Responsible for conducting detailed business impact analysis, continuity risks assessments and/or risk deep dives, analyses, and monitoring of remediation across all possible internal and external risks and maintaining adaptable Risk Management standards, frameworks and solutions, specifically for Business Continuity and Crisis Management purposes for the business with appropriate lines of defense.
Role
Implement and manage the BCM programme, methodology and principles for the areas of, Business Continuity and Crisis Management to deal with abnormal or unstable situations that may threaten the OpCo objectives, reputation and/or viability.
Implement the Business Continuity Management and Crisis Management frameworks and policies in alignment for the Group policy and Framework.
Devising a roadmap that delivers increased assurance, effectiveness and efficiency regarding Business Continuity and Crisis Management
Serve as a business risk partner in facilitating and ensuring that business unit(s) take ownership in the identification and management of their divisional business impact assessments (BIAs), BCPs, SPOFs and DRPs to guarantee safeguarding MTN Ghana’s people, processes, and Infrastructure and third-party systems
Retain overall responsibility for the various BCM&CRM policies, including development, review, update and implementation
Develop fit-for-purpose solutions that meet all business requirements and that lead to a best-possible scenario in avoiding disruptions to business, brought on by crises and security breaches
Identify risk mitigation and continuity requirements for new projects and ensure that the requisite policies and standards are developed
Document/update the comprehensive OpCo BCM strategy and facilitate the implementation of all Business Continuity and Crisis Management strategies and verify if they are relevant, appropriate and remain fit-for-purpose in alignment with ISO standards
Facilitate the scheduling or planning of BCP test and Coordinate the BCP testing on an ongoing basis
Drive best practice, continuous improvement and innovation of the BCM programme at the process and procedural level
Implement effective BCM Programme management reporting
Facilitate the development of the Business Continuity / Crisis Management Maturity Model in the oranisation
Review and facilitate Business Impact AnalysesManage the rollout of all BCP off-site tests and validations to pressure-test the efficacy of response times (i.e. from Initiation to production of the Post Test Report), in the instance of a disaster or business disruption
Develop, analyse and prepare specific BCM reports
Facilitate the disaster recovery procedures documentation and/or workflows, in accordance with Business Continuity Management System requirements
Facilitate any updates and/or changes to all BCM documentation
Conduct strategic, functional, process risk assessments and assessment of continuity capabilities within the key Business Continuity / Crisis Management
Identify and assess Business Continuity / Crisis Management risks, including necessary escalations and develop effective business continuity solutions
Manage all Business Continuity and Crisis Management issues and risks, as they become known and report in a timely manner
Participate as a key member in the incident response structure when tasked with managing major incidents for the OpCo
Provide guidance on the implementation of a governance framework for disaster recovery and incident management
Identify, report on and monitor progress against process risks, capabilities and coverage (i.e. responsible for reporting on the state of Business Continuity, Crisis Management), in line with reporting structure covering risk, capability and coverage, as per the OpCo and MTN’s reporting requirements
Prepare and present technical recommendations, guidelines, progress reports and Executive Management level presentations for issues related to disaster recovery, incident management and resilience planning
Context :
- Alignment to the integrated plan
- Risk Management (RM) themes
- Business Continuity (BCM) and Crisis management (CRM) Themes
- Aligned with King IV Corporate Governance.
- RM and BCM Frameworks, Methodologies, Policies, Processes and procedures.
- Dynamic and highly competitive telecommunication, ICT industry and Mobile Financial Services
- Highly regulated environment
- Regionalization structure implication
- Performance driven environment
- Diverse cultural environment
- Evolving industry ecosystems
- Omnipresent cyber security threats and attacks
- New imperatives concerning data privacy and security and building strong digital trust partnerships
- Rapid adoption of new routes to innovation and technologies that can destabilise business
- Volatile geographical environments to emergencies that threaten the ordinary course of business (Natural Disasters, Socio-Political upheaval, Terrorist Attacks, Health Threats)
- Constant dynamic risk challenges that are unique to the OpCo and the region
- Mitigating risks, averting disaster and safeguarding security through business intelligence to maximize business impact
- Management of demanding customer and supplier expectations
- Enhancing MTN reputational position as a leading secure, reliable and safe network and system provider at OpCo level
- Exception reporting
- Job Requirements (Education, Experience and Competencies)
Education
A bachelor’s degree in business or accounting or computer sciences or a related field. A relevant professional qualification in risk management would be a plus.
Experience
- 5 years’ experience in a related field, preferably in IS/Telecoms/Financial Services / Business Continuity / Disaster Recovery / Security Management environment, with at least 3 years supervisory experience in a medium to large organization
- Strong project planning and management experience.
- Experience in working across diverse cultures and geographies (advantageous)
- Understanding of various international risk management and business continuity standards
- Understanding of emerging markets is advantageous
Training
Risk Management/ Business Continuity/Information Security Management/Disaster recovery
Knowledge:
Enterprise Risk Management Methodology or ISO Risk Management Standard 31000 Process Management and Maturity modelsBCM methodologies (ISO 22301 Standard) and reviews include incident & crisis management, emergency preparedness, recovery modes/methods, IS Disaster recovery strategies etc.
- Information Security Risk Management
- Corporate Governance frameworks e.g. King IV.
- Insurance risk knowledge.
- Data Analytics
- Working knowledge of Industry standards of Enterprise Risk Management (ERM), BCM. E.g. BS 25999/ISO 22301.
- Basic IS infrastructure knowledge advantageous
- Use of Excel, Power Point, Word
- Strong knowledge and understanding of the business processes applicable to a mobile telecommunications operator.
- Knowledge of mobile telephony infrastructure and business processes.
- Risk trending – including those of Business Continuity
- Technical Recovery Planning knowledge and skills
- Incident Response and Crisis Liaison knowledge and skills
- Project Management
Skills / physical competencies:
- Ability to manage self and be a team player, good conflict management, take and manage accountability
- Energy & Drive – Innovative, Takes initiative, result oriented and develops self consistently
- Interpersonal Skills – Leadership, customer centricity, collaborative and coaches & develops direct reports
- Personal Skills – Trustworthy, integrity and ethical in dealings
- Operating Skills – Ability to focus on priorities and plans, shares knowledge effectively
- Organisational Positioning Skills – Good written and verbal communication, presentation skills, commitment to the organization
- Strategic Skills – Global thinker, Analytical thinking and Problem solving abilities.
- Facilitating skills
