Head of IT & Security Governance Risk & Compliance

Head of IT & Security Governance Risk & Compliance We're Kingfisher, A team made up of over 76,000 passionate people who bring Kingfisher - and all our other brands: B&Q, Screwfix, Brico Depot, Castorama and Koctas - to life. That's right, we're big, but we have ambitions to become even bigger and even better. We want to become the leading home improvement company and grow the largest community of home improvers in the world. And that's where you come in.

At Kingfisher our customers come from all walks of life, and so do we. We want to ensure that all colleagues, future colleagues, and applicants to Kingfisher are treated equally regardless of age, gender, marital or civil partnership status, colour, ethnic or national origin, culture, religious belief, philosophical belief, political opinion, disability, gender identity, gender expression or sexual orientation.

We are open to flexible and agile working, both of hours and location. Therefore, we offer colleagues a blend of working from home and our offices, located in London & Southampton. Talk to us about how we can best support you!

We're looking for a forward-thinking leader to establish, shape & drive our IT Governance, Risk, and Compliance Framework to manage risk and meet regulatory requirements. This role is key to ensuring our cyber resilience, aligning with best practices and regulatory standards, and enabling secure innovation across the Kingfisher Group.

Overview We're Kingfisher, A team made up of over 76,000 passionate people who bring Kingfisher - and all our other brands: B&Q, Screwfix, Brico Depot, Castorama and Koctas - to life. That's right, we're big, but we have ambitions to become even bigger and even better. We want to become the leading home improvement company and grow the largest community of home improvers in the world. And that's where you come in.

At Kingfisher our customers come from all walks of life, and so do we. We want to ensure that all colleagues, future colleagues, and applicants to Kingfisher are treated equally regardless of age, gender, marital or civil partnership status, colour, ethnic or national origin, culture, religious belief, philosophical belief, political opinion, disability, gender identity, gender expression or sexual orientation.

We are open to flexible and agile working, both of hours and location. Therefore, we offer colleagues a blend of working from home and our offices, located in London & Southampton. Talk to us about how we can best support you!

We're looking for a forward-thinking leader to establish, shape & drive our IT Governance, Risk, and Compliance Framework to manage risk and meet regulatory requirements. This role is key to ensuring our cyber resilience, aligning with best practices and regulatory standards, and enabling secure innovation across the Kingfisher Group.

• Lead the development and implementation of our IT & Security GRC framework across a complex, matrixed organisation.
• Oversee internal security controls and risk mitigation, ensuring alignment with business goals and regulatory requirements.
• Maintain and evolve our Information Security Management System (ISMS), ensuring ongoing compliance and certification.
• Collaborate with stakeholders across the Group to embed effective security governance into business processes.
• Partner with audit and risk teams to demonstrate measurable risk reduction and close audit findings effectively.
• Lead and develop a high-performing GRC team, fostering a proactive and collaborative culture.
• Report on key metrics and insights to demonstrate the impact and value of GRC initiatives.

What's the job

• Lead the development and implementation of our IT & Security GRC framework across a complex, matrixed organisation.
• Oversee internal security controls and risk mitigation, ensuring alignment with business goals and regulatory requirements.
• Maintain and evolve our Information Security Management System (ISMS), ensuring ongoing compliance and certification.
• Collaborate with stakeholders across the Group to embed effective security governance into business processes.
• Partner with audit and risk teams to demonstrate measurable risk reduction and close audit findings effectively.
• Lead and develop a high-performing GRC team, fostering a proactive and collaborative culture.
• Report on key metrics and insights to demonstrate the impact and value of GRC initiatives.

• Proven experience embedding & delivering IT & Security GRC frameworks in a large, matrixed organisation.
• Strong knowledge of security standards and frameworks (e.g. ISO27001, NIST, PCI DSS, Cloud Security).
• Excellent understanding of the principles, theories, practices and techniques for activities associated with planning and implementing information security management frameworks and general IT controls
• Experience in chairing effective governance meetings with senior representation with the ability to translate technical risks and impact to technical and non-technical colleagues in all areas of the business.
• A collaborative leadership style with a focus on continuous improvement and service excellence.
• High integrity, sound judgment, and a passion for building trusted relationships across all levels.

Be Customer Focused-constantly improving our customers' experience

• I listen to my customers
• I use available data to help make decisions

Be Human - acting with humanity and care

• I do the right thing

Be Curious - thrive on learning, thinking beyond the obvious

• I build and share new ideas
• I try new things and share my learnings

Be Agile - working with trust, pace and agility

• I have courage to be creative
• Done is better than perfect, I aim for 80/20

Be Inclusive - acting inclusively in diverse teams to work together

• I embrace allyship
• I have self-awareness and a desire to learn

Be Accountable - championing the plan to deliver results and growth

• I own my actions
• I understand the Kingfisher plan and how it relates to my role

At Kingfisher, we value the perspectives that any new team members bring, and we want to hear from you. We encourage you to apply for one of our roles even if you do not feel you meet 100% of the requirements.

In return, we offer an inclusive environment, where what you can achieve is limited only by your imagination! We encourage new ideas, actively support experimentation, and strive to build an environment where everyone can be their best self. Find out more about Diversity & Inclusion at Kingfisherhere!

We also offer a competitive benefits package and plenty of opportunities to stretch and grow your career.

Interested? Great, apply now and help us to Power the Possible.

What we offer.

Private Health Care Opportunity to receive up to family level cover with Bupa. Join within three months of starting or at annual renewal in April. (This benefit is subject to Benefit In Kind taxation).

Kingfisher Pension Scheme Immediate eligibility through auto-enrolment. Contribute 8% to receive a max 14% from the Company.

25 Days' Holiday 25 days per annum plus bank holidays as stated in your contract (pro rated for part time colleagues).

Staff Discount 20% discount at B&Q and Screwfix. Eligible after 3 months service.

Kingfisher Share Incentive Plan (SIP) Share ownership in a tax efficient way. Save between £10 to £150 per month. Join at any time once three months service is reached.

Life Assurance x4 Salary plus benefit equal to value of your Retirement Account (if an active member of KPS-MP) or x1 Salary if not active member.

Bonus Competitive bonus scheme that aligns to work level of role.

Kingfisher Share Save Save with the option to buy Kingfisher plc shares at the end of a 3 or 5 year period. Offered annually. Three months service is required at the annual invitation date, normally in October.

Our Behaviours At Kingfisher, we are united by our 6 core behaviours

Constantly improving our customer experience

Acting with humanity and care

Be curious

Thriving on learning, thinking beyond the obvious

Be inclusive

Acting inclusively in diverse teams to achieve together

Be agile

Working with trust, pace and agility

Be accountable

Championing the plan to deliver results and growth

Our employees know us best. We wouldn't be Kingfisher without them. So, we want to share what they think with you.

Development and progression is a high priority at Kingfisher, I've always felt well supported.

I'm proud to work for Kingfisher, I've had great opportunities that have enabled me to contribute to an exciting forward-thinking company.

Training & Development There are so many ways you can grow, learn, and develop here at Kingfisher. At whatever pace suits you.

Conversations with senior leaders Resources and tools to help you grow Improving without instruments to help you learn is near impossible. That's why we make sure you have everything at your fingertips to find exactly what you need to keep growing.

Initiatives that measure development With plans that ask you what you want to achieve and when you want to achieve them by, tracking progress and keeping development at the forefront of conversation is easy.

Find your path The scale of group functions within Kingfisher is huge . click apply for full job details