Job Title: Information Technology Head of GRC
Location: BL9 8RR
Schedule: Monday-Friday, 40 hours per week
The Information Technology Head of GRC is responsible for leading the organisation’s global GRC strategy, ensuring effective risk management, compliance with applicable regulations, and robust governance frameworks.
What You’ll Be Doing:
* Build and apply repeatable methodologies which monitor and manage the effectiveness of JD Sports’ information security function in response to evolving trends in good practice and the dynamic nature of the threat environment.
* Monitor the Systems Integrator and third‑party performance against contractual information security obligations and oversee all implementation activity.
* Define and implement the Group‑wide GRC strategy, policies, and frameworks.
* Promote a strong risk and compliance culture throughout the organization.
* Ensure governance structures are effective, transparent, and aligned with industry best practices.
* Report regularly to executive management, the Audit Committee, and the Board on GRC performance, emerging risks, and ITGC effectiveness.
* Identify and drive opportunities for service improvements.
* Build and lead a high‑performing GRC function, including compliance, risk, and ITGC specialists.
* Foster cross‑functional collaboration with IT Security, Finance, Internal Audit, and Legal.
* Understand, manage, and mitigate risks while ensuring regulatory compliance and safeguarding information, IP, people, customers, shareholders and brand.
What We’re Looking For:
* Develop, communicate, and agree on an appropriate JD Sports information security operations strategy that will help optimise and target investment and resources.
* A proven track record in team or departmental leadership.
* An understanding of the measures and processes needed to enable large retail organisations to remain compliant with relevant laws and regulations.
* Strong analytical and problem‑solving skills.
* Bachelor’s degree.
* 12+ years of progressive experience in governance, risk, compliance, or audit, with at least 5 years in a senior leadership role.
* Relevant certifications such as CISA, CRISC, CISM, CIA, or CISSP are strongly desirable.
Benefits include staff discount on JD Group and other brand products, and personal development opportunities to learn and develop at work.
#J-18808-Ljbffr