A&A: Consultant - Manager (GRC / Risk Transformation - Enterprise Risk Management (ERM))

Work You Will Do

Key Responsibilities

• Conduct session of business and regulatory requirements from stakeholders and finalise the requirements.
• Provide advisory on Enterprise Risk Management to support good design of system functionality to ensure design aligning with relevant regulatory requirement and good practice.
  • Enterprise Risk Management Framework and Matrix including risk appetite and tolerance
  • Enterprise Risk Management Workflow from end to end including identification, assessment, monitoring, escalation and reporting
  • Enterprise Risk Indicators
  • Enterprise Risk Inventory and Controls
  • Enterprise Risk Dashboard
• Translate requirements into system specifications and user stories.
• Lead the workshops with client stakeholders and solve the issues properly with good practices and knowledge sharing.
• Prepare documentation including Requirement Traceability Matrix (RTM), Functional Specification Document (FSD), and process flows.
• Support design, configuration, and integration of the ERM module within the GRC platform.
• Develop, execute and manage test cases & scripts and UAT for ERM module.
• Support accuracy and completeness of data migration and system outputs.
• Document test results, track defects, and support resolution.
• Create training materials (such as manuals, quick guides, and e-learning modules) and conduct the trainings.
• Support change management activities for ERM module to ensure effective adoption.
• Manage project delivery, budgets, risks, key stakeholders and communications with clients.
• Supervise and coach junior consultants, reviewing work products to ensure quality and consistency.
• Contribute to business development through proposals, client presentations, and thought leadership.

Your Role as a Leader

• Build and lead diverse teams, providing coaching and development opportunities to junior staff.
• Collaborate across service lines to deliver integrated solutions to clients.
• Inspire confidence and trust in clients through strong stakeholder engagement and communication.
• Drive superior outcomes by aligning project objectives with client strategic priorities.
• Demonstrate integrity, accountability, and inclusive leadership values.

• Understand objectives for stakeholders, clients and Deloitte whilst aligning own performance to objectives and sets personal priorities.
• Develop themselves by actively seeking opportunities for growth, shares knowledge and experiences with others, and acts as a strong brand ambassador.
• Seek opportunities to challenge themselves, collaborate with others to deliver and takes accountability for results.
• Build relationships and communicates effectively in order to positively influence peers and stakeholders.
• Work effectively in diverse teams within a highly inclusive team culture where everyone is supported, respected and recognized for their contribution.

Qualifications

• Bachelor’s or Master’s degree in Business Administration, Risk Management, Finance, Information Systems, or related field.

• Strong knowledge of ERM frameworks (COSO ERM, ISO 31000) and regulatory standards (Basel II/III, BOT).
• Experience with GRC platforms (RSA Archer, SAP GRC, MetricStream, or equivalent) is a plus.
• Archer Certified Administrator (Specialist/Expert), ServiceNow CIS (Risk & Compliance), or equivalent certification is a plus.
• Proficiency in business analysis, documentation, and stakeholder facilitation.
• Strong problem-solving, analytical, and communication skills.
• Professional certifications such as GRC, CISA, CRISC, CISM, CISSP are highly desirable.

Technical Skills

• Exposure to GRC/IRM platforms such as Archer, ServiceNow, or MetricStream.
• Understanding of workflows, reporting, and dashboard.
• Proficiency in Microsoft Excel and PowerPoint for analysis and reporting.

Soft Skills

• Analytical and detail-oriented mindset with the ability to work on multiple projects simultaneously.
• Strong written and verbal communication, able to engage both technical and business stakeholders.
• Team-oriented with a willingness to learn and adapt to dynamic client environments.
• Ability to work in structured consulting environments with deadlines and deliverables.

Industry Focus: FSI