Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead global GRC strategy, ensuring effective risk management and compliance.
- Company: Join JD Sports, a leading omni-channel retailer in sports fashion.
- Benefits: Enjoy staff discounts, personal development opportunities, and a dynamic work environment.
- Why this job: Make a real impact on risk culture and governance in a growing global company.
- Qualifications: 12+ years in governance, risk, compliance, with strong leadership skills.
- Other info: Collaborate with cross-functional teams and drive service improvements.
The predicted salary is between 72000 - 108000 £ per year.
Established in 1981 with a single store in the Northwest of England, the JD Group is a leading omni-channel retailer of Sports Fashion, Outdoors and Gyms with our colleagues working in stores across several retail fascias in many markets around the world. JD Sports Fashion Plc was listed on the London Stock Exchange in 1996 and has been a FTSE100 publicly quoted company since 2019 and continues to grow in the UK and internationally.
We want to be the leading global omnichannel retailer in the sports and outdoor industry. To be a part of this successful company and help us to achieve this you will have the desire to ingrain our strategic goals of being a people-led, innovative and customer-focused organisation which provides operational excellence whilst identifying new areas of growth as part of our day to day objectives.
The Information Technology Head of GRC is responsible for leading the organisation’s global GRC strategy, ensuring effective risk management, compliance with applicable regulations, and robust governance frameworks. The role requires a strategic leader with deep expertise in ITGC, enterprise risk, internal controls, and regulatory compliance, capable of influencing senior stakeholders and embedding a strong risk culture across the group.
You will oversee the creation of risk and information security policies that serve to protect the organisation while aligning with corporate and departmental strategies, lead the operationalisation of risk management processes and help establish a company-wide risk-aware culture, drive the creation and maintenance of a robust accurate and actionable risk register, and set risk and security goals and obligations that will help ensure that the organisation can demonstrate compliance with applicable regulatory requirements.
What You’ll Be Doing:
- Build and apply repeatable methodologies which monitor and manage the effectiveness of JD Sports’ information security function in response to evolving trends in good practice and the dynamic nature of the threat environment.
- Monitor Systems Integrator and third-party performance against contractual information security obligations and oversee all implementation activity.
- Define and implement the Group-wide GRC strategy, policies, and frameworks.
- Promote a strong risk and compliance culture throughout the organization.
- Ensure governance structures are effective, transparent, and aligned with industry best practices.
- Report regularly to executive management, Audit Committee, and the Board on GRC performance, emerging risks, and ITGC effectiveness.
- Identify and drive opportunities for service improvements.
- Build and lead a high-performing GRC function, including compliance, risk, and ITGC specialists.
- Foster cross-functional collaboration with IT Security, Finance, Internal Audit, and Legal.
- Understand, manage, and mitigate risks while ensuring regulatory compliance and safeguarding information, IP, people, customers, shareholders and brand.
What We’re Looking For:
- Develop, communicate, and agree on an appropriate JD Sports information security operations strategy that will help optimise and target investment and resources.
- A proven track record in team or departmental leadership.
- An understanding of the measures and processes needed to enable large retail organisations to remain compliant with relevant laws and regulations.
- Strong analytical and problem-solving skills.
- 12+ years of progressive experience in governance, risk, compliance, or audit, with at least 5 years in a senior leadership role.
- Relevant certifications such as CISA, CRISC, CISM, CIA, or CISSP are strongly desirable.
We know our colleagues work tirelessly to make JD Sports the success it is today and in turn, we offer them some amazing benefits including staff Discount On JD Group and other brands within the organisation and personal development opportunities to learn and develop at work.
Information Technology Head of GRC in Bury employer: JD Group Plc
Contact Detail:
JD Group Plc Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Technology Head of GRC in Bury
✨Tip Number 1
Network like a pro! Reach out to connections in the industry, attend events, and engage on platforms like LinkedIn. We all know that sometimes it’s not just what you know, but who you know that can help you land that dream job.
✨Tip Number 2
Prepare for interviews by researching JD Sports and understanding their values and goals. We want to see how you can align with our mission of being a people-led, innovative organisation. Tailor your responses to show you’re the perfect fit!
✨Tip Number 3
Practice makes perfect! Conduct mock interviews with friends or use online resources to refine your answers. We want you to feel confident and ready to tackle any question that comes your way during the interview process.
✨Tip Number 4
Don’t forget to follow up after your interview! A simple thank-you email can go a long way in showing your enthusiasm for the role. We appreciate candidates who take the time to express their gratitude and interest.
We think you need these skills to ace Information Technology Head of GRC in Bury
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Technology Head of GRC role. Highlight your experience in governance, risk, and compliance, and don’t forget to mention any relevant certifications like CISA or CRISC. We want to see how your skills align with our strategic goals!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about the role and how your background makes you the perfect fit for JD Sports. Be sure to mention your leadership experience and how you can foster a strong risk culture within our organisation.
Showcase Your Achievements: When detailing your work experience, focus on specific achievements that demonstrate your ability to lead a high-performing GRC function. Use metrics where possible to quantify your impact. We love seeing how you’ve driven improvements and managed risks effectively!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, you’ll find all the details you need about the role and our company culture there!
How to prepare for a job interview at JD Group Plc
✨Know Your GRC Inside Out
Make sure you have a solid understanding of governance, risk, and compliance (GRC) principles. Brush up on the latest trends in information security and be ready to discuss how you can apply these to JD Sports' strategy.
✨Showcase Your Leadership Skills
As a senior role, they’ll want to see your leadership style. Prepare examples of how you've built and led high-performing teams in the past, especially in the context of risk management and compliance.
✨Understand the Retail Landscape
Familiarise yourself with the retail industry, particularly how it relates to IT governance and compliance. Be prepared to discuss how you can help JD Sports navigate regulatory challenges while driving growth.
✨Prepare for Stakeholder Engagement
You’ll need to influence senior stakeholders, so think about how you can communicate complex GRC concepts clearly. Prepare to share strategies for fostering a risk-aware culture across the organisation.
