Norlia Shamsudin

• Lead and manage the Regulatory and Compliance Assurance team to ensure full alignment with all relevant Bank Negara Malaysia (BNM) regulations, Generali corporate policies, and internal guidelines.
• Develop, implement, and maintain comprehensive compliance programs, conduct thorough reviews of company processes, and proactively advise senior management on potential compliance risks.
• Design, revise, and enforce compliance policies, including Compliance Policy and System Governance Policy, ensuring that employees and departments are consistently aligned with regulatory requirements.
• Provide expert guidance and support related to gap analysis against BNM regulatory requirements, identifying areas for improvement and ensuring timely remediation.
• Review compliance assurance work performed by team members, offering constructive feedback, and highlighting critical issues to the Board for further action.
• Serve as the primary liaison to BNM for supervisory reviews and issues concerning business units’ compliance with regulatory standards.
• Track and provide advisory support regarding BNM Supervisory Letters, collaborating with the Executive Committee (EXCO) to ensure adherence to regulatory instructions.
• Lead and provide expert advice on overall risk assessments related to compliance risks, ensuring a proactive approach to identifying and mitigating compliance-related threats.
• Conduct risk register assessments in collaboration with key business stakeholders to ensure a comprehensive approach to risk management.
• Offer independent assessments and guidance to the product team for new product launches, sales materials, and other relevant initiatives to ensure regulatory compliance
• Review and update compliance training materials for employees and agents, and conduct periodic training sessions to reinforce understanding of regulatory requirements.
• Present comprehensive reports to the Board Audit Compliance Committee, ensuring transparency and alignment with compliance goals.
• Lead people development efforts, including succession planning for direct reports (5 employees), fostering a culture of continuous learning and professional growth.
• Empower and coach direct reports to cultivate sound decision-making and strategic thinking, enhancing overall team performance.
• Drive projects aimed at enhancing the sanctions screening system, developing regulatory tracking tools, and implementing the self-attestation project to ensure compliance with BNM requirements.

Skills and Competencies:

• Strong self-motivation and a high level of personal responsibility.
• Exceptional verbal and written communication skills, with the ability to influence stakeholders at all levels.
• Proven ability to quickly learn new concepts and adapt to evolving regulatory environments.
• Capable of working independently and collaboratively within a cross-functional team.
• Highly organized and skilled at managing time efficiently to meet deadlines.
• Proven ability to operate effectively in fast-paced, high-pressure environments.
• Demonstrated problem-solving skills, with a focus on improving operations and delivering exceptional service.

• Compliance Framework Development & Implementation:
  Develop, revise, and implement key compliance policies, including the Compliance Policy, Anti-Money Laundering and Counter Financing of Terrorism (AMLCFT) Policy, Personal Dealing Policy, and Investment Policy, ensuring continuous monitoring and assurance for employees and departments.
• Regulatory Engagement & Advisory:
  Actively engage with Business Units to solicit feedback on regulatory requirements and ensure their understanding and adherence. Provide expert guidance and advice to team members regarding compliance matters and regulatory obligations.
• Quality Assurance & Feedback:
  Review and provide feedback on the quality assurance processes performed by team members, highlighting critical issues for the Board and ensuring alignment with regulatory standards.
• BNM Liaison & Supervisory Review:
  Serve as the liaison to Bank Negara Malaysia (BNM) for supervisory reviews and address any issues related to business units' regulatory compliance.
• Product Compliance:
  Provide an independent compliance view to the product team regarding new product launches, sales materials, and related marketing materials, ensuring all aspects comply with relevant regulatory standards.
• Compliance Training & Gap Analysis:
  Review and update compliance training materials for both agents and employees. Conduct periodic training sessions to reinforce regulatory requirements and assess compliance gaps for any new regulatory developments.
• Committee Secretariat & Reporting:
  Act as the Secretariat for the Anti-Money Laundering (AML) Committee and Management Conduct Committee (MCC), ensuring proper documentation and communication. Prepare regular reports for senior management, including the Board’s papers, Shariah reports, CEO’s 1:1 reports, and Management Reports on a monthly, quarterly, and annual basis.
• Regulatory Compliance Planning & Budgeting:
  Prepare the annual Compliance Plan and manage the budget for the Compliance Department to ensure efficient resource allocation and alignment with organizational priorities.
• Risk Management & Assessments:
  Review the Risk and Control Self-Assessment (RCSA) and due diligence reviews to identify potential risks. Also, evaluate Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP) test results, along with post-mortem reviews of incidents within the company.
• People Development & Succession Planning:
  Lead people development initiatives, including succession planning for two direct reports. Empower staff through coaching on effective decision-making, strategic thinking, and professional growth.

Skills and Competencies:

• Strong expertise in regulatory requirements and compliance frameworks, particularly within AMLCFT and investment policies.
• Exceptional communication skills, both written and verbal, with the ability to effectively engage with various stakeholders.
• Proven ability to review and implement regulatory requirements while managing risk assessments and compliance strategies.
• Strong leadership capabilities with a focus on team empowerment, coaching, and development.
• Highly analytical with excellent problem-solving skills, particularly in regulatory compliance, risk management, and operational improvements.
• Skilled in preparing reports for senior management and boards, with a focus on clear, actionable insights.
• Proficient in managing compliance budgets and planning for the development of the Compliance Department.

Key Responsibilities:

• Compliance Policy Development & Implementation:
  Develop, revise, and implement critical compliance policies including the Fraud Policy, Compliance Manual, and Fit and Proper Policy, ensuring they are effectively communicated and adhered to by employees and departments.
• Regulatory Engagement & Feedback:
  Actively engage with Business Units to solicit feedback on regulatory requirements, fostering collaboration to ensure compliance across the organization.
• Investigation of Unethical Practices:
  Investigate incidents involving unethical practices, such as those arising on social media, and ensure appropriate corrective actions are taken to maintain ethical standards within the organization.
• Team Support & Guidance:
  Provide ongoing support to team members, offering expert guidance and advice regarding regulatory requirements to ensure compliance and mitigate risks.
• Quality Assurance & Risk Reporting:
  Review and provide feedback on quality assurance processes performed by team members. Identify and highlight any critical compliance issues to the Board for further discussion and action.
• Liaison with BNM & Regulatory Review:
  Act as the primary liaison with Bank Negara Malaysia (BNM) for supervisory reviews and address any issues raised by business units related to regulatory compliance.
• Product and Marketing Compliance:
  Provide independent and thorough feedback to the Product Team regarding new product launches, sales materials, campaigns, and other promotional activities, ensuring full alignment with regulatory standards.
• Regulatory Communication:
  Communicate updates on new and evolving regulatory requirements to department heads, ensuring the business remains fully informed of compliance expectations.
• Compliance Training & Gap Analysis:
  Review and update compliance training materials for employees and agents. Conduct regular training sessions to reinforce regulatory knowledge. Perform gap analysis for new regulatory requirements and ensure timely compliance.
• Reporting & Documentation:
  Prepare comprehensive reports for the Board, CEO, and Senior Management on a monthly, quarterly, and annual basis. This includes updates on compliance performance, key risk indicators, and privacy compliance matters.
• Compliance Planning & Budgeting:
  Develop and maintain the annual Compliance Plan, ensuring alignment with strategic business objectives. Manage and prepare the budget for the Compliance Department to ensure resource allocation supports compliance efforts effectively.
• Risk Management & Coordination:
  Serve as the Risk Coordinator, leading efforts to conduct Risk and Control Self-Assessments (RCSA) and due diligence reviews. Record operational risk incidents, report key risk indicators (KRIs), and investigate the root causes of significant deviations from expected risk thresholds.
• Project Management:
  Lead or participate in key compliance-related projects, such as the Common Reporting Standard (CRS), outsourcing initiatives for printing, and the Archer System upgrade, ensuring compliance requirements are met in each project.

Skills and Competencies:

• Strong expertise in the development and implementation of compliance policies, particularly in fraud, ethics, and regulatory matters.
• Deep knowledge of regulatory requirements and the ability to communicate complex compliance issues effectively across departments.
• Proven experience in investigating and addressing unethical practices, with a focus on upholding organizational integrity.
• Highly skilled in providing strategic guidance to business units and management to ensure compliance and mitigate regulatory risks.
• Strong reporting capabilities, with experience in preparing reports for senior management and external stakeholders.
• In-depth experience in risk management, including the coordination of risk assessments and incident reporting.
• Project management experience, particularly in compliance-related initiatives such as CRS, outsourcing, and system upgrades.
• Strong leadership and communication skills, with a focus on team development, coaching, and empowering others.

Key Responsibilities:

• Compliance Function Management:
  Developed, maintained, and revised the policies and procedures within the Compliance Manual, Anti-Money Laundering and Anti-Terrorism Financing (AMLA) framework, and related activities to prevent illegal, unethical, or improper conduct.Collaborated with various departments, including Internal Audit and Human Resources, to ensure that compliance issues are directed to the appropriate channels for investigation and resolution.
  Regularly reviewed the Quarterly Compliance Checklist from business channels, preparing reports on events and breaches for senior management.
  Updated the Compliance Plan on a monthly basis, keeping management informed of the latest developments.
  Conducted Market Conduct Surveys on a quarterly basis and presented findings to management.
  Reviewed product sales materials to ensure they met regulatory requirements and maintained compliance standards.
  
• Fraud Investigation & Compliance Oversight:
  Independently handled major complaints, including fraud investigations, and monitored business units to assess the efficiency and effectiveness of company operations.Prepared detailed investigation reports and presented findings to the relevant committee, recommending appropriate actions.
  Collaborated with the Agency Department and Operations Department to implement recommended actions resulting from investigations.
  Acted as an independent body to review and evaluate compliance issues, ensuring that concerns are appropriately investigated and resolved.
  Managed and provided direction for the company’s Compliance Hotline, ensuring swift and effective resolution of compliance-related matters.
  
• Anti-Money Laundering & Counter Terrorism Financing (AML/CTF):
  Reviewed Suspicious Transaction Reports (STRs) from business units, ensuring timely and accurate reporting to Bank Negara Malaysia (BNM) via the Electronic Filing and Investigation Data System (EFIDS) after identifying suspicious transactions.Conducted quarterly reviews of sanction lists against existing policyholders, beneficiaries, and nominees to ensure compliance with AML/CTF regulations.
  Reviewed and updated the AMLA policy whenever new regulatory requirements emerged from BNM or the Group, providing bi-monthly updates to management.
  Prepared and delivered quarterly training sessions to new employees and Financial Executives, ensuring thorough understanding of AML/CTF obligations.
  Reviewed training materials prepared by the Agency Department to ensure consistency and compliance with regulatory requirements.
  Prepared monthly statistics reports related to AMLA matters for the Group.
  
• Investment Compliance & Monitoring:
  Developed and implemented the compliance monitoring program for investment operations, performing quarterly checks on investment mandates.Identified and reported any breaches in investment portfolios to management and worked with the Investment Committee to address non-compliance issues.
  Coordinated the declaration of personal dealing transactions and submitted reports to the Human Resources Department for compliance verification.
  
• Operational Risk Management:
  Assisted in implementing the operational risk management framework at AXA Affin, identifying, managing, and strengthening key risk controls.Monitored operational risk incidents and key risk indicators (KRIs), documenting and analyzing the root causes of deviations.
  Developed action plans to mitigate risks and provided regular updates on the status of issues to Group and Management, ensuring proactive risk management.
  

Skills and Competencies:

• Extensive knowledge of compliance regulations, including AML/CTF, fraud investigations, and operational risk management.
• Proven ability to develop, maintain, and revise compliance frameworks, policies, and procedures.
• Strong investigative skills, with experience handling sensitive fraud investigations and monitoring business unit compliance.
• In-depth understanding of regulatory requirements and the ability to assess and mitigate risk in business operations.
• Excellent communication skills, with the ability to prepare and deliver training, reports, and updates to management and the Group.
• Strong leadership abilities, with experience working across departments to resolve compliance issues and implement recommendations.
• Attention to detail, ensuring thorough analysis and reporting on compliance matters and operational risks.

Key Responsibilities:

• Investment Compliance Oversight:
  Assisted the Head of the Business Unit in training staff across various teams to ensure the effective dissemination of Anti-Money Laundering and Counter Financing of Terrorism (AML/CFT) information, policies, and procedures within operations.Provided guidance to staff to ensure strict adherence to AML/CFT regulations, including recognizing, reporting, and monitoring suspicious transactions.
  Ensured that all reporting procedures were followed, and compliance standards were maintained within the investment operations.
  
• Investment Compliance Monitoring:
  Supervised the team responsible for investment compliance monitoring for AmLife Insurance Berhad, ensuring compliance with both internal and regulatory requirements.Investigated and escalated any issues related to compliance or operational incidents to the Risk Management and Compliance Unit for further resolution.
  Reviewed post-trade investment transactions to confirm that the Front Office conducted trades within the prescribed regulatory and internal limits.
  
• Risk Management & Reporting:
  Accountable for implementing an effective risk management program within the investment operations.Regularly updated the risk profile by applying AmLife's risk methodology to identify, assess, monitor, and report on potential risk exposure.
  Identified, tracked, and reported key or significant risks that could materially impact the business, with quarterly risk reports submitted to senior management.
  
• Investment Services Operations Management:
  Oversaw the management of investment support functions, including investment operations, accounting, and reporting. Ensured efficient execution and accurate reporting within these functions.Developed and managed workflow systems, operations policies and procedures, and led the operational teams to maintain smooth, efficient operations.
  Managed relationships with key service providers, including custodians, to ensure compliance and operational excellence.
  
• People Development & Succession Planning:
  Managed a team of 10 staff members, focusing on people development, coaching, and succession planning.Empowered direct reports by coaching them on sound decision-making, strategic thinking, and aligning their work with the organization’s goals.
  Fostered team collaboration and efficiency by promoting team-building initiatives and holding regular meetings to ensure alignment on objectives.
  
• Project Management:
  Led the enhancement of the Investment Operations System, ensuring that improvements met the needs of the business and complied with regulatory requirements. Managed all aspects of the project, from development through to implementation.

Skills and Competencies:

• Strong understanding of investment compliance, including AML/CFT regulations and internal compliance policies.
• Proven leadership in managing and coaching teams, ensuring staff are equipped to handle compliance responsibilities effectively.
• In-depth knowledge of risk management practices, with the ability to assess and report on risk exposures.
• Expertise in investment operations, accounting, and reporting, with the ability to streamline processes and maintain high standards of accuracy.
• Strong communication skills, with experience in engaging with key stakeholders and service providers.
• Project management experience, particularly in enhancing operational systems and processes to align with business objectives.
• Ability to develop and manage workflows, policies, and procedures to ensure efficient and compliant operations.

Key Responsibilities:

• Audit Planning & Execution:
  Responsible for the comprehensive planning of various insurance audits, ensuring that each audit is completed within the agreed timelines and budget constraints.Developed and executed audit programs for key assignments, including Risk Management Audits, Shariah Audits, Functional Reviews of Investment Linked Products, and Functional Reviews of Product Management.
  
• Audit Report Quality & Accuracy:
  Ensured that all audit reports are accurate, align with the audit objectives, and comply with company standards and guidelines.
• Team Leadership & Management:
  Supervised a small team of auditors, providing technical guidance and ensuring that team members are motivated, disciplined, and aligned with audit objectives.Led the planning, programming, execution, and reporting of audit work, ensuring efficiency and effectiveness throughout the process.
  
• Audit Quality Assurance:
  Accountable for the quality of work performed by the audit team, ensuring audits are thorough, comprehensive, and meet internal and external standards.Managed the efficiency and effectiveness of the audit team, ensuring optimal performance and adherence to best practices.
  
• Internal Control & Risk Management Assurance:
  Provided assurance regarding the adequacy, appropriateness, and effectiveness of the internal control environment and risk management framework within the organization.
• Stakeholder Communication & Influence:
  Communicated audit findings effectively across various internal functions, engaging senior management with clarity and conviction. Acted as an influential advisor, providing actionable recommendations to enhance processes and mitigate risks.

Skills and Competencies:

• Strong experience in audit planning, execution, and reporting, particularly within the insurance industry.
• Proven leadership capabilities, with experience managing and developing audit teams.
• In-depth knowledge of risk management, internal controls, and governance frameworks.
• Excellent communication skills, with the ability to influence senior management and communicate complex findings effectively.
• Detail-oriented with a focus on ensuring the quality, efficiency, and effectiveness of audit processes.
• Ability to drive change and provide strategic recommendations to improve organizational processes.

Key Responsibilities:

• Board & Committee Reporting:
  Involved in the preparation of reports for board meetings, including the development of proposals for Board approval.Prepared monthly reports for the Investment Committee and presented key findings during meetings.
  Drafted circulars for approval by relevant members and ensured timely communication of important updates.
  
• Proposal Assistance & Compliance Reporting:
  Assisted the Investment Team in preparing proposal papers and reports, ensuring alignment with compliance standards.Prepared monthly compliance reports for the Principal Group, liaising with Principal staff to address any issues raised.
  
• Policy & Procedure Management:
  Oversaw the timely completion and approval of policies and procedures by coordinating with the respective departments.Developed and maintained the Compliance Policies and Procedures Manual, ensuring it remained up to date with the latest regulatory requirements.
  Regularly updated the compliance checklist and working papers, ensuring compliance documentation was accurate and comprehensive.
  
• Compliance Monitoring & Auditing:
  Monitored investment restrictions in the Charles River Trading System (CRTS) to ensure compliance with internal policies and external regulations.Conducted checks and audits on restrictions set within the CRTS, ensuring adherence to compliance requirements.
  Investigated operational errors and issues, preparing detailed investigation reports and ensuring the timely rectification of audit findings.
  Maintained and updated an audit log, tracking the status of audit issues and following up with the Operations Department to ensure resolution.
  
• Liaison with Auditors & Risk Management:
  Acted as the liaison between internal auditors and the organization, ensuring effective communication and collaboration.Collaborated with the Operations Department to resolve audit-related issues and ensure proper implementation of corrective actions.
  Participated as a member of the Operational Risk Task Force, contributing to the development and maintenance of the Operational Risk Map and Data Collection Forms.
  Worked closely with the Group Risk Management Unit to ensure that data collection forms were completed accurately by respective departments and submitted within deadlines.
  
• Operational Risk Management:
  Attended Operational Risk Sub-Committee meetings as a representative of CIMB-Principal, providing insights on operational risk management issues and updates.Ensured alignment between operational risk practices and the organization’s risk management framework.
  
• Anti-Money Laundering & Counter Terrorism Financing (AMLA):
  Drafted and maintained the AMLA Policies and Procedures Manual for CIMB-Principal, ensuring compliance with relevant regulations.Acted as the liaison for all AMLA-related matters, serving as the appointed Money Laundering Reporting Officer (MLRO) for CIMB-Principal.
  Compiled and completed the monthly CIMB Group AMLA report, ensuring compliance with reporting requirements.
  Served as the primary point of contact for CIMB Group Compliance on all compliance-related issues, fostering collaboration and ensuring adherence to internal policies.
  

Skills and Competencies:

• Extensive knowledge of compliance policies and procedures, with a focus on AMLA, operational risk management, and investment compliance.
• Proven experience in preparing and presenting reports to senior management and board committees.
• Strong attention to detail in auditing, policy development, and ensuring regulatory compliance.
• Ability to collaborate effectively across departments, ensuring timely and efficient resolution of compliance issues.
• Experience in liaising with internal auditors, risk management teams, and regulatory bodies.
• Strong communication and coordination skills, ensuring smooth interactions between teams and stakeholders.
• Proficient in managing complex compliance tasks, including policy creation, operational risk assessment, and compliance monitoring systems.

Key Responsibilities:

• Compliance Reviews & Risk Assessment:
  Conducted comprehensive compliance reviews of outsourced activities, including the Prudential Services Asia and Call Centre operations in Malaysia.Assessed and tested internal controls to ensure that the company’s operations comply with applicable regulatory requirements, policies, and procedures.
  Provided reasonable assurance that company policies and guidelines are adhered to, identifying areas for improvement and ensuring compliance.
  
• Report Preparation & Corrective Action:
  Prepared draft reports on findings from compliance reviews, including developing recommendations for corrective actions or process improvements.Collaborated with the Senior Manager to review findings and agreed-upon corrective actions.
  
• Fraud Investigations & Operational Monitoring:
  Independently managed major complaints, including fraud investigations, while monitoring the effectiveness of business unit operations.Conducted thorough assessments to ensure operational efficiency and compliance with company policies.
  
• Stakeholder Engagement & Relationship Building:
  Established and nurtured effective working relationships with the management of business units, ensuring clear communication regarding risk assessments and business strategies.Acted as a liaison with business unit management to ensure full understanding of business goals, plans, and risk-related issues, providing ongoing feedback and ensuring alignment across teams.
  
• Anti-Money Laundering (AML) & Sales Compliance:
  Actively involved in monitoring Anti-Money Laundering (AML) activities, including the monitoring of Suspicious Transaction Reports (STRs).Ensured compliance with Know Your Client (KYC) regulations and provided guidance on proper advice within the sales processes.
  
• Audit Engagements & Reporting:
  Led or supported the planning, fieldwork, and reporting of internal audits for both local and regional business units, including financial, compliance, and operational audits.Participated in asset management audits in Korea and compliance & fraud audits in Indonesia, as well as audits of fund management and operations in Malaysia.
  Prepared audit programs for local units, providing practical advice on strengthening internal controls and identifying potential risks.
  
• Internal Control Documentation & Risk Assessment:
  Documented and assessed internal controls, performed risk assessments, and designed risk/control matrices and audit programs.Supervised audit staff, reviewed work results, and provided formal and informal feedback to ensure alignment with audit objectives.
  
• Non-Assurance Services & Advisory Engagements:
  Provided non-assurance services to business units, participating in advisory engagements and special projects to enhance operational effectiveness and risk management strategies.
• Knowledge Sharing & Team Development:
  Shared knowledge, skills, and experiences with team members, guiding them in their professional development and enhancing overall team performance.
• System Control Evaluation & Risk Mitigation:
  Conducted surveys of assigned functions and activities to evaluate the adequacy of system controls in achieving established objectives.Identified key control points and recommended enhancements to strengthen control environments and mitigate risks.
  

Skills and Competencies:

• Expertise in compliance auditing, fraud investigations, and risk assessments.
• Proven experience in leading and executing internal audits, both locally and regionally, across various business units.
• Strong understanding of Anti-Money Laundering (AML) regulations and sales compliance standards, including KYC and proper advice practices.
• Ability to develop and maintain effective relationships with management to ensure full understanding of business strategies and risk-related issues.
• Proficient in internal control documentation, risk assessment, and the design of audit programs.
• Strong leadership skills, with experience guiding and mentoring team members in their professional development.
• Excellent communication and reporting skills, with the ability to present findings to senior management and recommend actionable improvements.

• Involved in independent review and assessment on all loans approved up to disbursement USD15m for Bank Industri Group (Bank Industri, Exim Bank and Malaysian Export Credit insurance Berhad)
• Involved in independent opinion and judgement on quality of the loan approved and the impact to the credit portfolio mix of the Group on the overseas financing project and trade finance on export & import at EXIM Bank
• Involved in ensuring compliance with all prudential credit policies and procedures set by the Board, Development Financial Institution Act,2002 (DAFIA) and other related statutory laws and regulations
• Involved in ensuring that consistent standard for loan origination, evaluation and documentation are properly maintained
• Involved in credit special investigation for Bank Industri Group, Exim Bank and MECIB

• Team leader for branches audit for Eon Bank, Eon Finance and Management Audit
• Involved in presenting reports of evaluation to the Branch Manager and Audit Committee
• Involved in investigation and special audit on problematic project on case to case basis in term of operational, credit and administration issues
• Involved in special project on Y2K compliance and anti-money laundering project
• Review on credit matters on corporate loans and SMIs loans which above RM500k
• Involved in preparing audit checklist for annual review for Audit department