Mumias Sugar Job Vacancy : Manager Risk and Compliance

Mumias Sugar Job Vacancy : Manager Risk and Compliance
February 3, 2015 Job Description

Job Title: Manager Risk and ComplianceJob Code:

MRC/MS/150129

Number of Positions Open: 1
Reports To: Board of Directors

Location: Mumias, Kenya Summary: Mumias Sugar Company is Kenya’s leading producer of sugar and diversified products which include Ethanol and Bottled Water. The Company also generates significant quantities of electricity which is exported to the National Grid.


Our vision is to be a world class integrated producer of Sugar and green energy & related products.
Our mission is to consistently satisfy our customer needs through efficient, innovative and ethical practices while meeting the diverse expectations of other stakeholders.

As part of the Company’s restructuring process, a refreshed organization structure has been developed that will focus on new challenges presented by the changing dynamics of the Sugar sector in our region.
Strategies are being developed that will quickly position the Company to its former glory as a profitable business that serves the needs of all its stakeholders.
As a result of this process, the Company is seeking highly motivated, results oriented, self-driven, experienced and qualified individuals who will drive the business of the Company to the next level.

Job Purpose: Reporting to the Board of Directors with a dotted line to the Chief Executive Officer, the job holder will provide objective assurance to management and the board on the effectiveness of MSC’s risk management activities to help ensure key business risks are being managed appropriately and that the systems of internal control are operating effectively to minimize all financial and information technology risks across the businessPrimary Responsibilities:
Planning of financial, regulatory, compliance and/or operational audits for MSC;
Coordinate work with Legal, Security Services, SHE, Quality Assurance and other control-related activities/functions;
Conduct risk assessments and identify controls in place to mitigate identified risks.
Perform audit procedures to verify that controls are operating through adequate testing and interviewing techniques.
Analyze and conclude on effectiveness and efficiency of the control environment.
Identify control gaps and opportunities for improvement.
Document the results of audit work in accordance with company policies and other relevant international standards
Prepare timely audit reports for executive management, the Board Audit Committee and the entire Board of Directors.
Assess, evaluate and promote compliance to internal MSC policies.
Contribute, as appropriate, in the year-end financial audit with the external auditor.
Provide advice on internal control and participate in enhancing internal audit standards and practices within MSC
Provide feedback on performance of Internal Auditors, on audit assignments, as applicable.
Carry out periodic risk assessment on information systems, identify information security risks and exposures, and develop risk assessment strategies in order to determine information systems security needs
Develop, revise, manage and enforce the necessary information systems (IS) security policies, standards and controls and regulatory controls across multiple platforms; evaluate roles and access levels, carry out Information Security Incident management.
Deliver computer forensic services as required and carry out periodic vulnerability and penetration tests in order to conform to audit standards and requirements.
Carry out periodic business impact assessments; manage Business Continuity Planning, implementation and review and co-ordinate ICT disaster recovery planning and testing activities
Develop and carry out Information Systems user privacy and security training and awareness programs in order to increase and enhance user information security literacy levels
Experience and Skills:
Bachelor’s Degree in Business Management, Bachelor of Commerce – Finance Option.
Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP) or Certified Information Systems Security Manager (CISM) is desirable and a definite advantage.
Master of Business Administration -Strategic Management an added advantage.
A plus is a qualified Certified Information Systems Auditor.
8 years’ experience 4 of which must be in senior similar role.
Additional Attributes:
Results driven with a strong desire to succeed.
Good negotiation skills.
Good communication skills, both orally and in writing.
Excellent numeracy and analytical skills.
Self-empowerment to enable development of open communication, teamwork and trust that are needed to support true performance.
High degree of integrity, dependability and confidentiality.

Don't Keep Share!:


How to Apply


Interested candidates holding the necessary requirements, good performance and / or references are encouraged to apply with detailed CV’s, inclusive of names and contacts of 3 referees, current telephone number and email address by scrolling down and clicking on: Manager Risk and ComplianceKindly include your current and expected remuneration in your resume

Closing Date: 13th February, 2015