About DigiPlus Interactive Corp. DigiPlus Interactive Corp. pioneered digital entertainment in the Philippines. It introduced leading platforms BingoPlus, ArenaPlus, and GameZone, widely known for their engaging experiences in interactive gaming and sports entertainment. For more information, visit: www.digiplus.com.ph.
Job Summary
The Chief Risk Officer (CRO) is responsible for the strategic development and implementation of the company's Enterprise Risk Management (ERM) framework. This includes identifying, assessing, mitigating, and monitoring risks across all facets of the organization. The CRO ensures alignment with regulatory standards, including the Data Privacy Act of 2012, and promotes a culture of risk awareness, resilience, and compliance.
Key Responsibilities
Enterprise Risk Management (ERM):
- Oversee the implementation and continuous improvement of the established ERM framework, addressing operational, financial, strategic, and reputational risks.
- Monitor and evaluate risk mitigation strategies to ensure effectiveness and alignment with organizational goals.
Compliance and Data Privacy:
- Ensure compliance with relevant laws and regulations, including the Data Privacy Act of 2012, OSH Standards, and other applicable standards.
- Collaborate with the other business unit's Data Protection Officer to maintain adherence to data protection requirements.
Crisis and Incident Management:
- Lead the organization's response to crises, ensuring operational continuity and effective recovery measures.
- Regularly test and refine crisis management plans to ensure readiness.
Business Continuity Planning (BCP):
- Oversee the implementation of the established BCP to address potential disruptions and ensure operational resilience.
- Collaborate with stakeholders to maintain the relevance of the plan through regular reviews and updates.
Governance and Policy Development:
- Implement and enforce risk management policies and guidelines, including those related to data security and incident response.
- Maintain a governance framework to support informed risk-related decision-making.
Training and Culture Building:
- Foster a culture of risk awareness and compliance across the organization.
- Conduct training sessions to enhance understanding of risk management, data privacy, and safety protocols.
Qualifications
Education: Bachelor's degree in Risk Management, Business Administration, Law, or a related field.
Certifications (Preferred but not a must):
- Risk Management and Governance:
- GRC Professional (GRCP)
- Integrated Risk Management Professional (IRMP)
- Integrated Compliance and Ethics Professional (ICEP)
- Certified Risk Manager (CRM) or equivalent
- Data Privacy and Cybersecurity:
- Integrated Data Privacy Professional (IDPP)
- Certified Data Privacy Officer (CDPO), Certified Information Privacy Manager (CIPM), or equivalent
Candidates possess these certifications or equivalent qualifications to demonstrate their expertise in risk management, governance, and data privacy compliance.
Skills and Competencies
- Strong understanding of regulatory frameworks (DPA 2012, OSH Standards, etc.).
- Proven ability to develop and implement risk management frameworks.
- Excellent analytical, decision-making, and problem-solving skills.
- Effective communication and presentation skills for both technical and non-technical stakeholders.
- Ethical mindset with the ability to maintain independence and objectivity.
