Control Assurance Manager

About the role

The Control Assurance Manager plays a critical role in embedding "security and compliance by design" across all Tech Business Units (Tech BU). This position provides leadership and day-to-day support to first line of defense teams, ensuring that risks and controls are identified, prioritised, and effectively managed throughout the project lifecycle, from inception to BAU transition. Working closely within the product tower, the role ensures adherence to internal and external compliance standards, drives inspection readiness, and contributes to reducing the overall risk profile when delivering projects. The role combines risk consulting, assurance, and governance expertise to strengthen delivery frameworks, monitor quality, and support audits and regulatory inspections. It acts as a trusted advisor for risk assessments, control design, and compliance queries, enabling Haleon to operate with confidence and resilience. By embedding risk and control practices into delivery processes, the Control Assurance Manager enables secure, compliant, and high-quality technology solutions for our customers.

Responsibilities

• Risk Management and Assurance:
• Contribute to identification and initiation of risk mitigation projects addressing significant risks impacting the product tower, leveraging D&T Risk Assessments (DTRA).
• Facilitate risk identification and discussions within the business unit, covering operational, product/project, and strategic risks.
• Conduct Digital & Tech Risk Assessments for new tech products, End User Developed (EUD) solutions, and RPA bots, including approvals.
• Provide ad-hoc controls consultancy, support RFP activities for new Tech products, and review DTRA documentation deliverables.
• Approve findings and remediation plans, ensuring timely closure and effective risk reduction.
• Quality & Compliance Monitoring:
• Monitor deliverable quality and ensure standards are met for products, projects, programmes, and operations within remit, following a risk-based approach aligned with ITMS, D&T Risk Assessments, local SOPs, and project PQPs.
• Execute self-inspection programmes through management monitoring and independent business monitoring, when required.
• Support implementation of management monitoring programmes for processes not owned by GRC.
• Operational Governance and Audit Readiness:
• Contribute to maintenance of product tower delivery and operational frameworks (activities, deliverables, roles, and responsibilities) ensuring alignment with the Digital & Tech Management System (DTMS).
• Support readiness for external inspections (FDA, EMEA, tax authorities), external audits, and internal audits.
• Manage inspection readiness activities and Corrective and Preventative Actions (CAPAs) in liaison with the business.
• Architectural Governance:
• Attend and actively support Architect Review Board sessions for relevant projects, ensuring that architectural decisions align with security, compliance, and risk management principles.
• Participate in Cyber Risk Assessment meetings, providing expert input on risk identification, mitigation strategies, and control design.
• Compliance Documentation & Evidence Management:
• Ensure robust documentation and evidence is maintained to demonstrate compliance with internal standards (D&T Written Standards, DTMS) and external regulatory requirements (FDA, EMEA, tax authorities).
• Validate that project deliverables meet quality and compliance expectations, supporting audit readiness and inspection preparedness.
• Process Simplification & Standardization:
• Lead initiatives to simplify and streamline key risk and compliance processes, including D&T Risk Assessments, control requirements, and compliance workflows.
• Reduce complexity and duplication across frameworks, ensuring processes are efficient, user-friendly, tech-enabled via the Enterprise GRC platform, and aligned with governance standards.
• Champion standardization and automation opportunities to improve consistency, accelerate delivery, and enhance overall risk management effectiveness.
• Why you?

Requirements

• Minimum of

Benefits

Additional Information

Welcome to Haleon. We're a purpose-driven, world-class consumer company putting everyday health in the hands of millions. In just three years since our launch, we've grown, evolved and are now entering an exciting new chapter - one filled with bold ambitions and enormous opportunity. Our trusted portfolio of brands - including Sensodyne®, Panadol®, Advil®, Voltaren®, Theraflu®, Otrivin®, and Centrum® - lead in resilient and growing categories. What sets us apart is our unique blend of deep human understanding and trusted science. Now it's time to fully realise the full potential of our business and our people. We do this through our Win as One strategy. It puts our purpose - to deliver better everyday health with humanity - at the heart of everything we do. It unites us, inspires us, and challenges us to be better every day, driven by our agile, performance-focused culture.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at gsknch? Share your experience