非公開
■POSITION SUMMARY
The Compliance Officer and Data Privacy Officer for Japan is to initiate and drive compliance and data privacy topics across the local entity based on the group’s guidelines and requirements, and to comply with the local regulation requirements.
■DIMENSIONS OF ROLE
•Ensure the implementation of Group Compliance policies and procedures to be adopted at the local entity.
•Ensure the Data privacy governance is in place as per local Data Privacy laws, including supporting all EA Central initiatives on Data related topics.
•Support new business opportunities on compliance requirements where relevant, including the licensing of the upcoming insurance business
•Review Compliance & Data privacy related contract clauses for new & existing clients including all 3rd party providers to ensure Group standard clauses are applied and compliance to the local regulations.
•Perform due-diligence upon on-boarding of new clients/providers, and on risky clients upon renewals.
•Perform the annual GIRS (Generali policies & guidelines) self-assessment to evaluate the status of implementation of all assigned Group policies & guidelines to the local entity.
•Raise Compliance (International Sanctions Red Flag Guidance) and Data Privacy awareness to all staff
•Implement the Financial Crime Framework to mitigate International Sanctions related risks ie Product & Financial Risk assessments, FINSCAN screening and managing sanction alerts including screening of employees
•Manage any risky transactions on Operations and Finance systems upon FINSCAN automation.
•Perform an independent quarterly 2nd line control management on sanction hits if FINSCAN is live.
•Conduct 2nd Line of Control testing activities on Anti-financial crime and Data privacy topics.
•Conduct the Simplified Risk Assessment to assess the overall risks of the legal entity and propose mitigating actions to the functional owners based on the heatmap analysis.
•Support local Compliance reporting to local Management & Regional Compliance on the key risk indicators & mitigation action plans, and reporting of related party transactions if any.
•Managing Anti-Bribery Corruption & Gift policy matters in the event there are any alerts/escalation.
•Support any ad-hoc audit or investigation reviews on any operational gaps including data breaches where relevant.
•Support Regional Compliance initiatives where necessary.
■KEY RESPONSIBILITIES
•To review and implement the Group/Regional Compliance requirements and assess if they can be adopted locally.
•Working with internal stakeholders, ensure policies, practices, internal controls and compliance requirements are appropriate to business needs.
•Identify and work with the functional owners to assess the main risks of the entity and support them to mitigate the critical risks that may impact on the business. Set appropriate timelines to deploy/ implement action plans to mitigate risks.
•Work with Regional/Local outsource Legal function to ensure compliance with laws and regulatory requirements.
•Oversee the reporting of Compliance matters to local management & Regional Compliance.
•Works closely with local functional owners to ensure the strong involvement among stakeholders in assessing and improving the compliance of Operations activities and processes.