Specialist - Risk & BCM

Role Purpose

The Risk & BCM Specialist is responsible for strengthening the organization’s resilience by implementing and maintaining robust risk management and business continuity frameworks. This role ensures compliance with ISO 22301 and NCEMA standards, supporting the development, testing, and continuous improvement of Business Continuity Plans (BCPs) across all critical functions. Additionally, the specialist will assist with risk assessments, identify vulnerabilities, and coordinate mitigation strategies to minimize operational disruptions. Acting as a key liaison between internal stakeholders and external regulatory bodies, the role also ensures to comply with all regulatory requirements from BCM perspective.

Accountability & Activities

Key Activities

1. Business Continuity Management (BCM)

• Support the development and implementation of the BCM framework, in line with NCEMA guidelines and international best practices (ISO 22301).
• Conduct BCM exercises with all departments and update the BCM plans accordingly.
• Coordinate with all departments to ensure the Business Impact Analysis (BIA) is up-to-date at all times
• Develop and review BCM strategies and implementation plans, ensuring alignment with external agencies and compliance with corporate standards.
• Provide regular reports to senior management on the status of BCM initiatives and recommend corrective measures when necessary.
• Conduct periodic reviews and audits of BCM plans, updating policies, procedures, and processes as needed.
• Support awareness and training programs for risk and BCM across the organization.

2. Enterprise Risk Management (ERM)

• Participate in risk management workshops and conduct comprehensive risk assessments to assist with identification & management of risks across the organization.
• Develop and implement risk mitigation strategies and controls to reduce exposure and ensure business continuity.
• Ensure adherence to relevant standards and regulations (ISO 31000, ISO 22301, NCEMA) and maintain compliance documentation.
• Prepare and monitor risk dashboards and report findings to senior management for informed decision-making.
• Lead internal training sessions to ensure staff are aware of risk management best practices to promote the risk culture
• Monitor legislative changes and update the organization’s data protection policies as needed.

3. Safety, Quality & Environment

• Ensure compliance with all relevant safety, quality and environmental management policies, procedures and controls within the General Counsel department of ES to ensure employee safety, legislative compliance, delivery of high-quality services and a responsible environmental attitude.

Qualifications/Experience

Minimum Qualification

(Educational Qualifications, Trainings, or Certifications)

• Bachelor’s degree in Business Administration, Information Technology, or a related field.

Professional Experience

• Minimum of 3-5 years’ experience in Business Continuity & Risk Management, with proven expertise in both fields.
• Experience in performing BCM exercises, BIA including tabletop drills and full-scale simulations.
• Experience working in industries such as government, manufacturing, or financial services is a plus

Language(s) Known

• Arabic (Preferred)
• English (Essential)

Key Performance Indicator

1. Timely and accurate development of BCM plans in compliance with organizational and NCEMA guidelines.
2. Regular reviews and updates to the organization’s BCM framework, ensuring full compliance.
3. Effective collaboration with internal teams and external authorities for business continuity and risk management efforts.
4. Successful delivery of BCM and risk management training programs across departments.
5. Implementation of corrective actions and improvement measures for BCM and risk management issues identified during audits