EMEA Compliance Manager

Role Summary

The EHS&C Manager leads the governance, compliance, and assurance program across all sites under our clients Security Services Agreement. This role ensures full alignment with contractual obligations, our clients policies, and applicable local laws. Key responsibilities include implementing a documented Health & Safety Management System (HSMS), managing risk assessments, incident reporting, audit readiness, business continuity planning, and driving performance against Safety KPIs.

The EHS&C Manager is responsible for operationalizing the following core compliance and performance elements across all serviced sites:

• Documented Health & Safety Management System (HSMS): Establish and maintain a site-specific HSMS aligned with contractual and regulatory standards.

• Risk Assessments: Conduct initial, annual, and task-specific risk assessments; maintain a current Site Risk Register.

• Safety Risk Communication: Ensure all significant safety risks are communicated within 4 hours of discovery.

• Cyber/IT Security Breach Notification: Coordinate and report any cyber or security breaches within 24 hours.

• Audits & Self-Audits: Implement a rolling assurance plan, conduct self-audits, and support internal/external audit readiness.

• Subcontractor EHS Prequalification: Ensure all subcontractors are prequalified and compliant with customers EHS standards.

• Business Continuity Management (BCM): Align site-level emergency preparedness and continuity plans with contractual BCM requirements.

• Corrective & Preventive Actions (CAPA): Drive closure of CAPAs and monitor effectiveness to prevent recurrence.

• KPI-Driven Performance: Deliver against defined EHS KPIs, including Safety Gateway and Standard KPIs, with direct implications for Fee-at-Risk outcomes.
  
  
  

Key Outcomes

• Zero material EHS non-compliance events.

• No Step-In events triggered by Health & Safety or Business Continuity failures.

• 100% of significant safety incidents reported within 4 hours; cyber/security breaches within 24 hours.

• All serviced sites covered by an active HSMS and current risk assessments.

• Achievement of Gateway and Standard Safety KPIs across all countries.

Scope & Interfaces

• Governance: Active participation in SMT, OMT, and ELT forums; leads EHS content in Performance Management Reports (PMRs) and data submissions.

• Interfaces: Global Security, E&PS/FM, Site Leads, customer EHS&S, IT Security, Procurement, Legal, and Subcontractors.
  
  

Core Responsibilities

A. EHS Governance & HSMS

• Develop and maintain a robust HSMS aligned with ISO-style frameworks.

• Ensure policy compliance and manage change control processes.
  
  

B. Risk Assessment & Control of Work

• Conduct initial and annual risk assessments for routine and high-risk tasks.

• Maintain Site Risk Registers and track mitigation actions and CAPAs.
  
  

C. Incident Management & Reporting

• Implement incident response protocols with defined service-level timelines.

• Ensure timely communication of safety risks (≤ 4 hours) and cyber breaches (≤ 24 hours).

• Support RCA and CAPA processes to closure; analyze trends in near misses and SIFp events.
  
  

D. Audits & Assurance

• Maintain and execute a rolling assurance plan, including self-audits.

• Coordinate internal, external, and regulatory audits; ensure timely responses and closure of findings.
  
  

E. Subcontractor Compliance

• Oversee EHS prequalification and compliance of subcontractors and managed vendors.

• Validate Managing Agent oversight and ensure adherence to customers policies.
  
  

F. Training & Competency

• Maintain role-based training matrices and verify background screenings for EHS-critical roles.
  
  

G. Business Continuity & Emergency Preparedness

• Plan, execute, and document emergency drills aligned with customer standards.
  
  

H. Data Protection & IT Security

• Ensure no unauthorized use of customer data for AI applications.

• Coordinate breach notifications and maintain evidence of IT security controls.
  
  

I. Reporting & Performance Management Reports (PMRs)

• Contribute to the EHS section of Monthly Performance Management Reports (PMRs).

• EHS metrics and KPIs (e.g., incident rates, audit closures, risk assessments)

• Corrective Action Notices (CANs) and any Fee-at-Risk implications

• Data feeds and reporting outputs required under Exhibit 25

• Narrative summaries of safety performance, compliance status, and risk trends

• The EHS&C Manager is responsible for:

• Preparing and submitting the EHS section of the PMR each month

• Ensuring data accuracy and completeness

• Aligning reporting with contractual standards and customer expectations
  
  

J. Insurance Claims Support

• Provide documentation for accident and property loss claims within 7 days.