Job Description:
We are seeking an experienced IT Governance, Risk and Compliance professional to lead the development and implementation of governance structures across our IT environment.
This is a key strategic hire that will work directly with the Senior Cybersecurity Team to drive innovative initiatives, mature governance frameworks, and shape the future of the function.
-----------------------------------
About the Role:
* Governance Leadership: Lead the development and embedding of governance structures across IT in a maturing environment.
* Policy Development: Review, design and implement policies in collaboration with IT and the wider business to ensure they are practical, effective and audit-ready.
* Risk Management: Partner with SMEs, Architects and project teams to support risk assessments, particularly for new solution implementations.
* Compliance Oversight: Ensure compliance with relevant regulatory requirements (NIS 2 etc). Standardise documentation and ensure audit readiness.
* Communication & Reporting: Create impactful board-level reporting materials, translating technical GRC topics into clear, engaging visuals for senior stakeholders.
* Stakeholder Engagement: Influence, challenge and support senior leaders, ensuring GRC requirements are embedded in decision-making.
-----------------------------------
About You:
* Strong background in IT Governance, Risk and Compliance, ideally from a highly regulated environment.
* Experience implementing or maturing governance frameworks – knows what 'good' looks like.
* Skilled in policy development, compliance frameworks, and risk management.
* Strong communication and stakeholder management skills – able to present complex issues in a clear and engaging way.
* Confident in influencing and challenging senior stakeholders.
* Experience in consultancy or advisory roles is an advantage.
* Leadership potential – interest in building and leading a team as the function grows.