Update Riskonnect:
- Facilitate the identification, analysis and evaluation of risks and controls.
- Ensure key managers are aware of which risks, controls and tasks they own and are expected to manage.
- Ensure that Riskonnect is up to date and new or emerging risks are captured in Riskonnect on an ongoing basis. Evaluate existing controls and provide timely and meaningful feedback to management on their efficiency and effectiveness. Monitor the implementation of action plans to ensure risk treatment efforts are proceeding as required.
Facilitate the root cause analysis of successes and failures
- Document relevant lessons learned.
- Share lessons and recommendations for improvements with relevant managers.
Report risks and escalate where necessary:
- Help prepare the Top Risks report.
- Compile information from Riskonnect, conduct comparative analyses with incident data and other sources of risk data, and form a holistic view of the office’s risk profile.
- Provide regular updates to senior managers on progress in implementing action plans.
- Document and communicate key risks, controls and improvement actions to senior managers, and the Regional Risk Prime at the direction of management.
- Maintain regular contact with the Regional Risk Prime to escalate (in consultation with senior managers) any significant risks.
- Request support, where necessary, to ensure an effective ERM programme is operating in the office.
Train managers and build capacity:
- Train and support managers in using Riskonnect and relevant ERM tools.
- Identify training needs and tailor training programmes to build risk awareness and promote risk-based decision making.
- Facilitate capacity building sessions on ERM principles and practices for board directors, members of advisory councils, senior managers, members of management risk committees and other staff.
- Monitor the implementation of action plans from capacity building sessions to ensure benefits are obtained.
Support the use of Riskonnect:
- Provide training for Riskonnect users and Risk Intake Portal users, and run periodic refresher courses.
- Keep track of Riskonnect user licences
- Communicate with the Global Centre ERM Department about the number of licenses it should acquire and charge back to the region or office.
10% Risk Management – Project Risk
- Facilitate the preparation of Project Risk Register by identify, analyze, evaluate the risks as well as determine the planned controls for all projects as part of risk management process
- Take the lead in Project Risk register preparation workshops for all projects in coordination with program manager, implementing partners, and operations.
- Participate in providing inputs related to Risk & Compliance at the project design, proposals, and closure, taking the lead on the grants Risk & Compliance section to ensure adherence to regulations and WV policies.
30% Compliance
- Ensure strict compliance to applicable laws as well as donor guidelines and regulations governing grants.
- Participate in project opening, review, and closure meetings for key donor grants, taking the lead on the compliance section to ensure adherence to regulations.
- Support the Partnership and contribute to organizational capacity assessment for the new/existing
- Assist in resolving operational issues by devising effective and efficient solutions that align with WV policies and donor regulations, mitigating fraud and corruption risks
- Act as an expert resource on donor regulations, providing guidance and technical support to WV staff, partners, and grantees to improve compliance.
- Maintain up-to-date knowledge of donor regulatory, statutory, and administrative requirements.
- Respond to internal queries regarding compliance issues and WV policies, clarifying procedures and directing staff accordingly.
- Provide oversight monitoring of awards and partner funding agreements to ensure compliance with donor rules and regulations.
- Ensure appropriate engagement, management, monitoring and compliance of awards and partner funding agreements including coordination and facilitation of pre-award to post-award transition, implementation and close out. This includes:
-Oversight monitoring of grants and contracts to ensure processes and procedures compliant with donor regulations and WV policies, and responsiveness to corrective action plans, as applicable.
-Compliance oversight and quality control of award & partner monitoring, and support negotiations with donors.
10% Sanctions / BIS
- Coordinate with the WVI legal team in all issues related to sanctions
- Coordinate with legal team in obtaining BIS licenses
- Act as point of contact between WVSR and legal counsel for enquiries about sanction issue
- Act as an expert resource for enquiries and consultation related to sanction and license matters
- Provide Trainings and awareness to the team for matters/updates related to sanctions
10% Incident Management
- Maintain an overview of IIM cases related to WVSR to ensure all cases are being addressed by the appropriate case owners and reach a satisfactory closure.
- Whenever necessary, coordinate with the regional office and global centre
- Provide management information and updates on incidents
- Participate or lead in investigation or initiate investigation upon management request.
10% Other
- Review process waivers and facilitate approvals by Response director
- Draft and review MOU/agreements with external parties such as local councils, FBO, etc.
- Review all type of agreements/letters before signoff by the Response Director
- Provide trainings whenever required or requested in topics related to Risk & Compliance
- Provide orientation to all new joiners to understand role and duties of Risk & Compliance within WVSR
- Provide inputs in several processes/reports such as GnG, MMR report, etc.
- Coordinate with the legal counsellors on behalf of the various department heads.
10% Manage the risk and compliance team
- Lead and manage Risk and Compliance a team in Syria, Turkiye and Jordan.
KNOWLEDGE/QUALIFICATIONS FOR THE ROLE
Required Professional Experience
· Proven experience and understanding of key risk and compliance policies and processes
· Understanding of national and regional context risks, compliance and regulatory issues
· Understanding of major donor grants regulations
· Knowledge and expertise in various aspects of program management cycle, donor regulations and compliance.
· Four+ years working experience in relevant field (report writing, academic research, international non-governmental organizations work, law, risk and data analysis, grant quality and compliance)
· Excellent organizational, analytical and oral and written communication skills in English
· Excellent and proven interpersonal and communication skills, particularly with staff, donors and stakeholders