COMPLIANCE COUNSEL (FIXED TERM CONTRACT 2 YEARS)

Location

Vantis Energy Berhad (VTEB) Headquarter

Department

Legal and Corporate Secretarial - Compliance

Job Title

Compliance Counsel (Manager)

Reporting To

Senior Manager Compliance

Key Experience

• Proven experience (minimum 8–10 years PQE) in compliance, legal, or regulatory roles, preferably within energy, oil & gas, or infrastructure industries.
• Demonstrated success in developing and managing corporate compliance programs.
• Strong record of advising senior management and collaborating with cross-functional teams.
• Hands-on experience in corporate governance, sanctions risk, data protection and ESG compliance are an added advantage.
• Exposure to multinational or public-listed company compliance practices is an advantage.

Key Qualifications

•       Bachelor’s Degree in Law (LL.B) from a recognized university.

•       Admission to the Malaysian Bar (or equivalent qualification) preferred.

•       Familiarity with international sanction regimes, screening tools and data protection laws.

•       Certification in Compliance or Corporate Governance (e.g., International Compliance Association (ICA), Association of Certified Anti-Money Laundering Specialists (ACAMS), Data Protection Officer Certificate Programme or equivalent) is an added advantage.

• Strong command of written and spoken English and Bahasa Malaysia.

Key Competencies and Attributes

• Excellent legal interpretation and analytical skills.
• Strong understanding of Malaysian and international regulatory frameworks
• High ethical standards and sound professional judgment.
• Strong interpersonal, communication, and stakeholder management skills.
• Strategic mindset with attention to detail and process efficiency.
• High ethical standards and ability to handle confidential information with discretion.
• Demonstrates high personal discipline, integrity and professionalism.

Key Responsibilities

1.     Compliance Governance & Advisory

• Lead the design, implementation, and continuous enhancement of the company’s compliance framework in alignment with corporate governance standards and regulatory requirements.
• Provide strategic legal and compliance advisory support to management, subsidiaries, and business units.
• Identify, assess, and proactively mitigate compliance and regulatory risks, with particular focus on data privacy, sanctions, and trade compliance.

2.     Policy Development & Implementation

• Draft, review, and update compliance-related policies, SOPs, and guidelines to ensure alignment with internal standards and applicable laws.
• Strengthen organizational compliance in critical areas, particularly data protection and privacy (PDPA), sanctions and export controls, and competition law.
• Ensure effective policy communication, implementation, and enforcement across all business units.

3.     Sanctions, Due Diligence & Third-Party Risk Management

• Lead and oversee compliance with global and domestic sanctions regimes, ensuring the organization does not engage with sanctioned or restricted individuals or entities.
• Develop and execute robust due diligence processes for vendors, contractors, agents, and partners, incorporating sanctions screening, beneficial ownership checks, and risk assessments.

Key Responsibilities

• Maintain and continuously enhance third-party risk management systems, including sanctions and Politically Exposed Persons (PEP) screening tools and monitoring protocols.

• Provide expert advisory on sanctions-related risks in business transactions, cross-border dealings, and new ventures, ensuring full adherence to applicable laws and internal policies.

4.     Personal Data Protection (PDPA) Compliance

• Oversee the company’s end-to-end compliance with the Personal Data Protection Act 2010 (PDPA), its amendments, and other relevant privacy regulations.
• Develop, implement, and maintain comprehensive data protection and privacy management frameworks, including consent mechanisms, data processing standards, and incident response procedures.
• Advise business units on privacy impact assessments, data retention, sharing, and cross-border transfer compliance.
• Promote a culture of data accountability through regular PDPA training, awareness campaigns, and employee engagement initiatives.

5.    Ethics, Awareness & Training Programmes

• Design and deliver targeted compliance and ethics training, with a strong emphasis on data protection, sanctions, and integrity awareness.
• Foster a culture of discipline, ethical behavior, and accountability throughout the organization.
• Lead communication initiatives to strengthen compliance consciousness and responsible conduct across all levels.

6.    Compliance Reporting

• Prepare and present compliance reports, sanctions risk updates, and PDPA compliance dashboards to the Chief General Counsel, Management and Board.

• Monitor implementation of corrective and preventive measures to ensure sustained compliance improvements.

Key Responsibilities

7.     Regulatory Engagement & Monitoring

• Act as the primary liaison with regulators, auditors, and external counsel on compliance, data protection, and sanctions matters.

• Monitor developments in legislation and regulatory guidance, including PDPA amendments, sanctions updates, and provide proactive advisories to management.

8.    Risk Management & Internal Controls

• Conduct compliance audits, sanctions risk assessments, and PDPA control reviews to identify vulnerabilities and recommend enhancements.
• Collaborate with cross-functional teams to integrate compliance and privacy controls within business operations and IT systems.