Within the Security Department, reporting to the Head of GRC & Cyber Assurance, we are looking for a high‑agency GRC Leader to own and uplift our Governance, Security Awareness, and Third‑Party Risk Management programs across a complex, fast‑moving global business.
This is not a caretaker role. We need a sharp operator who leads from the front, takes full ownership of delivery, and acts as the tactical bridge between regulatory requirements and operational reality. You will be measured on whether things actually change, not on whether documents exist.
Operationalize Governance: Policies only have value if people know they exist and can realistically follow them. Your job is to align documented policy with day‑to‑day practice. That means renegotiating existing policies and standards to make them practical, risk‑calibrated, and enforceable. You will run the stakeholder process across security, engineeri...