Share this Job

IT Control & Compliance Manager - Amsterdam - Netherlands

Amsterdam, NH, NL


Country:  Netherlands 
City:  Amsterdam



About CRH

CRH is the leading global diversified building materials business in the world with over 3,100 locations worldwide. We manufacture and supply a diverse range of superior building materials and products, used extensively in the built environment, in infrastructure, housing and commercial construction projects, of all sizes, all across the world.


To find out more, visit our website www.crh.com.



Position Overview 

We are seeking to recruit an ambitious and enthusiastic professional interested and experienced in the area of IT controls and compliance and managing the related risks to join the Europe IT Finance team as an IT Controls & Compliance Manager In this the role you will act as the second line of defence lead to help ensure that IT services provided by both Europe IT and OpCos are delivered in a controlled, secure and compliant manner.


The IT Controls & Compliance Manager defines and leads the execution of the risk based annual control and compliance improvement plan. You will work with internal and external IT service providers to deliver these improvements and ensure that when new services are introduced the right controls, security and compliance requirements are incorporated. You will lead the process of closure of open actions resulting from internal and external audits. You will have to effectively collaborate with a wide group of Europe IT, Group, OpCo and Internal and External Audit stakeholders and keep the CIO, the Europe ITLT and the CFO EMAT (European Materials) regularly informed and updated on all control and compliance matters.


Europe IT’s vision is to deliver a sustainable, scalable, innovative and cost effective technology environment, primarily for EMAT, but also supporting a wider group of internal customers in CRH, and being an enabler for our businesses and functions to provide quality products and services with the agility to quickly integrate newly acquired businesses. To achieve its vision Europe IT is embarking on a multi-year transformation programme to consolidate and standardise our infrastructure and operations (I&O); leveraging modern technologies, reducing cost significantly and increasing our service levels while at the same time increasing overall compliance and information security. This transformation process requires embedding effective controls right from the start.


Key Responsibilities

In this role you will be responsible for a number of tasks including: 

  • Defining and leading the execution of the risk based annual control and compliance improvement plans
  • Working with internal and external IT service providers in Europe IT and in OpCos to identify areas for improvement and then working to deliver these improvements
  • Monitoring and reporting regularly on the progress of the improvement plan
  • Providing subject matter expertise to support and advise all IT service providers when designing and introducing new services or changes to existing services to ensure the necessary controls and security are embedded and compliance will be achieved at go-live
  • Providing subject matter expertise to support and advise project teams to ensure they define and implement the necessary risk-based controls and security such that compliance will be achieved post go-live
  • Working with all IT service providers and leading the process of closure of open actions resulting from internal and external audits, providing subject matter expertise where appropriate, assessing the residual risk and supporting with resolutions
  • Working with Group Information Security and other teams and leading the self-assessments and other evaluations within EMAT regarding policy compliance, summarising the outcomes and the required improvement plans to all IT service providers and management and leading the implementation of these improvements
  • Inputting and keeping abreast of changes to the CRH Sox and Internal Controls, evaluating and highlighting the impact of any changes to IT management and all IT service providers. Ensuring these changes are incorporated in the services provided.
  • Ensuring the Europe IT Leadership Team and CFO EMAT are fully informed and up to date on all relevant control and compliance matters through quality management information, reports and regular ITLT and CFO EMAT updates
  • During the annual external audit cycle providing the Europe ITLT and CFO EMAT with clear overview of progress, emerging observations, resolution plans and highlight significant issues
  • Staying up to date with regulatory guidance and industry best practices to help advise and support all IT service providers
  • Engaging and collaborating effectively with key stakeholders including but not limited to Europe ITLT, EMAT CFO, all IT Service Providers, EMAT IT Managers, Risk & Internal Controls and Group Information Security.



Key Functional Competencies and Relevant Experience

  • Able to operate effectively at multiple levels, understanding and explaining the ‘big picture’ to senior stakeholders in a business manner with succinct language, but also be seen as credible by IT teams when working through the detail
  • Confident and capable to take the lead in multi-stakeholder meetings, driving the discussion to the right outcomes
  • Ability to quickly understand the business and forge trusting and effective working relationships with all stakeholders
  • Critical thinking: Apply process analysis and problem-solving techniques
  • Persuades and motivates others by collaboration and cooperation and able to interact effectively with staff at all levels and from all diverse cultural backgrounds
  • Able to proactively communicate observations and other feedback in an open, collaborative, honest and constructive manner
  • Intellectual ability to bring abstract frameworks to practical workings and solutions
  • Improvement and innovation through embracing change and driving improvement and innovation
  • Able to efficiently manage workload, sense for priority and urgency, prepared to do ‘it’ all
  • You will be degree educated (or equivalent) in IT Auditing or Risk Management with preference for professional certifications such as Certified Public Accountant, Certified Internal Auditor, Certified Information Systems Auditor, RA/RE, etc.
  • Experienced in designing and implementing risk assessments and compliance and internal control frameworks, including Sox
  • Experience in presenting, communication and interaction with Senior Management, and other stakeholders across the whole organisation
  • It is likely that your related work experience would not be less than 7 years




As a multinational and multicultural organization, CRH recognizes that our diverse and talented global workforce is critical to sustaining competitive advantage and long-term success. At CRH we want to challenge all of our employees to reach their full potential and play their part in the success of our business. We place a strong focus on developing and empowering our employees to help ensure that we have the talent and capabilities we need now and in the future. We also strive to provide an attractive, rewarding and stimulating modern work environment that will engage and inspire our employees to meet the ever evolving standards and expectations of our customers. 


We offer an international workplace with a lot of opportunities, freedom and flexibility. As such, self – starters who enjoy working in a challenging environment and who can play a role in shaping our future are encouraged to join CRH. We take care of our employees and therefore offer a generous total rewards package, a diverse and inclusive culture and professional development opportunities.


CRH is an equal opportunity employer. We are committed to creating an inclusive work environment for all employees and actively encourage applications from all sectors of the community.

Date:  08-Jul-2021

Job Segment: Information Systems, Supply, Manager, Information Security, Technology, Operations, Management