Sime Darby Property Hiring! Full Time Head, Business Continuity in Selangor - Ricebowl

Job Purpose:

• Lead the development, implementation, and continuous improvement of the Group Business Continuity Management (BCM) Framework to enhance organisational resilience and ensure continuity and timely recovery of critical business services during disruptions.
• Provide enterprise-wide leadership across business continuity, crisis management, operational resilience, and recovery governance. Serve as the Group SME, ensuring alignment with regulatory requirements, internal policies, and recognised standards (e.g., ISO 22301), while supporting management oversight and continuous improvement.

Job Responsibilities:

1. BCM Governance & Framework

• Develop, maintain and enhance BCM frameworks, policies, and procedures.
• Align BCM with Enterprise Risk Management, operational resilience, and regulatory requirements.
• Establish governance structures, escalation protocols, and reporting lines.
• Advise management on key risks, gaps, and improvement priorities.

2. Business Impact Analysis (BIA)

• Lead enterprise-wide BIA to identify critical services, dependencies, and recovery objectives (RTO, RPO, MTD).
• Assess disruption impacts (operational, financial, regulatory, reputational).
• Ensure alignment of business and technology recovery requirements.
• Maintain updated and approved BIA outputs.

3. Business Continuity Planning (BCP)

• Develop continuity strategies and planning standards.
• Oversee Business Continuity Plans, crisis plans, and recovery playbooks.
• Align business, IT, facilities, people, and third-party recovery into a unified framework.
• Ensure clarity on activation, escalation, roles, and recovery priorities.

4. Crisis Management & Incident Response

• Maintain Crisis Management Framework, including escalation protocols and governance.
• Support Crisis Management Team during events with coordination and reporting.
• Align crisis communication strategies with Corporate Communications.
• Lead post-incident reviews and track remediation actions.

5. Operational Resilience

• Identify and prioritise critical business services and resilience tolerances.
• Assess vulnerabilities across people, process, technology, facilities, and third parties.
• Promote resilience-by-design in projects and operations.
• Monitor resilience risks, metrics, and emerging threats.

6. Testing & Exercises

• Develop and execute annual BCM testing programmes.
• Conduct integrated simulations covering business, IT, crisis, and third parties.
• Report results, identify gaps, and track remediation.

7. Third-Party Resilience

• Assess critical vendor and outsourcing resilience capabilities.
• Support inclusion of BCM requirements in contracts and governance.
• Monitor third-party risks and escalate critical gaps.

8. Regulatory Compliance & Assurance

• Ensure compliance with legal, regulatory, and internal BCM requirements.
• Support audits, reviews, and regulatory inspections.
• Maintain evidence of BCM activities and programme effectiveness.
• Conduct maturity assessments and escalate key issues.

9. Reporting & Stakeholder Management

• Prepare reports for senior management and governance committees.
• Develop KPIs/KRIs to monitor BCM effectiveness.
• Promote BCM awareness, training, and resilience culture.
• Engage with internal and external stakeholders.

10. Leadership & Resource Management

• Lead and develop the BCM function and team capabilities.
• Manage budgets, tools, and external service providers.
• Define roles across defence lines and ensure accountability.

Qualifications & Experience:

Education

• Bachelor’s degree in relevant discipline (e.g., Risk, IT, Engineering, Business).
• Master’s degree is an advantage.

Certifications (Preferred)

• ISO 22301 Lead Implementer/Auditor
• CBCP / MBCI
• CISA / CISM / CRISC
• Other relevant BCM, risk, or resilience certifications

Experience

• 12–15 years in BCM, operational resilience, or risk management.
• Minimum 5 years in senior leadership roles.
• Proven experience in BIA, BCM frameworks, crisis management, and testing programmes.
• Strong exposure to cross-functional coordination and senior stakeholder engagement.
• Experience in large or regulated organisations preferred.

Technical Competencies:

• BCM frameworks and ISO 22301
• Operational resilience and critical services methodology
• Crisis management and recovery coordination
• BIA and dependency mapping
• IT disaster recovery alignment
• Third-party resilience management
• Regulatory compliance and assurance
• Governance reporting and programme management