WE’RE LOOKING FOR SOMEONE WITH

• Strategic Vision: The ability to think strategically and translate high-level GRC requirements into actionable plans and roadmaps.
• Strong understanding of Technology teams: Strong familiarity with technology teams ways of working and development processes to effectively influence and integrate GRC requirements.
• Metrics-Driven Approach: Proven experience designing and leveraging metrics to track and improve GRC-related performance across tech teams.
• Cultural Change Leadership: A track record of driving cultural transformation within technology teams, embedding compliance practices as part of their DNA.
• Collaboration and Communication: Exceptional interpersonal and communication skills, with the ability to influence across multiple levels and functions.
• Process Design Expertise: Demonstrated ability to design and implement processes that enhance team efficiency and align with overall ways of working.

THE ROLE

We are seeking an experienced and strategic Head of Technology Governance, Risk and Compliance (GRC) to join our Product Development team. This is a pivotal role, owning and leading the translation of company-wide and security-related GRC obligations into actionable roadmaps, metrics, and day-to-day activities for the technology team. As the Head of Tech GRC, you will design and implement a framework to ensure that compliance requirements are seamlessly embedded into the fabric of our product and tech teams. You will be responsible to defining our compliance framework, culture and reporting whilst maintaining balance with our product development roadmap. This is a highly visible and strategic position that requires a tech-savvy leader who can influence and drive cultural change across the organisation.

WHAT YOU’LL BE DOING

• Strategic Leadership: Act as the primary owner and leader for GRC-related initiatives within our technology team, translating high-level compliance requirements into a framework which includes roadmaps, processes, and specific accountabilities.
• Framework Design: Develop and implement a robust framework ensuring the existing GRC obligations are systematically incorporated into team workflows, reporting structures, and roadmaps.
• Collaboration with Tech and Compliance Teams: Build strong partnerships with senior tech leaders and compliance teams (e.g., security, risk, legal) to streamline engagement, improve alignment, and reduce ad hoc interactions.
• Metrics and Reporting: Design and implement a metrics-driven approach to monitor and report on GRC obligations, fostering transparency and accountability across the technology team.
• Cultural Transformation: Drive a cultural shift for GRC to become an integral part of team workflows, including embedding practices like automated testing and scanning.
• Process Integration: Integrate existing processes and obligations and ensure they align with the broader ways of working of the technology team, ensuring they enhance our GRC position.
• Advocacy and Influence: Act as a strategic advisor to senior stakeholders, ensuring the balance between compliance requirements and technology delivery.

WHAT YOU’LL BRING TO THE ROLE

• A proven ability to implement regulatory frameworks within product and technology development focused organisations.
• Extensive experience working within technology teams, particularly in GRC-related roles.
• A strong track record of building frameworks and processes that scale across teams and improve compliance efficiency.
• The ability to translate complex compliance requirements into clear, actionable steps for technical teams.
• Familiarity with automated compliance practices (e.g., testing, scanning) and embedding them into team workflows.
• Strategic leadership skills with the ability to drive change and align teams towards a unified vision.
• This is an exciting opportunity for a strategic and results-oriented professional to take ownership of the GRC function within a dynamic technology team, shaping how compliance integrates seamlessly into the company’s technology landscape.