Country: Netherlands

City: Amsterdam

Req ID: 491256

About CRH

We are CRH, and we are committed to contributing to a more resilient and sustainable built environment. We understand the wider impact our businesses can make in supporting human activity. We continue to do this through the delivery of unique, superior building materials and products for use in road and critical utility infrastructure, commercial building projects and outdoor living solutions.

CRH is the leading provider of building materials solutions that build, connect and improve our world. Employing c.75,800 people at c.3,160 locations in 29 countries, CRH has market leadership positions in both North America and in Europe.

Without you noticing our products, we are everywhere you live, work, and relax.

Our project portfolio includes some of the most sustainable and cutting-edge building projects around the world. Think of the asphalt on the Silverstone Grand Prix Circuit, the Paris Metro Rail project, but also the Louis Vuitton Museum in Paris, parts of the Burj Khalifa, and the Kennedy Space Centre .

Learn more about us through the following Link .

Position Overview
The purpose of this role is to act as the second line of defense lead to ensure governance and oversight of IT Risks and that the IT controls executed by IT business owners across Europe Opcos and at Europe IT, are performed in a controlled, effective and compliant manner.
The IT Controls and Compliance Manager defines and leads the execution of the risk based annual control and compliance improvement plan. The Manager will work with internal and external services providers to support and deliver these improvements and ensure that when new services or processes are introduced, the right controls, security and compliance requirements are incorporated. The professional will also lead the process of closure of open actions resulting from internal and external audits.
The Manager will have to collaborate effectively with a wide group of Europe IT, Divisional, Group, OpCo (operation companies), Internal and External Audit stakeholders and keep the Europe IT CIO, the Europe ITLT and the Europe CFO regularly informed and updated on all IT control and compliance matters.

Key Tasks and Responsibilities
In this role, you will:

• Define and lead the execution of the risk based annual control and compliance improvement plan. Work together with internal and external IT service providers in Europe IT and in OpCos to identify areas for improvement and deliver these improvements. Monitor and report regularly on the progress of the improvement plan.
• Lead and oversee IT risks management and internal controls compliance in existing solutions and processes across IT Europe.
• Work with internal and external IT service providers in Europe IT and in OpCos to identify areas for improvement and then work to deliver these improvements.
• Stay up to date with regulatory guidance and industry best practices to help advise and support all IT process owners. Input and keep abreast of changes to CRH Group’s SoX and Internal Controls requirements, evaluating and highlighting the impact of any changes to IT management and IT process owners, ensuring these changes are incorporated.
• Provide subject matter expertise to support and advise IT process owners when designing and introducing new processes/ services or changes to existing processes/ services to ensure the necessary IT controls are embedded and that compliance will be achieved.
• Provide subject matter expertise to support and advise project teams, ensuring the implementation of the right controls framework for new solutions (so part of the project life cycle) and that compliance will be achieved post go-live.
• During the annual external audit cycle, provide Senior Management with clear overview of progress, emerging observations, resolution plans and highlight significant issues.
• Work with all IT process owners and service providers at Europe to lead the process of closure of open actions resulting from internal and external audits.
• Monitor and report regularly on the progress of closure of open audit findings to Senior Management and to the IT Risk Committee.
• Engage and collaborate effectively with key stakeholders including but not limited to Europe ITLT, Europe CFO, all IT Service Providers, Europe IT Managers, IT Risk Managers, Internal Controls Managers and Group Information Security.

Individual Competencies
You are able to:

• Drive Results - Consistently achieving objectives, even under tough circumstances, pushing self and others to accomplish goals
• Cultivate Innovation - Creating new and better ways for the organisation to be successful
• Attract and Develop Talent - Attracting, selecting, and developing talent to meet the organisation’s goals and needs
• Collaborate - Building partnerships and working collaboratively with others to meet shared objectives
• Make Quality Decisions - Making good and timely decisions that keep the organisation moving forward

Key Functional Competencies
You possess the following:

• Demonstrated knowledge of IT risk, governance and internal controls requirements.
• Ability to operate effectively at multiple levels, understanding and explaining the ‘big picture’ to senior stakeholders in a business manner with succinct language, but also be seen as credible by IT teams when working through the detail.
• Confident and capable to take the lead in multi-stakeholder meetings, driving the discussion to the right outcome.
• Ability to quickly understand ‘the business’ and forge trusting and effective working relationships with all stakeholders.
• Critical thinking: Apply process analysis and problem-solving techniques.
• Persuade & motivate others by collaboration & cooperation; able to interact effectively with staff at all levels and from all cultural backgrounds.
• Ability to proactively communicate observations and other feedback in an open, collaborative, honest and constructive manner.
• Intellectual horsepower with the ability to bring abstract frameworks to practical workings.
• Improvement and innovation: Embraces change and drives improvement and innovation.
• Ability to efficiently manage workload, sense for priority / urgency, prepared to do ‘it’ all.
• Good people manager with the attitude to inspire and motivate the team.

Experience / Education
You are/have:

• Degree (or equivalent) in IT or ay other relevant IT risk and controls education, with preference for professional certifications such as, Certified Internal Auditor, Certified Information Systems Auditor, RA, etc.
• 10+ years in a similar function or in an Internal Audit or External Audit function, preferably in within a global organization.
• Relevant SOX and internal controls experience, preferably in an SEC registrant environment.
• Strong understanding of IT risk assessments reviews.

What CRH Offers You

• A culture that values opportunity for growth, development, and internal promotion

• Highly competitive salary package

• Comprehensive secondary benefits

• Significant contribution to your pension plan

• Health and wellness programs, including an on-site gym and fitness classes

• Excellent opportunities to develop and progress with a global organization

Connect your future to CRH

We are curious to learn more about you. At CRH, we believe our mutual differences contribute to the healthy, productive, and enjoyable workspace we create. Please introduce yourself and send us your application.

Is this role not for you, but do you know someone who would love to join the team? Please let us know!

CRH finds it important that vacancies are shared to individuals that may find them interesting and/or could be suitable for the role

Please contact our recruitment team at careers@crh.com.

CRH is an equal opportunity employer. We are committed to creating an inclusive work environment for all employees and actively encourage applications from all sectors of the community.

Benefits/perks listed above may vary depending on the nature of the employment with CRH and the country where you work.

Please note that we cannot accept any applications submitted through email for GDPR purposes. Candidates must apply through our job portal.

We do not accept candidate introductions for this position from recruitment agencies, unless you have been instructed to do so by our recruitment team.

#LI-DNI