Specialist, Real Estate Governance & Control (Commercial)

To serve as a dedicated Governance and Control Specialist for RES across all Risk Types providing hands-on support to the RES Exco and Business Heads (e.g. Commercial Physical Security) for timely and accurate completion of Risk and Governance requirements. This role acts as a specialised bridge between central Risk functions and RES operations facilitating actions to mitigate functional risk and aligning practices with the 1st Line Business Risk and Governance Execution team within RES.

Qualifications :

• A Degree in Business Commerce Legal Risk Management

Experience Required

• 5-7 years in a Risk Governance or Control environment (preferably within Real Estate Facilities Management or Corporate Services).
• Proven experience in managing Business Resilience Third Party Risk Management (TPRM) and Data Privacy (POPIA).

Additional Information :

Key Responsibilities:

• Facilitate the development documentation and updating of Business Resilience Plans (BRP) and Business Impact Assessments (BIA) for all RES sub-functions by working directly with Business Heads to maintain operational continuity during potential disruptions. Capture all identified risks mitigation strategies and control assessments into the formal GRC systems on behalf of RES Business Heads to provide an accurate and centralised view of the functional risk profile.
• Coordinate the end-to-end internal and external audit process for the RES function including the scheduling of meetings and the gathering of required evidence to streamline the assurance process and minimise operational friction. Monitor the progress of all outstanding audit findings and management actions through regular follow-ups with task owners to guarantee that all control gaps are remediated within the agreed-upon timelines.
• Update the Information Asset Register (IAR) for all RES business units (Commercial Retail etc.) by validating data flows and business processes to maintain visibility and protection of critical information assets. Implement POPIA-compliant protocols across all RES departments specifically focusing on data retention cross-border transfers and data subject access requests to protect personal information and maintain regulatory compliance.
• Review Third-Party Risk Management (TPRM) assessments for all RES vendors focusing on performance monitoring and contract clause compliance to mitigate supply chain vulnerabilities and reputational risks. Execute periodic High-Risk Access Reviews and Logical Access Management (LAM) attestations for RES-specific applications and systems to prevent unauthorised access and maintain data integrity. Conduct specialised risk management and governance training sessions for RES staff and management to embed a robust riskaware culture and improve the quality of 1st-line risk activities.
• Compile comprehensive risk management reports and dashboards for the RES Business Units by aggregating data from various risk sub-functions to enable informed data-driven decision-making at the executive level.
• Track the completion of compulsory compliance training gifts and entertainment declarations and personal account trading requirements across RES to minimise the risk of internal policy breaches and ethical conflicts. Assist Business Heads in performing Materiality Assessments and Post Implementation Reviews (PIR) for all new projects and changes within the RES environment to identify and manage emerging change-related risks.
• Manage the appointment of Occupational Health and Safety (OHS) officials and the submission of quarterly safety attestations for all RES facilities to maintain a safe working environment and meet statutory safety obligations. Apply Data Quality Management rules and monitor remediation plans for non-compliant data sets within RES operational systems to enhance the reliability and accuracy of business-critical information.

Behavioural Competencies:

• Articulating Information
• Checking Things
• Developing Expertise
• Documenting Facts
• Following Procedures
• Interacting with People
• Interpreting Data
• Managing Tasks
• Meeting Timescales
• Providing Insights
• Team Working
• Upholding Standards

Technical Competencies:

• Audit Methodology
• Audit Report Writing
• Business Acumen (Audit)
• Compliance
• Evaluating Risk Management Effectiveness
• Occupational Health and Safety
• Promote Good Governance Risk & Control
• Quality Management
• Query Resolution
• Real Estate Management
• Risk Awareness
• Risk Identification
• Risk Management
• Risk Measurement
• Risk Reporting
• Risk Response Strategy
• Risk/ Reward Thinking
• Root Cause Analysis
• Verbal Communication

Remote Work :

No

Employment Type :

Full-time