Head - Governance & Risk Compliance bei Likewize

Job Description:

• Strategy and Framework: Lead the creation, implementation, and enhancement of the organization's GRC framework to align with business objectives and industry best practices.
• Risk Management: Oversee comprehensive risk assessments to identify, analyze, and prioritize risks. Develop and implement risk mitigation strategies and report on risk levels to leadership.
• Policy and Compliance: Develop and maintain GRC policies, standards, and procedures. Ensure the company adheres to all applicable laws, regulations (such as GDPR, PCI DSS, ISO 27001, and data privacy laws), and internal standards.
• Audit and Reporting: Lead internal and external audit processes. Coordinate with auditors, prepare documentation, and manage the resolution of findings.
• Stakeholder Collaboration: Work with internal departments to ensure GRC activities support business goals. Serve as a key liaison with external regulatory agencies.
• Training and Awareness: Develop and deliver training programs to educate employees and stakeholders on GRC principles and policies.
• Leadership: Supervise and mentor a team, report on KPIs and KRIs (Key Performance Indicators and Key Risk Indicators), and present findings and recommendations to senior management and the board of directors.
• Program Oversight: Manage the GRC team and oversee specific areas like information security, data privacy, and IT compliance. 

• Strong leadership and management skills.
• Extensive knowledge of risk assessment, policy development, and audit processes.
• Familiarity with a wide range of regulatory requirements, potentially including IT, data privacy, and financial regulations.
• Excellent communication and reporting skills, including the ability to articulate complex topics to both technical and non-technical audiences.
• A strategic mindset with the ability to align GRC initiatives with business objectives.