Apply now »

DM ICT Governance

Date:  Aug 12, 2025
Location: 

PK

Company:  Engro Corporation Limited

Position Title:

DM - ICT Governance

Reports to:

ICT Governance Manager

 

Department:

ICT

Category:

 

No. of direct reports (if any):   

1

Division/Function:   

ICT

Benchmark Band: 

M2

Location:

Dawood Center

Division Head / CxO:

Azhar Nawaz – CIO

 

  1. Job Purpose         

DM – ICT Governance will be responsible for: drafting and implementing IT policy, procedures and guidelines for IT Operations, ensure implementation of IT strategy, implementation of risk management framework, regular risk assessments and ensure mitigation of identified risks.

 

  1. Key Accountabilities & Performance Indicators

 

Description

Performance Indicators

Develop appropriate policies, procedures, and practices in relations to governance and planning functions
  • Develop and implementations of the policies and procedures.
  • Ensure necessary awareness for the IT policies and procedures

IT Risk Management
  • Develop IT Governance Policy and Framework
  • Conduct regular IT Risk Assessment Exercises
  • Maintain and Update IT Risk Register
  • Follow up on open items and ensure timely closure

Coordination with Internal and External Audit

  • Facilitate External and Internal Audits
  • Ensure timely response to Audit requirements.
  • Submit official response to auditors after coordination with internal teams for remediation of audit findings.
  • Ensure timely closure of all Audit points

ICT Strategy
  • Coordinate with teams to ensure that the planned strategic objectives are implemented as planned.

ICT Governance Framework  
  • Periodically review and enhance the ICT Governance framework
  • Ensure that ICT processes and practices are aligned to the ICT Governance Framework.

 

  1. Budget Responsibility

(Financial items which this position is accountable for or has a strong impact on. The money amount should be on an annual basis, rounded to nearest thousand, ten thousand, etc. Accountability for revenue and expenditure should be included)

 

Items

 

 

 

 

 

*Number may change based on the business requirements and growth agenda. Please describe any other financial or money amount items that will help to understand the impact of this job. 

 

NOTES: For subordinate positions, please don’t include money amounts which are for the whole department, or for the supervisor / manager position.  If this position in fact does not approve budgets, or budget expenditure, or if this position does not have direct sales / revenue targets, then the above items should be blank.

 

  1. Frameworks, Boundaries and Decision-Making Authority:

(Define the nature of policy/procedure/instruction constraints and the nature of reporting relationships with line manager as well as any relevant sign-off authorities)

 

  1. Types of decisions referred to higher authority or decisions which are controlled by policy.
    1. IT policies and Framework
    2. IT Mitigation Plan
    3. IT Policies
  2. The review of the work expected from this position
    1. IT Procedures
    2. IT Risk Mitigation Plan
  3. What position(s) gives any further specific (formal) advice or guidance to this position\
    1. ICT Governance Manager
    2. IT Stakeholders (Application and Infrastructure Team)
    3. Business Stakeholders

 

  1. Communication and Working Relationships

(Describe the purpose and nature of the main internal and external contacts, excluding line manager and direct reports, which are necessary to perform the job)

 

  1. Main internal stakeholders:
    1. Business Managers
    2. Application and Infrastructure Teams
    3. Internal Audit
  2. Main external stakeholders:
    1. Industry Experts
    2. External Audit

 

  1. Key Challenges

(Briefly describe the most difficult and complex aspects, the main challenges of the Job and/or other significant features not covered elsewhere.)

 

  • Timely closure of audit observations and actionable risks.  
  • Stake Holder Management
  • Implementation of developed processes.  

 

  1. Knowledge, Skills & Abilities, Experience [KSAE] required

(Describe the minimum level of Knowledge, Years of experience and Must-Have Leadership and Technical/Functional skills)

 

 

 

Skills / Abilities & Key Knowledge Areas

 

Must-have Leadership Competencies

(Identify min 3 where Advance level is needed)

 

  1. Collaboration
  2. Execution
  3. Adaptability

Must-Have Technical / Functional Skills

(List max 6; ideally max 4 with Advance level)

 

  1. Knowledge or understanding of wider governance issues such as information & technology governance, risk management and learning
  2. Sound knowledge and proven ability to develop and implement effective, robust governance policies and procedures
  3. Highly developed interpersonal skills. Credible and able to deal comfortably with key individuals at all levels
  4. Knowledge of regulatory environments applicable to MNCs

Key Knowledge Areas

(List most relevant)

 

  1. COBIT
  2. ISO 27001
  3. ITIL

 

 

  1. Experience & Education (& Technical Qualifications if applicable) 

 

Professional Experience

(Must mention relevant)

 

A bachelor’s  degree with 6 years of related work experience.

Education & Technical Qualifications*

(List must-haves & preferable)

 

  • Bachelors degree in computer science.
  • COBIT Certified is preferred .
  • Good knowledge and understanding of ISO 27001 (ISO 27001 LA/LI certified preferred).
  • In depth understanding of ITIL processes.

 

* also mention any license, registration, or certification specifically required to achieve the outputs expected from this job

Apply now »