Legal & Compliance Manager

Location: Nairobi, Kenya

Reports to: Vice President, Finance

Role Overview

The role will be responsible for overseeing legal, regulatory, and compliance matters across all Pula entities and jurisdictions. The role focuses on ensuring the group operates within applicable legal and regulatory frameworks, while building and maintaining a consistent, scalable compliance program across markets.

Key Responsibilities

1. Legal Advisory & Contract Management

• Provide timely, practical legal advice across all Pula entities and business units on a wide range of legal matters
• Draft, review, and negotiate key agreements, including insurance and reinsurance agreements, NDA’s, partnership and  distribution agreements, data sharing agreements, and vendor/consultancy contracts etc.
• Oversee and streamline the full contract lifecycle, including standardization, approvals, execution, and tracking.
• Support market entry and expansion initiatives, including legal structuring, licensing, and local law compliance.
• Manage and coordinate external counsel across jurisdictions.
• Support internal stakeholders on day-to-day legal queries, risk mitigation, and compliance with local and international laws. 
  

2. Group Compliance & Regulatory Oversight

• Develop, implement, and maintain a group-wide compliance framework across all Pula entities.
• Ensure compliance with applicable laws and regulations in each jurisdiction.

• Oversee licensing, regulatory filings, and ongoing compliance obligations across all entities.
• Conduct periodic compliance risk assessments at both entity and group levels and implement mitigation measures.
• Lead compliance monitoring, reporting, and remediation efforts across the group.
• Support business teams with documentation and compliance requirements for tender submissions and other external engagements.
• Support internal and external audits and manage regulatory engagements.

3. AML & Anti-Bribery and Corruption (ABC)

• Develop, implement, and maintain the company’s AML and anti-bribery and corruption frameworks across all jurisdictions.
• Conduct risk assessments and ensure appropriate controls are in place.
• Oversee KYC, due diligence, and third-party risk management processes, including screening of partners, vendors, and consultants.
• Monitor compliance with applicable laws and internal policies.
• Investigate and manage any suspected breaches, including escalation and reporting where required.
• Deliver training and awareness programs across the group.

4.  ESG (Environmental, Social & Governance)

• Support the development and implementation of the company’s ESG framework and initiatives across all Pula entities.
• Ensure alignment of operations with applicable ESG standards, investor requirements, and regulatory expectations.
• Contribute to ESG risk assessments and integrate ESG considerations into the broader compliance and risk management framework.
• Support ESG reporting and disclosures, including coordination with internal stakeholders and investors.

• Assist in developing and implementing ESG-related policies and guidelines. 

5. Data Protection & Privacy

• Ensure compliance with applicable data protection laws across all jurisdictions.
• Draft and implement data protection policies, procedures, and data-sharing frameworks.
• Conduct Data Protection Impact Assessments (DPIAs) and advise on cross-border data transfers.
• Oversee third-party data processing arrangements and ensure appropriate safeguards are in place.
• Act as the central point of contact for data protection matters, including incidents and regulatory queries.

6. Policy Development & Implementation

• Lead the drafting, updating,  review, and rollout of group-wide policies, including compliance, ethics, data protection, and risk management policies etc.
• Ensure policies are practical, aligned with business operations, and consistently implemented across all entities.
• Maintain a centralized policy repository and ensure periodic reviews and updates.

7. Risk Management

• Identify, assess, and manage legal and compliance risks across all Pula entities.
• Maintain and update group, departmental and entity-level risk registers.
• Prepare risk reports for management and the Board, highlighting potential legal exposures, regulatory risks, and mitigation strategies.
• Advise management on risk exposure in commercial transactions and strategic initiatives.

• Ensure appropriate controls are implemented and monitored across the group.

8. Corporate Governance  and Investor relations

• Support corporate governance across all group entities, including board and shareholder matters, statutory filings, and maintenance of corporate records.
• Draft resolutions and minutes and ensure adherence to governance standards in each jurisdiction.
• Support investor reporting and disclosures from a legal and compliance perspective.

• Assist in investment transactions (equity, debt, grants etc), including documentation and due diligence.
• Monitor and ensure compliance with investor obligations, covenants, and reporting requirements.

Qualifications & Experience

• Bachelor of Laws (LLB) degree from a recognized institution and admission to the Bar (Kenya or equivalent jurisdiction).
• Minimum of 7 - 10 years’ post-admission experience, with a strong focus on legal, compliance, and regulatory matters.
• Demonstrated experience managing multi-jurisdictional legal and compliance functions, preferably within financial services, insurance, or a multinational environment.
• Strong expertise in contract drafting and negotiation, regulatory compliance, data protection, and policy development.
• Solid understanding of risk management frameworks and the implementation of compliance programs.
• A Master’s degree or relevant postgraduate qualification (e.g., LLM, MBA, or equivalent) will be an added advantage.
• Professional certifications in risk and/or compliance, AML(e.g., ICA, CAMS, ERM, CCEP or equivalent) will be an added advantage.

Key Skills & Competencies

• Strong commercial and legal judgment
• Excellent drafting and negotiation skills
• Strong understanding of multi-jurisdictional compliance frameworks
• High attention to detail and strong organizational skills
• Ability to manage complex, cross-border matters independently
• Strong stakeholder management and communication skills
• High integrity and professionalism