Head of Technology Risk and Compliance - London, United Kingdom - AESOP Corporate

AESOP Corporate

Verified Company

London, United Kingdom

1 week ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Aesop has carefully cultivated a work environment in which our employees are constantly challenged to do their best.

Our company is determinedly creative, intelligent and progressive, and nurtures these qualities by employing people who share our passionate interest in design, innovation, and incisive enquiry across all fields.

Our organisational culture is entirely unique, distinguished by an uncommon blend of courtesy, cordiality and intellectual energy. We seek those who can bring a wealth of life experience and inspired ideas to our table.

In return, we provide comprehensive induction and training programmes, and encourage an inclusive culture that nurtures enduring professional relationships. We also appreciate the benefits that flow from our employees' external pursuits.

We raise our bar high at Aesop and never lower it; this is one of the keys to our success and one of the many reasons why people wish to work here.

If you would like to join Aesop, we invite you to peruse our current career opportunities.

Role Purpose

The Head of Technology Risk and Compliance position will establish Technology Risk as a discipline across Aesop ensuring that it operates effectively and as a core part of building a sustainable technology organisation.

They will lead on ensuring that technology fulfils its audit obligations and also manages compliance effectively with regards Privacy, PCI DSS and other requirements as needed.

Additionally, this role will establish BCP and Crisis Management capability for Aesop.

Role Responsibilities

Define and implement a technology risk framework across the technology organisation ensuring that all project and operational technology risks are identified and managed.
Define and implement risk governance ensuring that technology risks are appropriately represented within the corporate risk register.
Partner with the business risk function to help drive the maturity of risk management across Aesop.
Ensure the technology organisation is trained appropriately on risk management.
Run regular sessions with DD&T functions to identify new risks.
Ensure that security and privacy risk management is appropriately integrated with overall technology risk management.
Own the technology audit relationship with Natura ensuring that all internal audits are appropriately planned and executed and that all committed actions are delivered.
Track and report on the technology organisations compliance position including for BCP, Disaster Recovery, Risk and Audit, PCI DSS and Privacy.
Establish BCP and Crisis Management capability across Aesop ensuring that each business function has defined and tested BCP plans in place.
Establish and maintain a Technology policy framework including identification of required policies and owners, standardised documentation, policy review and update processes / timelines, and assurance processes.

Role Requirements
Technical/ Certification Requirements

Risk Management qualification or equivalent experience
Practical experience of implementing and operating BCP and Crisis Management processes.

Experience, Knowledge and Skill Requirements

Significant risk management experience within a global organisation
Experience of both building and operating risk management frameworks and associated governance.
Experience of building mutually beneficial stakeholder relationships at all levels of an organisation, both within and outside technology
Capable of operating at a strategic level.
Experience of uplifting an organisations BCP capabilities ensuring that BIAs are regularly undertaken, plans are tested and that Crisis Management plans are defined and in place.
Experience of working closely with Internal and External audit teams with the ability to influence plans and outcomes.
Strong negotiation skills

Aesop is committed to attracting, developing and retaining the very best people by offering a creative and inclusive workplace where talent is truly recognised and rewarded.

We are committed to promoting inclusion for all with the belief that diversity, inclusion and belonging plays an important role in the success of our organisation.

We actively encourage everyone to consider becoming a part of our journey.

LI-Hybrid