IT Governance, Risk & Compliance Lead

About us

At Imperial Brands, we’re a truly international company driven by a strong challenger culture. We’re an inclusive, innovative and responsible FTSE30 FMCG business widely recognised on the global stage. We generate over £30bn revenue and employ over 27,500 like-minded achievers in markets worldwide. We’re driven by a common purpose: to create something better. 

Alongside maximising our respected brands, we’re increasingly focused on developing a leading portfolio of next generation products with lower health risks than regular tobacco products, all underpinned by leading edge science, high-quality innovation and high standards of governance. 

Our entrepreneurial spirit, ability to challenge the status quo and think on our feet along are our keys to success and that of the thousands of people who work here. Here You Can.

The role

IT Governance, Risk and Compliance Lead
Bristol, UK
Permanent, Full time
Competitive Salary + Benefits

Here at Imperial Brands we have a brand new opening for an IT Governance, Risk and Compliance Lead to join our Global IT organisation. In this key role you will lead all aspects around GRC within the IT function globally and partnering with the IT leadership Team, provide mentoring, guidance and management oversight to the wider IT community on IT GRC aspects. Your initial focus will be to strengthen the GRC capability within the IT function and build sustainable processes.

Key accountabilities

• Manage the IT Standards and Policy frameworks, ensuring policies are regularly reviewed and updated in line with Information Security and other control requirements. Accountable for continuous improvement of processes.
• Drive IT Compliance within Global IT, identifying and leading initiatives to ensure required compliance adherence is defined, implemented, properly communicated and reported.
• Manage and coordinate the IT risk practice, sustaining the risk process and outcomes, and leading risk issue/event investigations and coordination with appointed risk owners.
• Provide insightful GRC reporting to the IT Leadership Team and IT project teams.
• Support detailed testing of IT controls to ensure risks are appropriately identified, related audit procedures are applied, and related controls are appropriately maintained.
• Engage and foster strong relationships with all stakeholders to align with their GRC requirements for IT.
• Partner with the IT Leadership and other relevant teams, to ensure risk and compliance issues are identified, defined, communicated and addressed.

Skills & experience

• In depth knowledge of best practices in IT governance, value & capability management, and IT risk management.
• Demonstrated influencing and leadership skills, including negotiation and conflict management combined with a strong service orientation.
• Advanced knowledge of IT internal controls and IT risk and IT self-assessment.
• Extensive experience in managing and working with internal and external auditors.
• Previous experience creating new GRC frameworks and procedures in a large, global environment.
• Project management skills to support multiple complex assignments.
• Strong analytical skills, highly organised and excellent communication and presentation skills.
• Motivated leader with experience to inspire, mentor and coach teams.
• CISA or CRISC certification would be desirable.
• ITIL foundation certification would be an advantage.
• Experience in a FMCG or Manufacturing environment would be an advantage.

What we offer

Imperial Brands offers a competitive package of salary, bonus scheme, pension and 25 days holiday (with an additional 4 days on top to cover the Christmas period).

Next steps

Interested applicants should apply with their CV highlighting their suitability for the role.