IT Governance & Controls Testing Lead

Kingfisher is a large home improvement company with over 74,000 employees, operating brands such as Castorama, B&Q, Screwfix, Brico Dépôt, and Koçtaş. The company aims to become the leading home improvement company and grow the largest community of home improvers in the world.

• Experience in leading a small team.
• Proven practical experience and knowledge of IT control frameworks, best practices, and methodologies.
• Experience in both developing and testing of controls.
• Experience with cybersecurity frameworks such as ISO 27001 and NIST.
• Working knowledge of GDPR; PCI requirements advantageous.
• Knowledge of Information Security Risk Management.
• Ability to work from own initiative and communicate at any level.
• Analytical skills and attention to detail.
• Self-motivated and able to work effectively in a challenging environment.
• Ability to influence, change perceptions, and build strong working relationships.
• Excellent written and communication skills.
• IT or IT Security Degree or significant experience.
• Working knowledge of ServiceNow GRC (or equivalent) desirable.

• Line manage the Controls Testing Team providing ongoing support, coaching, and mentoring.
• Write and quality assure security policies with excellent written skills.
• Lead the continuous development of the IT General Controls framework.
• Assist in developing an internal controls culture across Group Technology and local Banner technology teams.
• Engage with control owners to test controls and improve facilitation of testing and audits.
• Work closely with control owners to improve testing effectiveness.
• Review, evaluate, and document internal controls and design effectiveness testing and assessment.
• Provide stakeholders with controls test results and resulting action plans.
• Provide input into reporting packs for various forums as required.
• Maintain a library of Security Governance Policy.