COMPLIANCE COUNSEL

Job description:JOB DESCRIPTION JOB OVERVIEWThe Compliance Counsel (Manager) will play a critical role in enhancing Vantris Energy Berhad compliance framework. This role is pivotal in ensuring the company operates in full compliance with applicable laws, internal policies, and ethical standards. Key responsibilities include advising on legal and regulatory matters, with a strong emphasis on sanctions compliance, monitoring global sanctions regimes and mitigating related risks. Additionally on data protection, ensuring adherence to Personal Data Protection Act 2010 (PDPA), General Data Protection Regulation (GDPR), and other privacy regulations. The position is key to safeguarding the company’s integrity, reputation, and operational resilience. Location : Vantis Energy Berhad (VTEB) HeadquarterDepartment : Legal and Corporate Secretarial - ComplianceJob Title: Compliance Counsel (Manager)Reporting ToSenior Manager ComplianceKey Experience Proven experience (minimum 8–10 years PQE) in compliance, legal, or regulatory roles, preferably within energy, oil & gas, or infrastructure industries. Demonstrated success in developing and managing corporate compliance programs. Strong record of advising senior management and collaborating with cross-functional teams. Hands-on experience in corporate governance, sanctions risk, data protection and ESG compliance are an added advantage. Exposure to multinational or public-listed company compliance practices is an advantage. Key Qualifications•       Bachelor’s Degree in Law (LL.B) from a recognized university.•       Admission to the Malaysian Bar (or equivalent qualification) preferred.•       Familiarity with international sanction regimes, screening tools and data protection laws.•       Certification in Compliance or Corporate Governance (e.g., International Compliance Association (ICA), Association of Certified Anti-Money Laundering Specialists (ACAMS), Data Protection Officer Certificate Programme or equivalent) is an added advantage. Strong command of written and spoken English and Bahasa Malaysia. Key Competencies and Attributes Excellent legal interpretation and analytical skills. Strong understanding of Malaysian and international regulatory frameworks High ethical standards and sound professional judgment. Strong interpersonal, communication, and stakeholder management skills. Strategic mindset with attention to detail and process efficiency. High ethical standards and ability to handle confidential information with discretion. Demonstrates high personal discipline, integrity and professionalism. Key Responsibilities1.     Compliance Governance & Advisory Lead the design, implementation, and continuous enhancement of the company’s compliance framework in alignment with corporate governance standards and regulatory requirements. Provide strategic legal and compliance advisory support to management, subsidiaries, and business units. Identify, assess, and proactively mitigate compliance and regulatory risks, with particular focus on data privacy, sanctions, and trade compliance. 2.     Policy Development & Implementation Draft, review, and update compliance-related policies, SOPs, and guidelines to ensure alignment with internal standards and applicable laws. Strengthen organizational compliance in critical areas, particularly data protection and privacy (PDPA), sanctions and export controls, and competition law. Ensure effective policy communication, implementation, and enforcement across all business units. 3.     Sanctions, Due Diligence & Third-Party Risk Management Lead and oversee compliance with global and domestic sanctions regimes, ensuring the organization does not engage with sanctioned or restricted individuals or entities. Develop and execute robust due diligence processes for vendors, contractors, agents, and partners, incorporating sanctions screening, beneficial ownership checks, and risk assessments.     Key Responsibilities  Maintain and continuously enhance third-party risk management systems, including sanctions and Politically Exposed Persons (PEP) screening tools and monitoring protocols. Provide expert advisory on sanctions-related risks in business transactions, cross-border dealings, and new ventures, ensuring full adherence to applicable laws and internal policies. 4.     Personal Data Protection (PDPA) Compliance Oversee the company’s end-to-end compliance with the Personal Data Protection Act 2010 (PDPA), its amendments, and other relevant privacy regulations. Develop, implement, and maintain comprehensive data protection and privacy management frameworks, including consent mechanisms, data processing standards, and incident response procedures. Advise business units on privacy impact assessments, data retention, sharing, and cross-border transfer compliance. Promote a culture of data accountability through regular PDPA training, awareness campaigns, and employee engagement initiatives. 5.    Ethics, Awareness & Training Programmes Design and deliver targeted compliance and ethics training, with a strong emphasis on data protection, sanctions, and integrity awareness. Foster a culture of discipline, ethical behavior, and accountability throughout the organization. Lead communication initiatives to strengthen compliance consciousness and responsible conduct across all levels. 6.    Compliance Reporting Prepare and present compliance reports, sanctions risk updates, and PDPA compliance dashboards to the Chief General Counsel, Management and Board. Monitor implementation of corrective and preventive measures to ensure sustained compliance improvements.   Key Responsibilities 7.     Regulatory Engagement & Monitoring Act as the primary liaison with regulators, auditors, and external counsel on compliance, data protection, and sanctions matters. Monitor developments in legislation and regulatory guidance, including PDPA amendments, sanctions updates, and provide proactive advisories to management. 8.    Risk Management & Internal Controls Conduct compliance audits, sanctions risk assessments, and PDPA control reviews to identify vulnerabilities and recommend enhancements. Collaborate with cross-functional teams to integrate compliance and privacy controls within business operations and IT systems.