Mgr Energy Governance & Risk Operations at Sasol

Purpose of Job

• Responsible for supporting the senior manager in ensuring that the Ops OMEs comply with all SEC and SOX regulations. This role is based in Secunda and involves supporting the senior manager in implementing and maintaining standards, protocols, and best practices for SOX compliance,  participation in and coordination of risk workshops, reviewing control statements and results of control testing cycles, assisting relevant OMEs with evaluations of control deficiencies and providing training and guidance to various stakeholders, assist in coordination of SOD process and maintaining Group SOD mitigation register, monitoring remediation efforts, amongst others. Accountable for supporting the senior manager with various Governance responsibilities within the Ops space.

Key Accountabilities
Responsibilities and accountabilities include:

• Supporting the senior manager in meeting their objectives and delivering the best possible service to the respective OMEs for which this position is responsible for.
• Provide guidance to business on documenting process flows and assist in coordinating process flow meetings.
• Ensure business updates, maintains and signs off on process flow documentation on an annual basis or when changes in processes occur.
• Participation in annual risk workshops/ changes in processes and ensure adequate controls are in place for any new risks identified.
• For any changes in scoping, work with business to ensure that controls are put in place at the respective OME and that the new controls meet the minimum requirements per current SOX strategy and guidance documents issued.
• Assist business in reviewing control statements/ control evidence and provide guidance and input in line with current SOX guidance issued.
• Ensure that Workiva has been updated for all approved changes to controls by following the correct Management of Change (MOC) process.
• Prepare a detailed SOX testing cycle planning schedule to ensure SOX testing cycles are rolled out and properly communicated to business, and controls are tested within the set timelines.
• Review the SOX specialist dashboard as per agreed timelines, with supporting documentation.
• Review SOX test cycle results and ensure that the SOX standard for documentation of testing results has been met.
• Assist business in evaluating control failures, including root cause analysis and remediation actions and review the respective evaluation papers to be presented to the SOX Compliance/ SOX Committee as applicable.
• Monitor the progress of remediation plans relating to deficiencies and keep log of deficiencies identified – reported to the SOX Compliance Committee/ SOX Committee as applicable.
• Assist in coordinating the SOX Compliance Committee meeting and completion of associated deliverables e.g., scheduling, meeting, scribe minutes, preparing and distributing the pack.
• Assist in presenting training to OMEs and other stakeholders on SOX and monitor attendance and completion of SOX training.
• Assist in coordination of SAP segregation of duties and maintenance of the Group SOD mitigation register. Ensure the mitigation register correctly reflects approved mitigations to ensure all risks in SAP are addressed and prohibited risks are captured in the SOD critical access process document.
• Review the SAP GRC report, investigate and remediate the conflicts identified and put mitigations in place where required.
• Quarterly review and sign off of Segregation of Duties (SOD) reports for respective OMEs.
• Approve SAP access request for respective OMEs after simulation of the risk and investigation of the appropriate role to be allocated.
• Review of the joiners, movers and leavers access control monthly report to ensure SAP access to previous position is removed / maintained and the user group report to ensure employees are assigned to the correct user groups.
• Assist in coordinating the Reporting Information System (RPIS) meetings and review of submissions and minutes to ensure proper mitigations of all SOD risks on SAP.
• Ensure all relevant IM projects/ system changes have been assessed for potential SOX impact and implement controls accordingly.
• Assist with obtaining SOX certifications for Form 20-F reporting.
• Develop and maintain stakeholder relationships (e.g., external audit, OMEs, external advisors, internal audit)
• Engage with auditors to proactively address identified issues.
• Assist in implementation of projects from Group Compliance team including annual training/ communication for OMEs/ monthly training for Governance coordinators.
• Assist in providing governance guidance and input at various forums, steerco’s and into various policies and procedures.
• Follow up on internal audit and forensic findings within the respective areas of responsibility and ensure remediation actions are implemented.
• Assist in monitoring the status of the development of an internal control database by OME management and report status to respective GEC2 on a quarterly basis.
• Monitor the development and updating of OME policies and procedure documents as applicable.
• Preparation of regional OME monthly/ quarterly Gov Comm submissions
• Collaborate and manage the release strategy process for all Operations OMEs to ensure alignment to the Sasol DoA.
• Assist other SOX team members with ad-hoc requests from time to time

Formal Education

• University Bachelors Degree in Finance

Working Experience

• 9 relevant years of extensive experience and in-depth knowledge of SOX compliance and internal control requirements 
• Excellent communication, reporting and presentation skills
• Ability to develop and maintain strong stakeholder relationships

Certification

• SAICA CA (SA) or a similar qualification is preferred