About the Role

The position is based in Port Moresby and will report to the Head of P&C Operations & Shared Services. The successful incumbent will be responsible for driving proactive risk management, enhancing people control frameworks, and ensuring compliance with internal policies and regulatory standards. This role plays a critical part in embedding a culture of risk ownership, strengthening first-line accountability, and supporting operational resilience.

Key Deliverables

• Design, document, and maintain a fit-for-purpose People & Culture Control Framework, including end-to-end process controls of the entire employee life-cycle.
• Act as the first line of defence lead for People & Culture in risk and control matters, including preparing for RCSAs, self-assessments, control testing, and assurance reviews.
• Coordinate and monitor remediation of internal and external audit findings relevant to People & Culture; track delivery of commitments and report progress to senior stakeholders.
• Lead or support periodic control effectiveness testing in partnership with Group Risk or Internal Audit, and drive root cause remediation for deficiencies.
• Identify opportunities for automation or system enhancements that improve control effectiveness or reduce manual risk exposure.
• Prepare governance packs for submission to Risk & Audit Committees and other forums on People & Culture control effectiveness, key risks, and incidents.
• Assess operational risks associated with outsourced people services, consultants, or technology providers
• Committed to fostering a culture of accountability, transparency, and continuous improvement
• Collaborate with the Operations Risk Department to identify and evaluate process risks within People & Culture.
• Maintain and update the Incident Register, ensuring all operational incidents are accurately recorded with relevant details.
• Monitor and analyse incidents to identify patterns, root causes, and areas for improvement.
• Assist in conducting risk assessments of transactions, controls, and procedures.
• Support the development and implementation of control measures and corrective actions based on incident analysis.
• Support internal and external audit processes, providing incident and risk data as required.
• Track and report on key risk indicators (KRIs) and incident trends to senior management.
• Assist in reviewing and enhancing policies, procedures, and controls related to operations in People & Culture.
• Promote risk awareness and incident reporting culture within the Finance & Planning team through training and communication.
• Investigate operational incidents impacting people processes and recommend preventive measures.
• Participate in thematic risk reviews (e.g., fraud exposure, segregation of duties, data integrity).
• Stay updated on regulatory changes affecting operations and ensure compliance.
• Compiled and Provide monthly AML Compliance reports.
• Compile and provide the monthly Operational Risk reports.

Essential Qualifications, Professional/Skills and Experience:

• Bachelor’s degree in Business, Commerce, Business Law, Risk, or a related field; postgraduate qualifications or professional certifications (CIA/ CCEP)
• Prior experience working in a matrix environment across business and risk functions—ideally in a banking or regulated financial institution.
• Deep understanding of business operations, operational risk, processes and procedures critical to business continuity management in first line governance and control.
• High personal integrity, attention to detail, and a proactive, investigative approach.
• Excellent communication and stakeholder engagement skills, with an ability to influence at all levels of the organisation.
• 7+ years’ experience in financial services, with a proven track record in operational risk, internal audit, finance control, or compliance functions.