Role Overview:

The Senior Manager: Technology Governance, Resilience & Corporate IT is responsible for end-to-end execution of technology governance, security-by-design, operational resilience, and corporate IT services across the Cellulant Group.

Reporting directly to the Head of Platform Engineering , the role ensures that:

• Technology platforms and corporate IT services are secure, reliable, compliant, and resilient
• Governance and control frameworks are embedded into daily technology operations
• Corporate IT services enable productivity, efficiency, and a strong employee experience across all market,

Leads the implementation and adoption of controls, principles and guidelines of our current and future ISO certifications across the organization.

This role combines strong operational leadership with disciplined governance execution, acting as a bridge between strategy, engineering execution, compliance requirements, and end-user technology services.

Why this Role Matters:

Operating across multiple regulated markets requires consistent, well-executed technology controls and dependable corporate IT services. This role exists to:

• Drive proactive, embedded, IT security, technology governance and resilience.
• Move the organisation from reactive audit remediation to disciplined execution.
• Provide clear visibility into technology risk, service performance, and operational health.
• Ensure corporate IT services scale securely and efficiently as the business grows.

Key Stakeholders:

• CPTO: Strategic alignment, escalation of material risks, execution reporting
• Engineering & Platform Teams: Secure design, resilience patterns, operational standards
• Information Security & Compliance: Control requirements, audits, regulatory alignment
• Corporate IT Teams & Vendors: End-user service delivery
• Finance & People & Culture: Budgeting, onboarding/offboarding, workforce enablement
• Risk & Audit Forums: Technology risk posture and remediation progress

Responsibilities

Technology Governance & Risk Execution

• Implement and maintain the Technology Risk & Governance Framework across platforms and corporate IT.
• Translate standards and regulations (ISO 27001, ISO 20000, ISO 22301, ISO 27701, PCI-DSS, GDPR) into:
  • Engineering and operational standards
  • Platform and infrastructure guardrails
  • Repeatable control procedures
• Track technology risks, audit findings, and remediation actions, escalating material risks to the CPTO.
• Is the single DRI to spearhead internal and external audits, regulatory reviews, and assurance activities from a Technology execution perspective.

Security by Design & Control Implementation

• Drive effective implementation of security controls across:
  • Identity & Access Management lifecycle
  • Endpoint and device security
  • Cloud and platform environments
• Govern the lifecycle, adoption, and effectiveness of security tooling within Technology.
• Coordinate technology-led incident response and post-incident reviews, ensuring remediation actions are delivered and sustained.

Operational Resilience & Service Management

• Lead and mature IT Service Management (ITSM) processes including Incident, Problem, Change, Asset, and Capacity Management.
• Monitor and report on service availability, reliability, MTTR, and change success rates across platforms and corporate IT.
• Own disaster recovery planning, testing, and business continuity readiness for technology services.
• Drive standardisation and automation to improve service quality, resilience, and operational efficiency.

Corporate Information Technology & End-User Services

• Provide operational leadership for Corporate IT and end-user technology services across all regions.
• Ensure secure, efficient, and auditable onboarding and offboarding processes in partnership with People & Culture.
• Oversee collaboration tools (Google Workspace / Microsoft 365), endpoint management, and workplace technology services.
• Standardise and optimise corporate IT services to deliver a consistent employee experience across countries.
• Plan, implement and operate the corporate IT budget ensuring that IT provides state of the art end user services in a cost effective manner.

Vendor, Financial & Stakeholder Management

• Manage IT vendors and service providers, ensuring SLA adherence, cost effectiveness, and service quality.
• Own Corporate IT budgets and contribute to technology cost optimisation initiatives.
• Partner with Finance on forecasting, spend tracking, and ROI visibility.
• Engage senior stakeholders to align technology services, governance priorities, and business needs.

Team Leadership & Capability Building

• Lead and develop corporate IT and governance-focused technology teams across multiple countries.
• Foster a culture of accountability, documentation, continuous improvement, and operational discipline.
• Build strong working relationships with Engineering, Platform, Security, and Compliance teams.
• Contribute to the strategic evolution of technology by bringing key insight and strategic input to the wider product and technology strategy.

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related field; a Master’s degree is a plus.
• Relevant professional certifications such as:
  • IT Governance/Security: Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC).
  • IT Service Management: ITIL v4 Expert or Master certification.
  • Compliance: Certifications or extensive practical experience with ISO standards (27001, 22301, 20000) and regulatory frameworks like PCI-DSS and GDPR

• Implement and maintain the Technology Risk & Governance Framework across platforms and corporate IT.
• Translate standards and regulations (ISO 27001, ISO 20000, ISO 22301, ISO 27701, PCI-DSS, GDPR) into: Engineering and operational standards, Platform and infrastructure guardrails, Repeatable control procedures
• Track technology risks, audit findings, and remediation actions, escalating material risks to the CPTO.
• Is the single DRI to spearhead internal and external audits, regulatory reviews, and assurance activities from a Technology execution perspective.
• Drive effective implementation of security controls across: Identity & Access Management lifecycle, Endpoint and device security, Cloud and platform environments
• Govern the lifecycle, adoption, and effectiveness of security tooling within Technology.
• Coordinate technology-led incident response and post-incident reviews, ensuring remediation actions are delivered and sustained.
• Lead and mature IT Service Management (ITSM) processes including Incident, Problem, Change, Asset, and Capacity Management.
• Monitor and report on service availability, reliability, MTTR, and change success rates across platforms and corporate IT.
• Own disaster recovery planning, testing, and business continuity readiness for technology services.
• Drive standardisation and automation to improve service quality, resilience, and operational efficiency.
• Provide operational leadership for Corporate IT and end-user technology services across all regions.
• Ensure secure, efficient, and auditable onboarding and offboarding processes in partnership with People & Culture.
• Oversee collaboration tools (Google Workspace / Microsoft 365), endpoint management, and workplace technology services.
• Standardise and optimise corporate IT services to deliver a consistent employee experience across countries.
• Plan, implement and operate the corporate IT budget ensuring that IT provides state of the art end user services in a cost effective manner.
• Manage IT vendors and service providers, ensuring SLA adherence, cost effectiveness, and service quality.
• Own Corporate IT budgets and contribute to technology cost optimisation initiatives.
• Partner with Finance on forecasting, spend tracking, and ROI visibility.
• Engage senior stakeholders to align technology services, governance priorities, and business needs.
• Lead and develop corporate IT and governance-focused technology teams across multiple countries.
• Foster a culture of accountability, documentation, continuous improvement, and operational discipline.
• Build strong working relationships with Engineering, Platform, Security, and Compliance teams.
• Contribute to the strategic evolution of technology by bringing key insight and strategic input to the wider product and technology strategy.

• Technology Governance
• Operational Resilience
• Corporate IT Services
• Security-by-design
• ISO certifications
• IT Risk Management
• ITSM processes (Incident, Problem, Change, Asset, Capacity Management)
• Disaster Recovery Planning
• Business Continuity
• Vendor Management
• Budget Management
• Team Leadership
• Stakeholder Management
• Information Security
• Compliance
• Cloud Security
• Endpoint Security
• Identity & Access Management

• Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related field; a Master’s degree is a plus.
• Relevant professional certifications such as: IT Governance/Security: Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC).
• IT Service Management: ITIL v4 Expert or Master certification.
• Compliance: Certifications or extensive practical experience with ISO standards (27001, 22301, 20000) and regulatory frameworks like PCI-DSS and GDPR