Governance Risk and Compliance Manager

Job description

dunnhumby is the global leader in Customer Data Science, empowering businesses everywhere to compete and thrive in the modern data-driven economy. We always put the Customer First.

Our mission: to enable businesses to grow and reimagine themselves by becoming advocates and champions for their Customers. With deep heritage and expertise in retail - one of the world's most competitive markets, with a deluge of multi-dimensional data - dunnhumby today enables businesses all over the world, across industries, to be Customer First.

dunnhumby employs nearly 2,500 experts in offices throughout Europe, Asia, Africa, and the Americas working for transformative, iconic brands such as Tesco, Coca-Cola, Meijer, Procter & Gamble and Metro.

We're looking for a Governance Risk and Compliance Manager who expects more from their career. It's a chance to extend and improve dunnhumby's Information Security posture and an opportunity to work with a market-leading business to explore new data opportunities and influence global retailers.

Joining our team, you will be a senior member of dunnhumby's GRC function and have responsibility for Third-Party Assurance and Policy Governance.

Reporting to the Director of GRC, this role drives identification appropriate measures to manage risk, enabling business stakeholders to make informed and accountable decisions with regards to the protection of dunnhumby and its clients' information assets

What you'll be working on

You will have oversight for the strategy and delivery of following areas:

• Third-Party Assurance and Risk Management - accountable for delivering risk reviews of suppliers globally, managing remediation and establishing risk profiles related to how appropriately the suppliers handle dunnhumby information assets regarding security and regulatory concerns.
• Policy Governance and Coordination - managing policy lifecycle and compliance to ensure alignment with leading practice alongside legal, privacy and data governance functions.

What we expect from you:

• Extensive experience in Information Security and Risk Management
• Demonstratable experience with
  • Delivering complex and sustainable Third-Party Risk Management programs
  • Build and enhance vendor stakeholder relationships across the business.
  • Drive continuous improvement of the Third-Party Assurance processes
  • Maintaining and enhancing open communication with between service providers and business stakeholders.
  • Strategic development and coordination of governance frameworks, documents, and practices
  • Ensuring management policies, guidelines and requirements are aligned to industry best practice, regulatory standards and supporting information security maturity.
  • Provide an advisory role to Technology and business stakeholders on the implications of IT policy and control requirements in day-to-day operations.
• CISSP / CISM / CRISC / CISA or equivalent professional qualification
• Experience with international security standards and frameworks such as ISO27000 / ISO31000 / PCI-DSS / NIST or similar
• Managing an international team and multistakeholder relationships
• Experience of process design and implementation

What you can expect from us

We won't just meet your expectations. We'll defy them. So you'll enjoy the comprehensive rewards package you'd expect from a leading technology company. But also, a degree of personal flexibility you might not expect. Plus, thoughtful perks, like flexible working hours and your birthday off.

You'll also benefit from an investment in cutting-edge technology that reflects our global ambition. But with a nimble, small-business feel that gives you the freedom to play, experiment and learn.

And we don't just talk about diversity and inclusion. We live it every day - with thriving networks including dh Gender Equality Network, dh Proud, dh Family, dh One and dh Thrive as the living proof. We want everyone to have the opportunity to shine and perform at your best throughout our recruitment process. Please let us know how we can make this process work best for you. For an informal and confidential chat please contact [email protected] to discuss how we can meet your needs.

Our approach to Flexible Working

At dunnhumby, we value and respect difference and are committed to building an inclusive culture by creating an environment where you can balance a successful career with your commitments and interests outside of work.

We believe that you will do your best at work if you have a work / life balance. Some roles lend themselves to flexible options more than others, so if this is important to you please raise this with your recruiter, as we are open to discussing agile working opportunities during the hiring process.

For further information about how we collect and use your personal information please see our Privacy Notice which can be found (here)