Head of Controls and Process Assurance in England

Join to apply for the Head of Controls and Process Assurance role at IAG Transform. The Head of Controls and Process Assurance is responsible for designing, implementing, and maintaining a robust control framework that ensures organizational resilience, compliance, and operational excellence across IAG Transform. This role drives continuous improvement of processes and leverages emerging technologies including AI and automation to strengthen the control environment, ensuring controls are not only defined but operate effectively with clear ownership and accountability. The position plays a critical role in Third-Party Risk Management (TPRM) governance and requires strategic stakeholder engagement across IAG Transform and the broader IAG Group.

• Controls Framework Design & Implementation

• Design, implement, and continuously enhance the organization's control framework to address operational, financial, and compliance risks.
• Establish clear control ownership, accountability structures, and escalation protocols across all business units.
• Define control standards, policies, and procedures that balance risk mitigation with business agility.
• Ensure the control framework is scalable, proportionate, and aligned with industry best practices (COSO, COBIT).
• Drive integration of controls across IAG Transform's operations, ensuring consistency and effectiveness.

• Develop and execute comprehensive control testing and assurance programs to validate that controls operate as designed.
• Implement continuous monitoring mechanisms and key risk indicators (KRIs) to proactively identify control gaps.
• Oversee control remediation efforts and track closure of identified deficiencies.
• Establish regular reporting on control effectiveness to senior leadership, audit committees, and relevant governance bodies.
• Conduct control maturity assessments and drive evolution toward higher capability levels.

• Identify and lead process improvement initiatives that enhance the control environment and reduce operational risks.
• Leverage technology, including AI and automation, to strengthen control mechanisms and improve control efficiency.
• Streamline control activities to eliminate redundancies while maintaining appropriate risk coverage.
• Partner with business units to redesign processes where control weaknesses are identified.
• Champion the integration of controls within business processes, making compliance intuitive and embedded.

• Assess and implement technology solutions that automate control activities and enhance monitoring capabilities.
• Identify opportunities to leverage AI, machine learning, and data analytics to strengthen the control environment.
• Lead the selection and deployment of GRC (Governance, Risk, and Compliance) tools and platforms.
• Develop business cases for control technology investments, demonstrating risk reduction and efficiency gains.
• Stay current with emerging control technologies and assess their applicability to IAG Transform.

• Manage TPRM tools and platforms, ensuring effective vendor risk assessment and monitoring capabilities.
• Serve as an active member of the Group TPRM governance board, contributing to enterprise-wide risk strategy.
• Define and maintain third-party risk appetite, assessment criteria, and due diligence standards.
• Coordinate cross-functional teams to ensure consistent application of TPRM policies across the organization.
• Oversee vendor control assessments and ensure third-party risks are appropriately managed.

• Build and maintain strategic relationships with senior leaders across IAG Transform and IAG Group.
• Provide expert guidance and constructive challenge to business leaders on control and risk matters.
• Facilitate control and risk forums with C-suite executives and board committees.
• Represent IAG Transform in Group-level governance committees and control-related working groups.
• Act as a trusted advisor on control framework design, risk management, and compliance requirements.

• Ensure the control framework addresses relevant regulatory requirements and industry standards.
• Coordinate with internal audit, external auditors, and regulatory bodies during examinations and assessments.
• Monitor the evolving regulatory landscape and assess impact on control requirements.
• Support audit responses and lead remediation efforts for internal and external findings.
• Drive a culture of control awareness and compliance throughout the organization.

• Partner with business units to embed control awareness into operational decision-making.
• Support business leaders in identifying, assessing, and mitigating operational and strategic risks.
• Balance business objectives with appropriate control disciplines and risk management.
• Facilitate risk assessments and control self-assessments across the organization.
• Promote a strong risk culture while enabling business agility and innovation.

Your skills, experience and qualifications

• Qualifications

• Master's degree in Business Administration (MBA) or relevant field.
• Bachelor's degree in relevant field.

• CIA (Certified Internal Auditor), CISA (Certified Information Systems Auditor), or CRM (Certified Risk Manager) highly desirable.
• Process improvement certifications (Lean Six Sigma, Business Process Management) are a plus.
• Project management certification (PMP or Prince2 preferred).

• Ability to design and implement comprehensive control frameworks aligned with business strategy.
• Strong leadership presence and ability to influence without direct authority.
• Understanding of emerging control technologies including AI and automation applications.

• Exceptional analytical skills with ability to identify control gaps and root causes.
• Data-driven decision-making with strong business acumen.
• Risk-based thinking with ability to prioritize control activities appropriately.

• Outstanding written and verbal communication skills with executive presence.
• Ability to translate complex control and risk concepts for diverse audiences.
• Political acumen and relationship-building capabilities across organizational levels.
• Consultative approach with ability to work as a business partner, not just a control function.

• Expert knowledge of control frameworks, testing methodologies, and assurance practices.
• Ability to manage multiple control initiatives simultaneously with clear prioritization.
• Proficiency in GRC tools, control monitoring platforms, and risk assessment technologies.
• Understanding of how to leverage technology to automate and enhance controls.
• Comfortable operating in fast-paced, dynamic environments.
• Continuous improvement mindset focused on control effectiveness and efficiency.
• Ability to challenge the status quo while maintaining appropriate control standards.
• Innovation in control design balanced with regulatory and compliance requirements.

• 10+ years of progressive experience in controls, risk management, and audit, with at least 3 years in a leadership role.
• Proven Big 4 audit background with exposure to complex multinational organizations.
• Substantial internal audit experience within large, multinational corporations.
• Demonstrated business-side experience managing operational risks, controls, and process improvements.
• Deep expertise in control framework design and implementation (COSO, COBIT, or equivalent).
• Track record of control testing, assurance programs, and remediation management.
• Proven success in senior stakeholder engagement at C-suite and board level.
• Experience leveraging technology to enhance control effectiveness and efficiency.
• Experience in aviation, logistics, or complex operational industries.
• Experience implementing and managing TPRM programs and tools.
• Background implementing control automation, GRC platforms, or AI-enabled control solutions.
• Experience with SOX compliance, financial controls, and regulatory examinations.
• Hands-on experience with process improvement methodologies (Lean, Six Sigma) applied to controls.
• Knowledge of data analytics and continuous control monitoring tools.
• Consulting experience in risk management, controls, or compliance advisory.

Seniority level: Mid-Senior level

Employment type: Full-time

Job function: Accounting/Auditing and Other

Industries: Airlines and Aviation