Company Description
Sports Direct is part of Frasers Group, a leading UK-based retail group with a portfolio of internationally recognised brands in sports, lifestyle, and fashion.
Sports Direct Malaysia is currently looking for Manager, Regulatory Compliance to join our growing team.
Sports Direct Malaysia currently operates a total of 40 retail stores domestically and manages a proprietary SportsDirect.com e-commerce site for domestic and regional fulfillment. Sports Direct Malaysia offers over 70 of the leading authentic global sports brands, offering the widest variety of choice and value. The company employs over 1,000 staff with a view to expanding rapidly across Asia in the coming years.
We have developed a new generation of stores as part of our multi channel elevation strategy, to enhance the customer experience at every step of the journey. Our focus is on presenting an unrivalled range of quality products at excellent value in a modern spacious environment. The stores are uniquely zoned by key sports categories which include; SD Football, SD Running, SD Training (fitness, cross training, gym equipment, weights, boxing, yoga), SD Rackets (badminton, tennis, squash), SD Swimming (pool, beach, water sports), SD Sports (basketball, rugby, extreme games, cycling, skates & indoor games), SD Lifestyle (Men, Women & Kids) & SD Outdoor (Hiking, trekking, camping & fishing).
Job Description
The Manager, Regulatory Compliance plays a pivotal role in ensuring the Company’s compliance with the Personal Data Protection Act (PDPA) 2024 and other applicable regulations, policies, and frameworks. While this role serves as the appointed Data Protection Officer (DPO), the scope also extends to broader compliance areas such as anti bribery and corruption, whistleblowing, codes of conduct, and corporate governance policies.
The position is responsible for advising departments, conducting risk and compliance assessments, managing data breaches, leading audits, monitoring adherence to regulations, and delivering training and awareness programs. The role ensures that a strong culture of data protection, ethics, and compliance is embedded across the Company.
Your responsibilities as Manager, Regulatory Compliance will include, but not be limited to:
Regulatory Compliance & Data Protection
- Serve as a trusted advisor to departments on interpreting and applying the PDPA 2024
- Lead and coordinate the execution of Data Protection Impact Assessments (DPIAs)
- Review new products, services, systems, and processes for data privacy risks, providing recommendations and mitigations
- Support the Line Manager in developing, maintaining, and strengthening the Group’s compliance framework, policies, and procedures
- Conduct internal audits and assessments of data processing activities and compliance practices
- Investigate and manage suspected or actual personal data breaches, including breach notifications and recordkeeping
- Maintain compliance registers (e.g., data breaches, conflict of interest, anti-bribery & corruption declarations)
Training & Awareness
- Partner with Training & Development to design and deliver data protection, ethics, and compliance training programs
- Lead awareness campaigns to embed a strong compliance and integrity culture throughout the Company
Risk & Compliance Monitoring
- Track regulatory developments and assess their impact on the Group’s operations
- Conduct periodic compliance reviews and submit reports to management and regulators
- Evaluate business activities and third-party engagements for potential compliance risks
Stakeholder Engagement
- Act as a liaison with regulators, auditors, and external stakeholders on data protection and compliance matters
- Provide guidance to internal teams on Data Subject Access Requests (DSARs) and rights under PDPA 2024
- Collaborate cross-functionally to support compliance in business processes, contracts, and third-party relationships
Other Responsibilities
- Handle ad hoc tasks and projects as assigned by Line Manager or/and Management
- Lead or support compliance initiatives and projects beyond data protection, such as corporate governance reviews and regulatory filings
Qualifications
- Must possess at least a Bachelor's degree in Law, Business Administration, Risk Management, Finance, or a related field
- Professional certifications in Data Protection, Compliance, Risk, or ISO standards (e.g., CIPM, CIPT, CRM, FRM, CAMS, GRCP, ISO/IEC 27001 Lead Implementer or Auditor, ISO 37001 Anti-Bribery) are highly advantageous
- Minimum of eight (8) years of experience in risk management, compliance, internal audit, ISO, or a legal role, preferably within a retail environment with multi branch operations
- Strong knowledge of Malaysian laws and regulations: company law, contract law, MACC Act, PDPA, and industry-specific requirements
- Skilled in risk analysis, issue diagnosis, and developing effective solutions
- Detail-oriented in reviewing documents, policies, and compliance processes
- High integrity, ethical conduct, and confidentiality in handling sensitive information
- Excellent communication skills in English and Bahasa Malaysia; able to explain complex compliance concepts clearly
- Strong organizational and time management skills; able to manage multiple projects and meet deadlines
- Proactive, adaptable, and resilient in changing regulatory environments
- Strong initiative in identifying risks and compliance gaps early
- Collaborative team player with leadership ability and positive attitude
- Must willing to work at Persiaran Lagoon, Sunway City, Petaling Jaya, Selangor
- Able to start immediately will be an added advantage
Additional Information
An opportunity like this at Frasers Group is for the fearless!
The potential is massive, the experience unrivalled. To be able to make the most of it you need to live and breathe our principles, you will:
THINK WITHOUT LIMITS, and take the team with you!
BE RELEVANT, to our people, to partners, and to the planet!
OWN IT, and back yourself!
