HiringCafe
Posted 1mo ago

IT Governance & Controls Testing Lead

@ Kingfisher
View All Jobs
Krakow, Lesser Poland, Poland
HybridFull Time
Responsibilities:Line manage, Lead development, Engage with owners
Requirements Summary:Leads a small team; strong writing and policy quality skills; deep knowledge of IT control frameworks; experience developing and testing controls; familiarity with cyber security standards.
Technical Tools Mentioned:ServiceNow GRC
Save
Mark Applied
Hide Job
Report & Hide
Job Description
Overview:

IT Governance & Controls Testing Lead

Who we are and what we create?

We’re Kingfisher, a team made up of over 74,000 passionate people who bring Kingfisher - and all our other brands: Castorama, B&Q, Screwfix, Brico Dépôt and Koçtaş - to life. That’s right, we’re big, but we have ambitions to become even bigger and even better. We want to become the leading home improvement company and grow the largest community of home improvers in the world. And that’s where you come in.

At Kingfisher, our customers come from all walks of life, and so do we. We want to ensure that all colleagues, future colleagues, and applicants to Kingfisher are treated equally regardless of age, gender, marital or civil partnership status, colour, ethnic or national origin, culture, religious belief, philosophical belief, political opinion, disability, gender identity, gender expression or sexual orientation.

We are open to flexible and agile working. Therefore, we offer colleagues a blend of working from home and our office, located in Kraków. Talk to us about how we can best support you! 

At Kingfisher, we value the perspectives that any new team members bring, and we want to hear from you. We encourage you to apply for one of our roles, even if you do not feel you meet 100% of the requirements.

In return, we offer an inclusive environment, where what you can achieve is limited only by your imagination! We encourage new ideas, actively support experimentation, and strive to build an environment where everyone can be their best self.

 

We also offer a competitive benefit package and plenty of opportunities to stretch and grow your career: 

  • Private medical healthcare at LUXMED (including dentalcare) for you and your family
  • Medicover sports card (Fit&More package)
  • Life insurance financed by the employer
  • 30-minute lunch break included in the 8-hour working day
  • Work in a highly professional and stimulating atmosphere
  • Training & Buddy programme that will allow you to quickly adapt to your new role
  • Wellbeing programme for employees
  • Co-financing of monthly tickets for the public transport in Krakow
  • Comfortable working environment in the office and the possibility of home office
  • Language courses, accounting courses, access to LinkedIn Learning and the possibility of co-financing studies and certification
  • Employee referral programme


What's the job?:

Role Purpose:
The IT Governance & Controls Testing Lead will manage a small team responsible for support the continued development and maintenance of the IT General Controls framework to support Kingfisher in its objective to be able to demonstrate it compliance to regulation and adopts good practices in its operational activities. In additional the Lead will maintain a library of Security Governance Policy.

Responsibilities:

  • Line manage the Controls Testing Team providing ongoing support coaching and mentoring.
  • Excellent written skills to write and quality assure security polices
  • Lead the continuous development of the IT General Controls framework
  • Assist in developing an internal controls culture across Group Technology and local Banner technology teams.
  • Engage with control owners in order to test controls whilst improving the facilitation of testing and audits
  • Work closely with control owners to improve testing effectiveness
  • Review, evaluate and document internal controls and design effectiveness testing and assessment
  • Provide stakeholders with controls test results and resulting action plans
  • Provide input into reporting packs for various forums as required


What you'll bring:

Required skills and experience:

  • Experience in leading a small team
  • Excellent written skills to write and quality assure security polices
  • Proven practical experience and knowledge of IT control frameworks best practice and methodologies
  • Experience in both developing and testing of controls
  • Experience with cyber security frameworks such as ISO 27001, NIST
  • Working knowledge of GDPR, PCI requirements advantageous
  • Knowledge of Information Security Risk Management
  • Proven ability to work from own initiative and be able to communicate at any level
  • Analytical skills and attention to detail
  • Self motivated and able to work effectively in a challenging environment
  • Ability to influence, change perceptions and build strong working relationships 
  • Excellent written and communication skills  
  • IT or IT Security Degree or significant experience
  • Working knowledge of ServiceNow GRC (or equivalent) desirable