Head of IT Process and Governance

Head of IT Process and Governance - ( 2100001Z )
Description

Job Purpose
To effectively manage governance activities within IT and risk management
functions and ensure adherence to the correct standards.

Job Accountability

Policies & Procedures:
Establish and develop appropriate policies, procedures and practices in
relations to IT governance and planning functions:
* Develop policies, procedures and controls to support end-to-end technology processes.
* Document processes/workflows to identify gaps and provide process enhancement recommendations Lead the initial review process for new and existing IT policies, standards, procedures, and specifications, working with subject matter experts and Compliance to support implementation in line with organizational policy management standards.
* Ensure and Monitor effective implementations of the policies and procedures
* Ensure necessary awareness for the IT policies and procedures
* Provide expert Advice and Support the IT Management to deliver services as required
* Monitor the effectiveness and efficiency of owned key processes and implement reporting mechanisms and KPIs for governance, security and risk practices to support compliance and highlight areas of exposure.
* Assess compliance to IT policy, standards, processes and procedures to monitor, report, analyze, and remediate IT risk and compliance related obligations.
Governance & Compliance:
Act as the point of contact for all IT related Governance & Compliance
activities and functions:
* Communicate the governance activities, policies and decisions with the IT Management and Business Leadership and keep them informed of IT governance decisions that will affect IT services and projects. And Manage audit finding reporting cycles for senior IT Management.
* Partner Coordinate/Work effectively in the Internal Audit program with the Auditors.
* Lead, monitor and report the activities with individuals in IT to comply with regulator IT requirement
* Act as a liaison, Lead and supervises the coordination between concerned areas in Group Operations & IT for any Internal/External audits.
* Facilitate and lead remediation activities for any IT audit and control findings as they relate to risk, regulatory and compliance requirements.
* Execute a broad array of duties including the review, analysis and audit coordination of systems and processes to determine compliance with audit controls and supporting evidence.
* Ensure best practice risk mitigation and assessment functions are maintained to comply with companies' strategy.
* Lead, monitor and implement scope of the COBIT and industry best practices based on approved assessment priorities and plans and process target states.
* Monitor and review compliance with Technology Risk Management to align controls to applicable risks and risk prioritized remediation.
* Identify risks, review the potential threats and vulnerabilities and Implement risk responses and assist in developing the action plans to address the risk factors identified.
* Assist with the implementation of the governance, risk and compliance (GRC) tool and Integrated Risk Management technologies
* Develop measurable metrics to identify progress and opportunities for an improved compliance process and control performance. Collect and report on Key Performance Indicators (KPIs).
* Contribute to the integration of organizational process and asset information into the GRC solution for analysis and IT governance, risk, and compliance reporting.
Budget & Contract Management:
Manage the overall IT Plans and budget from planning and governance point of
view:
* Oversee the performance of vendors and software licensing contracts and perform cost and spend analysis to identify cost effective solutions and opportunities to negotiate with vendors.
* Manage, maintain and update all Contract management processes, including renewal, termination, SLAs, invoice payment.
* Partner with the Facilities Department- Vendor Relationship Manager, in implementing best practices in Vendor Relationship frameworks and guidelines.
* Support contract negotiation efforts led by Facilities Team and ensure supplier compliance of agreements to policies and practices
* Influence the practices and implement processes, tools, templates, and systems for use to enhance the budget management, services implementation, and ongoing budgeting operations, monitoring and management.
* Manage and assist with concerns, facilitate issue resolution, optimize budget performance and drive cost savings
* Partner in building and managing the IT budget, help facilitate annual planning with IT Management leaders for functional areas, advising where required, helping budget for priorities and alignment opportunities.
* Provide oversight and produces recommendations, and execute tactics to deliver requirements within budget
* Serve as first point of contact to internal IT partners to answer contract-related inquiries and raise as appropriate to sourcing teams.
IT Operational Excellence:
* Report on performance metrics for the function that contribute to performance goals of one or more end-to-end processes.
* Coordinate enterprise-level governance of functional processes, systems and data as part of the overall end-to-end framework.
* Use data extensively and build analytical capabilities to measure and maximize performance.
* Drive continuous improvement by identifying and driving automations.
* Routinely engages with industry experts and peers, conducting research on best practices.
* Collaborates with end-to-end Business owners and functional excellence peers to prioritize continuous improvement efforts for the function.
* Delivers improvements that are measurable and significant.
* Participates in knowledge sharing to develop enterprise subject-matter expertise in one or more functions.
Quality Assurance:
Carries out functions of the ITQA Quality including but not limited to:
* Review and approval of key computer system validation life cycle (VLC) deliverables
* Oversight of key software development life cycle (SDLC) process such as problem, incident, change, release, etc. and ensure all applicable SDLC and testing processes are followed
* Play a leadership role in the design, development, and implementation of testing components
* Define appropriate testing methods to assure developed product conforms to requirements and design
* Manage both Inhouse and Third-party test execution resources for project under test. Accountable for Test Data Management, collection of requirements, evaluation of available data in repositories, ID gaps, and owns test data provisioning tasks
* Provide regulatory compliance oversight across the end-to-end product lifecycle for software development and validation lifecycle activities associated with regulated systems, guidance documents, applicable industry accepted standards and requirements.
* Participate in the development and adoption of the IT Quality Assurance framework across the IT organization.
* Contribute to the identification, documentation, development and improvement of IT process re-design and automation utilizing Lean Six Sigma, Agile Methodology, COBIT, ITIL, PMI and TQM.
* Evaluate IT governance program against globally established security, audit, governance, and control frameworks such as COSO, COBIT, NIST and ITIL.
* Implement and manage the IT Software Quality monitoring and reporting program, focusing on automation and simplification.
* Develop procedures and training materials to ensure adequate knowledge of IT governance practices and processes.
Others:
* Provide direction to subordinates towards the achievement of goals and objectives, guide and motivate them to enhance performance and produce quality work and ensure that they are continuously developed for higher level roles.
* Prepares and conducts workshops & presentations to articulates the impacts and appropriate corrective actions to Management in Group Operations & IT on quality and compliancerelated matters
Qualifications

Education
Bachelor's in information technology in Auditing, Information risk or
equivalent.
Knowledge
* End-to-end experience of the project life cycle.
* Good experience in planning methodologies and tools.
* Demonstrable evidence of analyzing, documenting and re-engineering complex business processes.
* IT application development, implementation and maintenance process
* Risk management process - measuring, monitoring, classifications (assessment), mitigation
* Understanding of bank's IT processes
* Understanding of financial and banking
* Solid understanding of compliance standards such as SOX, SOC2, PCI, NIST, COBIT, CCM, CIS, ISO, FFIEC, ITIL and willingness to learn.
* Thorough understanding of the principles of Change and Release Management
Experience
‎10 years of experience in the IT function, with at least ‎3 years practicing IT
project management and application development.
Accreditation
PMP or PRINCE2 Certification, GRCP or ISACA Certification would be an
advantage

Primary Location : Kuwait
Job : Managerial Jobs
Organization : Information Technology
Schedule : Regular
Shift : Standard
Job Type : Full-time
Day Job
Job Posting : May ‎20, ‎2021, ‎1:23:‎55 AM