The RoleHead of Governance, Risk, Controls & Compliance will report to the Head of Global Technology Shared Services and is responsible for leading the transformation and maturity of governance, risk reduction, and control practices across global technology while embedding consistent, effective governance processes aligned with regulatory requirements. This role will be required to establish a pragmatic and risk-based approach in assessing controls and risks across Global Technology with a strong understanding of business priorities and objectives. This role requires comprehensive and demonstrated knowledge of technology governance, risk management and compliance practices, as well as experience and understanding of business operations.
This is a senior leadership role with global influence across all areas of technology. The successful candidate will play a pivotal role in enhancing control maturity, improving process consistency, influencing a culture of accountability, while demonstrating strong influencing skills. This role will lead a global team of high-performing subject matter experts that have deep understanding of governance, risk management and compliance related topics that are specific and nuanced by region, regulatory body and business.
The remit includes supporting the Global Technology (GT) strategy by ensuring risk management and control frameworks are robust, aligned to regulatory and audit expectations, and able to scale with the business.
Key objectives include enhancing process effectiveness, identification and implementation of appropriate Key Risk Indicators (KRI’s), improving efficiency, accuracy, and standardisation. The position requires close collaboration with senior stakeholders across Legal, Finance, Risk, Internal Audit, Compliance, and Global Technology functions.
The Responsibilities
Governance Development of a robust, enterprise-grade, risk-based GRC GT strategy, operating model (framework) and roadmap that is aligned with the company’s global business objectives, regulatory obligations, and client expectations. Lead a high-performing global team of risk and governance professionals with deep subject matter expertise in local/regional regulatory, technology and business requirements. Implementation of an effective governance structure framework that defines how decisions are made, who is accountable, and how compliance and performance are monitored within GT. Oversight the provision of regular reporting on all GRC activities to management through the monitoring of KPIs/KRIs. Ensuring governance frameworks support WTW’s regulatory, audit, and compliance obligations, with the flexibility to adapt to changing requirements, while aligning to the Enterprise Risk Management framework and governance structure/standards. Continuously evaluate and improve governance processes, to enhance governance and control activities. Risk Management In collaboration with Technology Leadership, encourage a culture of proactive risk ownership and accountability across all GT teams. Resolve conflicts between commercial objectives and risk mitigation by applying a risk-based approach that is agreed with global leaders. Embed a risk-based, control-focused approach across Technology change and operational activities. Oversee and drive remediation of risks and control gaps. Monitor, remediate and report on all non-Cyber-related Governance, Risk and Compliance requirements within GT. Collaborate with the Technology & Cyber Risk, Controls and Regulatory Engagements team to align risk identification, ownership, and reporting. Compliance Oversee compliance with technology and cyber-related global regulatory requirements, industry standards and frameworks such as NIST, ISO 27001. This includes leading all regulatory-oriented governance, reporting and compliance requirements associated with Global Technology (., DORA). Senior Stakeholder Engagement & Representation Engage with senior leadership, Board-level forums, and internal regulatory stakeholders. Represent governance and control topics in senior forums and with key functional partners including Legal, Finance, Internal Audit, Compliance, and Risk
Read Less
