Head of Business Assurance

Job Description

A regional property association based in Merseyside is looking to add a Head of Business Assurance to its growing finance function.A regional property association based in Merseyside is looking to add a Head of Business Assurance to its growing finance function.Key areas of the role include:

• To design, implement and maintain a Business Assurance program which ensures compliance with legal and regulatory standards, internal policies and procedures and supports transformational change across the Group.
• To develop and implement robust and effective risk management and reporting practices at all levels of the organisation.
• To support the development and implementation of appropriate and effective data protection and information security policies and processes, ensuring compliance with data protection legislation, including GDPR.
• To lead, coach and manage staff for whom the post-holder is responsible to ensure the effective operation of the Business Assurance function.

Responsibilities/Main Tasks of the JobBusiness Assurance

• To develop and review on an annual basis the Risk and Assurance Framework.
• To liaise with Internal Audit ensuring that Business Assurance and Risk Management Activities complement and support out internal audit programme.
• To design, develop and implement an internal business assurance function, providing effective "2nd line of defence" assurance across all key business areas and processes.
• To undertake Assurance Mapping exercises and develop and deliver improvements plans to address gaps in assurance.
• To develop and enhance an internal quality assurance programme of activity aligned to internal audit programmes and objectives.
• To work with Executive and Senior Management to ensure organisational compliance with relevant legislation and regulatory requirement across all functions.
• To ensure that there is good evidence of regulatory and legal compliance, providing regular written and verbal reports to the Executive and Senior Leadership Teams.
• To deliver, undertake and report on a programme of internal quality assurance checks of matters including;
  • Policy, process and procedural adherence and effectiveness.
  • Data quality and validation
  • Key Performance Indicator accuracy and timeliness.
• To provide appropriate support to the retention of externally assessed quality assurance accreditations such as ISO9001, ISO14001 and OHSAS18001.

Risk Management

• To develop and manage the risk management framework and processes including regular updating and review of the risk register and reporting to the Board and Group Audit & Risk Committee.
• To drive and enhance the ownership and understanding of risk across all levels of the business.
• To support the business to formalise its risk appetite and develop key risk metrics.
• To develop, implement and maintain a process of review and reporting for strategic, operational and business unit risk registers and assurance maps.
• To oversee the assessment, mitigation and monitoring of all risks across the group.
• To develop a risk management culture throughout the organisation.
• To design and deliver risk training across the organisation.

Data Protection

• To support the Data Protection Officer (DPO) in ensuring that the company complies with GDPR 2018 and Data Protection Act 2018.
• To deputise for the DPO when necessary by liaising and cooperating with the Information Commissioners Office.
• To act as point of contact for data protection and associated legislation.
• Ensure the effective operation and maintenance of all documentation to ensure compliance with the accountability principle ofGDPR including, but not limited to;
  • All data protection and privacy-related policies and procedures.
  • Records of processing activities and the Information Assets Register
  • Records of Data Protection Impact Assessments
  • Records of data shared with third parties.
  • Records of Data Subject Access Requests
  • Records of Legitimate Interest Assessments
• Ensure the effective operation of all data protection andGDPR-related processes including, but not limited to;
  • Data Protection Impact Assessments
  • Data Subject Access Requests
  • Legitimate Interest Assessments
• To produce and present regular compliance highlight reports for the Executive Leadership Team and Group Audit & Risk Committee.

Other

• Represent and promote the Business Excellence team as an active member of Middle Leadership Team (MLT).
• Contribute to own personal and professional development through training and cross-functional working with other members of the Business Excellence Team.

Personal attributes, including required qualifications and experience

• Degree level qualification or equivalent experience
• Hold or be working towards relevant appropriate professional qualifications (CMIIA / CIA / ICRM / IDRM or similar).
• Significant experience of working with and reporting to Directors, Board and Audit & Risk Committee (or equivalent).
• Strong communication, interpersonal and consultative skills, with significant experience of working constructively and collaboratively with colleagues at all levels across multi-disciplinary teams
• Experience in leading and managing assurance and risk management activities at a similar organisation
• Significant experience of undertaking and managing audit procedures, including planning, techniques, tests and sampling methods.

Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates