Head of Governance and Assurance

2025-07-16T15:10:08+00:00

FULL_TIME

Banking

Admin & Office

2025-07-22T17:00:00+00:00

 

Tanzania

8

Job Summary

Job listings

• Establish and operate proper governance.
  • Develop and implement Standards and Procedures.
  • Propose and agree risk appetite and supporting limits with the second line of defence.
  • Identify and manage risks in the activities and critical processes in which they are engaged, in line with the approved appetite and agreed limits.
  • Support and continued enhancement of Governance and Control Framework within the bank through working closely with 2nd and 3rd LOD , identifying emerging risks and hotspots across the bank and administering the monthly Governance & Controls Committee.
  The job role holder with his Governance and Assurance team as first line have primary responsibility for their risks, including:
  • Identifying and managing all the risks in the activities and critical processes in which they are engaged, and developing appropriate standards, procedures and controls to govern their activities;
  • Operating within any and all limits which Risk, Legal and Compliance functions establish in connection with the Risk Appetite of the ABT.
  • Escalating risk events to senior managers and to Risk, Legal and Compliance.
  The 1st LOD must establish its own controls to mitigate risks, particularly with respect to critical processes and operational activities, and are required to manage all controls to specified tolerances. These control-related activities are considered first line and are permitted so long as they are within any applicable limits established by Risk, Legal or Compliance. All activities in the first line are subject to oversight from the relevant parts of the other two lines of defense.
  The first line may establish Standards (subject to the Policy of Policies) where first line management deem it necessary.

Job Description

Main accountabilities and approximate time split

Stakeholder Management   (20%)

• Build strong relationships with both Absa internal and external stakeholders by providing expert advice to Business senior management teams.
• Effectively communication with all relevant stakeholders on governance and control related issues
• Work in the department with a focus on proactive approaches to add value to the model risk and development area and deliver a high level of client service. 
• Provide sufficient challenge to proposed concepts and ideas to the team
• Escalate potential issues timeously to relevant stakeholders
• The jobholder will manage and oversee the following functions
  • Reconciliation and CPA management – In-country monitoring and overseeing Reconciliation including liaison with BSSA Recons function and duties as part of BSSSA. The unit will also focus on CPA management i.e. new CPA to develop, testing and compiling current CPAs and RCAs twice in a year liaising with 2nd LOD
  • Cyber Security & Data Protection and Resilience services
  • Management Assurance services

• The Job holder must attend below meetings as part of 1st LOD Governance meetings:
  • Monthly Risk and Control Forum
  • Monthly Combined Assurance Committee
  • Quarterly Enterprise Risk Management Forum
  • Regional Monthly Risk Control Forum
  • Regional Issue Assurance meeting
  • Regional Monthly Cyber Risk Control Forum
  • Regional Data Privacy Forum
  • Monthly Payments Governance Forum
  • Monthly Service meeting with Recons team in BSSSA
  • Monthly in-country Product Risk and Governance Forum
  • Monthly Data Privacy In-country Steerco.
• Identifying trends and ensuring actions are in place to mitigate key risks
• Providing subject matter expertise / guidance to the business on risk and control issues.
• Complying with operational risk and rigour standards in respect of protecting people, customers, assets and the organization
• Make sure the daily Reconciliation are happening in the Recons function for all delegated accounts including BOT, NOSTRO and TRA accounts.
• The Reconciliation Manual needs to get evaluated and updated annually without fail.
• Make sure 90% of all the GLs are auto matched on IntelliMatch in order to avoid manual matching and only focusing on exceptions.
• Making sure the Combined Assurance plan including all Regulatory Conformance reviews and KYCs reviews are completed and results shared on timely basis.

Governance and Control   (60%)

• Ensure that job holder operates within governance, and to ensure that efficient controls are in place.
• Provide oversight to ensure that the tracking of the key milestones in the Model Lifecycle are completed by reviewing all controls that are in place.
• Oversee the maintenance of the Group Model Database (GMD) and Model lifecycle platforms. 
• Ensure that attestation takes place against the completeness and accuracy of the platforms.
• Provide guidance to the Control officers to ensure that efficient controls are in place with regards to policies and standards roll-out, awareness, embedment and compliance.
• Review and oversee regulatory interaction and reporting controls are in place
• Conduct Risk and Control Assessment (RCSA) attestation and formulation testing with the team.
• Review the Model Risk and Governance report to ensure efficient controls are in place.

• Must understand EMRF – Enterprise Management Risk Framework.
• Develop and enhance the control framework, ensuring is in line with Group Risk frameworks.
• Developing consolidated risk based annual reviews plan by combing with 2nd and 3rd LOD.
• Manages all the risks which fall under COO – Key Risk Ratings:
  • Transaction Monitoring
  • Cash Management
  • Payments Operations
  • Cards Operations
  • Customer On-boarding
  • Trade Operations
  • Fraud Risk
  • Physical Security Risk
  • Process Management Risk
  • Premises Risk
  • Supplier risk
  • Resilience Risk
  • Information Risk
  • Product Life Cycle.
• Planning and supervise detailed Process Reviews to assess effectiveness and efficiency of the controls embedded to mitigate risks to which processes are exposed
• Promote a greater understanding of risk management and assurance in order to embed a risk awareness culture in country.
• Stand as a first line of defense for the business to ensure all risk and controls matters are addressed appropriately and prepare for all audits (internal Auditor, Regulator (BOT) and the external auditors)
• Analyse Risk Events reported on a monthly basis to identify control lapses and put in place preventative and remediation actions.
• Provide expert guidance, support, oversight and independent challenge through effective working relationships and stakeholder management to ensure that the country is in control of its Risk & Control activities.
• Drive completion of detailed Critical Process Assessment (CPAs) and for those areas where we don’t have CPAs, Risk and Control Self Assessments (RCSA) across the bank.
• Review and challenge the identification, evaluation and prioritization of risks to ensure these risks are understood and that potential impact, threats and vulnerabilities are quantified. Ensure there is clear accountability for these risks.
• Support the business in development of appropriate action plans to mitigate risk where remedial action is identified as required.
• Drive effective tracking and closure of all risk and control related actions with appropriate independent conformance testing to confirm closure as required.
• Drive an effective audit engagement model.
• Ensure timely delivery and accuracy of insightful risk and control data that enables the business to identify areas of improvement and drive enhanced business performance accordingly.
• Ensure business conformance to all risk policies, procedures, initiatives and standards.
• All Recons must follow the correct Business rules and in case of any exceptions, the escalations must be followed based on the escalation matrix.

Staff Management (10%)

• The job holder will hold weekly meetings with its one down / people directly reporting to the job holder in-order to review the functional activities and service deliveries.
• Prepare Performance Development /appraisal reports for direct reports and oversee the same for the whole function.
• Providing coaching and guidance to enable staff to meet performance objectives.
• Manage direct staff activity on a day-to-day basis and actively resource workflow requirements.
• Support the Identified training requirements for self and team, managing personnel development, recommending attachments and monitoring staff progress against appropriate measures.
• Provide guidance in respect of work-related issues with particular emphasis on developing staff knowledge in adapting to system technology and new operating procedures.
• Motivate and drive sharing of best practice.
• Provide annual feedback to the COO on bonus recommendations.
• Ensure the succession pans of each unit are in place and the units have adequate coverage for the business.

Personal and Continues development (10%)

• Ensure that you stay abreast of all governance and control exposure to all risk types (E.g. Credit, Operational, Market, Liquidity, etc.) and products across different asset classes
• Take initiate and get involved with relevant industry best practice developments and initiatives within the bank
• Actively manage soft skills development, e.g. communication, decision making, showing commitment, flexibility, time management, leadership skills, creativity and problem-solving skills, etc

Risk and Controls Objectives

Ensure that all activities and duties are carried out in full compliance with regulatory requirements, Absa Operational Risk Framework and internal Absa Policies and Standards

Manage risk and control effectively by applying applicable risk frameworks and embedding a positive risk culture

• Understanding of own role in the end-to-end processes in which you play a part, including applicable risks and controls.
• Adhere to Absa’s policies and procedures applicable to own role, demonstrating sound judgement and responsible risk management.
• Report all risk events / incidents / issues using the defined process for your business area and help to understand why these happened and how to prevent them in future.
• Proactively look for ways to improve the control environment by considering what could go wrong in the processes you operate and how errors could be prevented.
• Continuous and proactive engagement with regulatory bodies, unions where applicable
• All mandatory training completed to deadline

Technical skills / Competencies

• Bachelor degree in statistics, mathematics or other quantitative fields.
• Honors or Master’s degree in any quantitative files will be an advantage 
• More than 4 years of relevant model risk and/or governance and control experience.
• Deep understanding of the concept of process and risk management; and banking and auditing
• Strong decision making, communication, and interpersonal skills
• Strong working knowledge and ability to use MS Office, MS Vision, MS Project, able to prepare PowerPoint presentations for presentation to management and knowledge of other standard software application tools
• Strong aptitude for easy and quick learning of audit, analytical, or/and facilitation skills
• Intellectual competencies – intelligence, analysis skills, judgement/decision-making,  pragmatism
• Personal competencies – integrity, initiative, organization/planning, excellence, independence, adaptability
• Interpersonal competencies – assertiveness, team player, oral/written communication, political savvy, negotiation and persuasion, managing conflict

Knowledge, Expertise and Experience

• Broad understanding of model risk and/or governance and control environment
• Good communication skills, both oral and written.
• Good interpersonal skills and is a team player.
• Ability to build and maintain relationship both within the team and with stakeholders.
• Focus on achieving team objectives.
• Ability to work in an efficient and organized way.
• Deadline Driven
• Self-motivator and able to take on ownership and is accountable for problems.
• Understands local and global regulatory requirements and is aware of environment & practices that may affect model risk.

• Is able to keep the bigger picture in mind and to consider the impact of governance and control breaches on the individual stakeholders and AGL as a whole.

Experience, qualifications and other requirements specific to the role qualification

Experience

What does the role holder need to have done before?

• Experience across more than one part of the risk process e.g. audit, group centre, regulation, risk control, business side etc.
• Track record of identifying system weaknesses, using initiative and internal control knowledge to provide practical and commercially viable solutions
• Working with business champions and senior management including executives
• Report production to executive audiences

Knowledge

What does the role holder need to know/know about and/or be qualified in?

• Risk professional with specific knowledge of risk and control techniques related to at least 2 or more risk types
• Good working experience of risk, governance, control and assurance requirements/drivers
• Able to identify the key model governance and control risks and recommend mitigating actions to address these.
• Ability to engage senior stakeholders

Risk & Control Objectives

• Develop and enhance the control framework, ensuring is in line with Group Risk frameworks.
• Developing consolidated risk based annual reviews plan.
• Promote a greater understanding of risk management and assurance in order to embed a risk awareness culture in country.
• Stand as a first line of defense for the business to ensure all risk and controls matters are addressed appropriately and prepare for all audits (internal Auditor, Regulator (BOT) and the external auditors)
• Ensure effective Information Risk Management (IRM) framework is in place and business adheres to framework requirements at all times.
• Ensure effective Financial Crime framework is in place and business adheres to framework requirements at all times.
• Work with Operational Risk to embed a coherent risk and control framework in country.

Absa Values

Absa’s  Values and Behaviours represent the set of standards which governs the actions of all of us who work for the bank and against which the performance of every one of us in Absa are being assessed and rewarded:

• Trust
• Resourceful
• Stewardship
• Inclusive
• Courage

Education

Bachelors Degree and Professional Qualifications: Risk Management (Required)

Stakeholder Management   (20%) Build strong relationships with both Absa internal and external stakeholders by providing expert advice to Business senior management teams. Effectively communication with all relevant stakeholders on governance and control related issues Work in the department with a focus on proactive approaches to add value to the model risk and development area and deliver a high level of client service.  Provide sufficient challenge to proposed concepts and ideas to the team Escalate potential issues timeously to relevant stakeholders The jobholder will manage and oversee the following functions Reconciliation and CPA management – In-country monitoring and overseeing Reconciliation including liaison with BSSA Recons function and duties as part of BSSSA. The unit will also focus on CPA management i.e. new CPA to develop, testing and compiling current CPAs and RCAs twice in a year liaising with 2nd LOD Cyber Security & Data Protection and Resilience services Management Assurance services  The Job holder must attend below meetings as part of 1st LOD Governance meetings: Monthly Risk and Control Forum Monthly Combined Assurance Committee Quarterly Enterprise Risk Management Forum Regional Monthly Risk Control Forum Regional Issue Assurance meeting Regional Monthly Cyber Risk Control Forum Regional Data Privacy Forum Monthly Payments Governance Forum Monthly Service meeting with Recons team in BSSSA Monthly in-country Product Risk and Governance Forum Monthly Data Privacy In-country Steerco. Identifying trends and ensuring actions are in place to mitigate key risks Providing subject matter expertise / guidance to the business on risk and control issues. Complying with operational risk and rigour standards in respect of protecting people, customers, assets and the organization Make sure the daily Reconciliation are happening in the Recons function for all delegated accounts including BOT, NOSTRO and TRA accounts. The Reconciliation Manual needs to get evaluated and updated annually without fail. Make sure 90% of all the GLs are auto matched on IntelliMatch in order to avoid manual matching and only focusing on exceptions. Making sure the Combined Assurance plan including all Regulatory Conformance reviews and KYCs reviews are completed and results shared on timely basis. Governance and Control   (60%) Ensure that job holder operates within governance, and to ensure that efficient controls are in place. Provide oversight to ensure that the tracking of the key milestones in the Model Lifecycle are completed by reviewing all controls that are in place. Oversee the maintenance of the Group Model Database (GMD) and Model lifecycle platforms.  Ensure that attestation takes place against the completeness and accuracy of the platforms. Provide guidance to the Control officers to ensure that efficient controls are in place with regards to policies and standards roll-out, awareness, embedment and compliance. Review and oversee regulatory interaction and reporting controls are in place Conduct Risk and Control Assessment (RCSA) attestation and formulation testing with the team. Review the Model Risk and Governance report to ensure efficient controls are in place. Must understand EMRF – Enterprise Management Risk Framework. Develop and enhance the control framework, ensuring is in line with Group Risk frameworks. Developing consolidated risk based annual reviews plan by combing with 2nd and 3rd LOD. Manages all the risks which fall under COO – Key Risk Ratings: Transaction Monitoring Cash Management Payments Operations Cards Operations Customer On-boarding Trade Operations Fraud Risk Physical Security Risk Process Management Risk Premises Risk Supplier risk Resilience Risk Information Risk Product Life Cycle. Planning and supervise detailed Process Reviews to assess effectiveness and efficiency of the controls embedded to mitigate risks to which processes are exposed Promote a greater understanding of risk management and assurance in order to embed a risk awareness culture in country. Stand as a first line of defense for the business to ensure all risk and controls matters are addressed appropriately and prepare for all audits (internal Auditor, Regulator (BOT) and the external auditors) Analyse Risk Events reported on a monthly basis to identify control lapses and put in place preventative and remediation actions. Provide expert guidance, support, oversight and independent challenge through effective working relationships and stakeholder management to ensure that the country is in control of its Risk & Control activities. Drive completion of detailed Critical Process Assessment (CPAs) and for those areas where we don’t have CPAs, Risk and Control Self Assessments (RCSA) across the bank. Review and challenge the identification, evaluation and prioritization of risks to ensure these risks are understood and that potential impact, threats and vulnerabilities are quantified. Ensure there is clear accountability for these risks. Support the business in development of appropriate action plans to mitigate risk where remedial action is identified as required. Drive effective tracking and closure of all risk and control related actions with appropriate independent conformance testing to confirm closure as required. Drive an effective audit engagement model. Ensure timely delivery and accuracy of insightful risk and control data that enables the business to identify areas of improvement and drive enhanced business performance accordingly. Ensure business conformance to all risk policies, procedures, initiatives and standards. All Recons must follow the correct Business rules and in case of any exceptions, the escalations must be followed based on the escalation matrix. Staff Management (10%) The job holder will hold weekly meetings with its one down / people directly reporting to the job holder in-order to review the functional activities and service deliveries. Prepare Performance Development /appraisal reports for direct reports and oversee the same for the whole function. Providing coaching and guidance to enable staff to meet performance objectives. Manage direct staff activity on a day-to-day basis and actively resource workflow requirements. Support the Identified training requirements for self and team, managing personnel development, recommending attachments and monitoring staff progress against appropriate measures. Provide guidance in respect of work-related issues with particular emphasis on developing staff knowledge in adapting to system technology and new operating procedures. Motivate and drive sharing of best practice. Provide annual feedback to the COO on bonus recommendations. Ensure the succession pans of each unit are in place and the units have adequate coverage for the business. Personal and Continues development (10%) Ensure that you stay abreast of all governance and control exposure to all risk types (E.g. Credit, Operational, Market, Liquidity, etc.) and products across different asset classes Take initiate and get involved with relevant industry best practice developments and initiatives within the bank Actively manage soft skills development, e.g. communication, decision making, showing commitment, flexibility, time management, leadership skills, creativity and problem-solving skills, etc

 

Bachelor degree in statistics, mathematics or other quantitative fields. Honors or Master’s degree in any quantitative files will be an advantage  More than 4 years of relevant model risk and/or governance and control experience. Deep understanding of the concept of process and risk management; and banking and auditing Strong decision making, communication, and interpersonal skills Strong working knowledge and ability to use MS Office, MS Vision, MS Project, able to prepare PowerPoint presentations for presentation to management and knowledge of other standard software application tools Strong aptitude for easy and quick learning of audit, analytical, or/and facilitation skills Intellectual competencies – intelligence, analysis skills, judgement/decision-making,  pragmatism Personal competencies – integrity, initiative, organization/planning, excellence, independence, adaptability Interpersonal competencies – assertiveness, team player, oral/written communication, political savvy, negotiation and persuasion, managing conflict

JOB-6877c0d0359c3