Head of IT Governance

Responsible for overseeing all IT Governance-related activities including the continual adoption of best practices in the Information Technology Controls & Information security governance and compliance, and leading a team of highly skilled resources in the development of best practices and delivery of required operational processes and activities to govern the overall business practice of Information Services and Technology.

The IT Governance Team is responsible for delivering IT Governance, Risk Management and Compliance across the organization.

**Respobsibilities**
- Support GM (Group IT) in creating and implementing a strategy for the deployment of Information Technology governance, risk management, controls, and compliance
- Lead experienced enterprise team that provides global coordination and oversight of divisional and business units in Information Technology Controls, information security governance and Risk Management processes and strategies.
- Governance, Risk, and Compliance - Cover the implementation of IT solutions for cases such as Access controls, Process controls, Risk Management, Compliance Management, third party vendor risk management.
- Accountable for the establishment, management and assurance of effective plans, processes, policies and standards delivering resilient IT disaster recovery and service continuity.
- Accountable for defining Group policy, advising on technology implementation, global IT controls and monitoring/reporting of performance
- Coordinate audit and regulatory inquiries and external vendor activities to help represent the company from an information technology compliance, security, recovery and risks perspective
- Facilitate and lead the reviews of control lapses across group business units and entities/subsidiaries to implement improvement measures to avoid repeats.
- Facilitate tracking and reporting on divisional and business units' metrics, results, data modelling, processing, calculating and transformation into meaningful metrics and reports.
- Define and communicate corporate plans, procedures, policies, and standards for the organization for acquiring, implementing, and operating new security systems, equipment, software, and other technologies.
- Collaborate with other management resources to establish and maintain a system for ensuring that Information Technology governance are communicated and met.
- Recommend and implement changes in technology policies and practices in accordance with changes in applicable regulatory bodies together, with Group Cyber Security Team, where applicable.
- Support the investigation of reported technology policies breaches and develop strategies to handle security incidents and trigger investigations, with Group Cyber Security team, where applicable.
- Orchestrate the analysis and delivery of findings to internal customers with impactful, comparative, interpretative security analysis in a clear, consistent, and factual manner together with Group Cyber Security team.
- Participates in leading committees, councils, industry forums, and consortiums to represent business interests and set standards/practices.
- Responsible for the formulation, propagation and adoption of Group-wide IT policies, standards, procedures and guidelines across the enterprise.
- Maintain IT Risk Management processes in alignment to Risk Management framework, facilitate risk analysis and monitor risk mitigation to ensure effectiveness of remediation steps.
- Design, develop and implement IT compliance procedures, practices and processes to maintain proactive conformance and oversight programs.
- Oversee IT aspects of Business Continuity Management activities.
- Responsible for managing internal/external group-level IT audits, including formulating appropriate risk management/remediation actions.
- Ensure timely closures/ remediation of issues to committed timelines.
- Responsible for quarterly IT steering committees, Business Unit and board reporting functions in KPI, cost synergies and compliances.
- Coordinate and facilitate Learning Needs Assessment (LNA) to ensure that training plans are aligned to business objectives.
- Facilitate communications across IT Groups and Users.
- Provide advisory to BUs in areas of IT Governance.

**Requirements**:

- Bachelor’s Degree in Computer Science, Business Management or equivalent
- Proven leadership capability, executing as appropriate in the areas of responsibility
- Expertise in budget planning, financial management and resource management
- Knowledge and experience with industry best practices, including COBIT, ITIL, PMBOK, etc.
- Strong business acumen and business planning skills
- Excellent verbal, written communication skills and interpersonal skills, including the ability to explain technology solution in business terms, establish rapport and persuade others, across all levels
- Job Code: MONT
EA Registration No. R22111084
EA License No.: 01C4394

585667