Compliance Manager
Schaeffler
- Kuala Lumpur
- Permanent
- Full-time
- assist the CO SEAP/JP in maintaining and improving Schaeffler's CMS, including the promotion of a culture of compliance, setting an example for transparency and creating an environment were speaking up in a professional manner is encouraged.
- manage internal stakeholders (e.g., management, Compliance Representatives) and external stakeholders, such as customers and other third parties, in relation to compliance demands.
- maintain a sound understanding of the local business activities and applicable laws and regulations.
- identify local compliance priorities, and plan and prioritize activities based on risk on a prescribed cycle (e.g., development of an annual training plan).
- ensure that Schaeffler's global steering documents, including policies and instructions, are adopted and localized in alignment with the CO SEAP/JP.
- alongside colleagues from HQ and the Region, perform regular Compliance Risk Analyses, Key Controls, and Compliance Reviews.
- conduct, and ensure appropriate monitoring of, compliance training and awareness programs, including the review and reporting of eLearning participation and follow-ups with colleagues whose trainings are overdue.
- ensure the effective implementation of the "Know Your Business Partner" (KYBP) due diligence process and train functions involved in the process, including third parties completing process, when needed.
- act as the Compliance contact for the KYBP process and manage relevant reviews and escalations with internal stakeholders, including the divisions.
- provide compliant and timely advice to internal stakeholders through the Compliance helpdesk and maintain prescribed documentation of such advice for reporting and recordkeeping purposes.
- ensure the effective implementation of the global whistleblowing procedure relating to the reporting of violations and concerns.
- manage reporting to relevant stakeholders regarding compliance-related reports of misconduct, investigations, and remediation efforts, where applicable.
- work with country management and other internal stakeholders, including Legal and Export Control, to ensure that interactions with local authorities and regulators are coordinated; implement processes to identify and manage regulatory requests and deadlines.
- assist with or conduct compliance-related M&A due diligences and execute integration activities, as needed; and
- draft compliance-related reports as required by HQ, the CO SEAP/JP, or other relevant internal stakeholders.
- act as the contact person for the data protection authorities in Malaysia and cooperate with them, if and as required.
- meet and maintain the statutory and internal requirements of a DPO for Malaysia.
- support the Global Data Protection Office (GDPO) to advise all parties involved in the processing of personal data on their obligations under the relevant laws in Malaysia and the Region.
- support the GDPO to roll out the internal data protection requirements under P 172471 "Protection of personal data".
- monitor the organization's compliance with P 172471 and the relevant laws in Malaysia and the Region, especially in view of the operations of the regional shared service center.
- give data protection guidance, advice, and training to all employees and managers in Malaysia.
- perform privacy impact assessments, as required.
- review and assist in the negotiation of data processing agreements.
- assist the regional and group teams in information & cyber security-related activities, including, but not limited to, information classification, information asset inventory, risk treatment plan, and supplier risk assessments.
- Degree in law, business administration, accounting, or other degree suitable for compliance.
- Three to five years of compliance, legal, or other relevant experience, such as finance or audit, preferably in a similarly sized business.
- Experience in and/or knowledge of antitrust, anti-corruption, anti-fraud, AML, data privacy, and/or information security.
- General interest in the regulatory environment as well as governance, risk, and controls topics.
- Proficient in Microsoft Office suite, esp. Excel and PowerPoint.
- Strong attention to detail.
- Self-starter with willingness to learn.
- Good planning, organizational, and communication skills.
- Fluency in English and preferably proficient in an Asian language.