*Based 3 days a week in our Newcastle office
Reporting to the Director of IT Governance, this role is responsible for defining, implementing and governing the IT Controls Framework globally. This responsibility includes but is not limited to.
- Accountable for defining, implementing and governing the IT controls Framework to ensure that IT controls are effectively managed within IT.
- Accountable for developing and implementing an operating model to ensure full compliance with the control framework.
- Accountable for Controls Test planning, testing execution, and stakeholder metrics reporting.
- Accountable for facilitating and providing effective collaboration between the wider IT teams and our business stakeholders to ensure compliance with our control framework.
- Accountable for supporting and enabling IT audit and compliance reviews, ensuring responses are effectively documented and evidenced in a timely manner.
- Accountable for ensuring effective remediation plans are in place and tracked to ensure compliance.
- Drive excellence in operational delivery in how existing and new applications deliver operational excellence across their controls.
- Coaching, mentoring and providing standards to support the wider IT teams in control compliance.
Lead and govern adherence to the control framework and control performance to ensure gaps are effectively reported, remediation plans agreed with stakeholders and operationalised within the agreed timescales.
- Ensure there are effective reporting dashboards in place to support control owners.
- Manage ongoing compliance and update process documents and control requirements, ensuring new controls are fully documented and compliant with the framework.
- Manage and develop Controls Test plans to ensure all controls are effectively tested, reported and remediation plans agreed with stakeholders and operationalised within the agreed timescales.
- Maintain and enhance the organisation's internal control framework, ensuring continuous improvement of IT controls and identifying opportunities to streamline and automate controls.
- Align with stakeholders on strategic plans to ensure controls are fit for purpose and align to architectural changes in the technology landscape.
- Act as a trusted advisor to senior management and business leaders on IT risks and controls. - Develop and deliver training, education and cultural initiatives to embed and operationalise effective control performance. ·
- Prepare and present regular updates on IT Controls Program to senior leadership and key committees. Ability to summarise and highlight key risks, findings and recommendations. Audits: - Facilitate, support and enabling IT audit and compliance reviews, ensuring responses are effectively documented and evidenced in a timely manner.
- Ensure there are effective remediation plans agreed with stakeholders and operationalised within the agreed timescales.
- Reduce overall audit efforts by building information depositories and utilising existing control information.
Other:
- Accountable setting targets, priorities and ways of working for the IT Controls Governance team.
- Coaching, mentoring and providing standards to support the IT Controls Governance team and wider IT teams in IT Controls.
- Accountable for facilitating and providing effective collaboration between the wider IT teams and our business stakeholders ensuring a seamless end to end experience.