Risk & Privacy Associate

Currimjee Jeewanjee and Company Limited We Are Hiring – Risk & Privacy Associate Currimjee Jeewanjee and Company Limited is looking for a motivated and analytical Risk & Privacy Associate to join its team.

Currimjee Jeewanjee and Company Limited
We Are Hiring – Risk & Privacy Associate

Currimjee Jeewanjee and Company Limited is looking for a motivated and analytical Risk & Privacy Associate to join its team. In this key role, you will support the Group in identifying and managing risks, delivering the privacy programme end-to-end, and testing and evidencing controls to ensure audit and regulatory readiness across all subsidiaries.

Key Responsibilities

• Support the implementation and continuous improvement of the Enterprise Risk Management (ERM) framework across all subsidiaries.
• Assist subsidiaries in identifying, assessing, mitigating, and reporting key risks, in line with Group standards.
• Build the capacity of Risk Champions through guidance, coaching, and awareness on risk identification, assessment, mitigation, and reporting.
• Participate in the elaboration, rollout, monitoring, and continuous improvement of the Group’s privacy programme.
• Support privacy awareness initiatives and translate regulatory updates into practical, actionable recommendations.
• Analyse internal audit findings, link issues to risks and controls, and verify the effectiveness of remediation actions.
• Plan, test, evidence, and track the effectiveness of internal controls through to closure.
• Support cyber hygiene awareness, incident readiness, and personal data breach prevention initiatives, in collaboration with IT and other stakeholders.
• Contribute to clear, decision-ready reports for Management and the Audit & Risk Committee.
• Liaise closely with cross-functional teams to ensure effective risk and privacy management.

Candidate Profile

• 2–5 years’ experience in audit, risk management, compliance, data protection, or internal controls.
• Degree in Management, Accounting, IT, Law, Finance, or a related field (or equivalent professional experience).
• Sound understanding of ERM principles and working knowledge of the Mauritius Data Protection Act 2017.
• Strong analytical skills with the ability to translate governance and regulatory requirements into practical business actions.
• Good communication skills, with the ability to present complex topics clearly to non-technical stakeholders.
• Proficient in MS Office applications.
• Professional certifications such as CISA, CISM, CRISC, ISO 27001, or IAPP will be an advantage.

If you feel you have the right profile for this position, please submit your application at the given email address, quoting RPA/CJCO/2025 by Monday, 12^th January 2026.

Management reserves the right to call only the best qualified candidates for interviews or not to make any appointment following this advertisement.