Chief Risk & Compliance Officer (CRCO)

Introduction:

An accomplished professional with extensive experience in leading IT audits, implementing cybersecurity frameworks, and managing compliance across multiple industries. Adept at identifying vulnerabilities, mitigating risks, and ensuring the effectiveness of internal controls and security measures. Proven ability to collaborate with cross-functional teams, manage audit processes, and provide strategic guidance on IT governance. Skilled in leveraging data analytics tools and methodologies for audit testing and control evaluation. A results-oriented leader with a strong track record in driving continuous improvement in risk and compliance practices, ensuring robust security postures, and meeting regulatory requirements efficiently.

Responsibilities:

• Assist in planning IT audits, including creating audit memos, data extracts, and sampling.
• Lead and document control design walkthroughs for audits.
• Validate, extract, and test data from key IT technologies such as SAP, OneStream, Active Directory, and Oracle.
• Manage relationships with IT teams and external accountants, responding to audit findings.
• Perform remediation testing for IT audit findings.
• Identify and document issues during audits and work with management to address them.
• Provide advisory services in Governance, Risk, Compliance, and IT Audit.
• Lead co-sourced auditors on engagements.
• Maintain and update IT Audit Programs.
• Ensure security controls are implemented to prevent cyber threats and vulnerabilities.
• Guide IT and network projects to align with Security by Design and Vodafone standards.
• Collaborate with teams to deploy and maintain effective cyber security controls.
• Lead risk management activities, including third-party risk assessments and control testing.
• Support GDPR and SOX implementation in client accounts.
• Manage and provide oversight for compliance activities across multiple sites.
• Lead business process reviews and propose new controls to mitigate risks.
• Manage team growth, goals, and objectives for risk and compliance teams.
• Administer network servers, workstations, and various IT systems, including Linux and Windows.
• Implement software solutions for customers, customize applications, and provide ongoing IT support.