On - Head of Risk

• Enterprise Risk Management • Own and continuously improve the enterprise risk management framework, as the primary governance structure, ensuring alignment with On’s strategy, regulatory obligations, and industry best practices. • Own and continuously improve the enterprise risk management framework • Facilitate the integrated risk cycle, including the identification, assessment, facilitate risk response  and reporting cycle, including acting as the central hub where BCM operational risks and DMA materiality findings are synthesized into the Group risk register. • Facilitate the integrated risk cycle • Prepare unified risk reporting for senior leadership, translating risk data from all three frameworks into actionable recommendations for the Board and Executive Team. • Prepare unified risk reporting • Monitor the external risk landscape – including regulatory shifts, geopolitical developments, and emerging threats to proactively advise the business. • Monitor the external risk landscape • Partner with Internal Controls and Internal Audit to ensure risk identified via ERM, BCM, and DMA  inform control design and assessment priorities.Drive a proactive risk culture across the organization, making risk management a strategic tool for growth rather than a compliance exercise. • Partner with Internal Controls and Internal Audit • Drive a proactive risk culture • Business Continuity Management • Own the BCM framework, crisis management and business continuity plans (BCPs), driving their expansion across all critical functions, entities, and geographies. • Own the BCM framework, crisis management and business continuity plans (BCPs) • Design and implement BCPs for critical business processes, working directly with process owners to scale operational resilience globally. • Design and implement BCPs • Lead a structured assessment programme of tabletop exercises and simulation drills, feeding lessons learned back into plan improvements and into the ERM framework to refine risk appetite. • Lead a structured assessment programme • Coordinate with Tech on disaster recovery (DR) alignment, ensuring business continuity and tech resilience are assessed as a unified front. • Coordinate with Tech on disaster recovery (DR) alignment • Double Materiality Assessment (DMA) • Support the DMA process to identify and assess On’s environmental and social impacts, as well as the financial risks and opportunities they present. • Support the DMA process • Ensure DMA outcomes are integrated into the ERM cycle, bridging the gap between sustainability impact and financial risk management. • Ensure DMA outcomes are integrated into the ERM cycle • Collaborate with the relevant stakeholders (e.g. Non-Financial Reporting teams, Sustainability, Legal, etc.) to ensure materiality assessments meet evolving regulatory standards while remaining grounded in business reality. • Collaborate with the relevant stakeholders (e.g. Non-Financial Reporting teams, Sustainability, Legal, etc.) • Cross-Cutting • Cross-Cutting • Act as a subject matter expert to senior business leaders on operational resilience, ESG-related risks,  and risk-informed decision-making. • Act as a subject matter expert • Collaborate across functions, including Legal, Compliance, Tech Security, Operations and Sustainability, to embed risk considerations into enterprise-wide initiatives. • Collaborate across functions • Your Story • Your Story • 12+ years of experience in risk management, business continuity, or operational resilience, or a closely related discipline, with at least 5 years in senior leadership roles, ideally within a fast-growing, international environment.