Loading...
Share this Job
Apply now »

Senior Risk & Compliance Specialist

Senior Risk & Compliance Specialist

Assago, IT

Assago, IT

Position Snapshot

 

  • Headquarters of Nestlé in Milan, Italy;
  • Permanent contract;
  • Full-time in the Milan HQ with some flexibility to work remotely;
  • Master or Bachelor’s degree in Computer Science, Sciences or Engineering, Information Systems, business administration or related field;
  • 7+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs - atleast 4 years in a leadership role managing IT risk and compliance;
  • Experience with effective communication at different levels in the organization and in English.

 

Position Summary

 

Joining Nestlé means you are joining the largest food and beverage company in the world! In order to complete our Workforce360 Product Operations Stream  Department, we are currently looking for a Risk and Compliance Specialist –IS/IT. This role will engage globally with all associated Product Groups that are part of Workforce 360 and ensure risk and compliance standards are adhered to. Under the supervision and guidance of her/his primary Community of Practice Lead and Product Group Manager, the Risk and Compliance Specialist's role is to assess, oversee and drive all IT risk and compliance issues within their area (product, product group, stream) including but not limited to information security, relevant regulatory obligations, data protection, privacy, 3rd party/vendor and procurement. The role includes evaluating the unit's IT risk and compliance with internal and external policies, standards and regulations, assessing the risks associated with each product and supporting the product teams in documenting and implementing corrective and ensuring the appropriate actions, checks and reviews are in place to deliver a risk based continuous improvement management system for compliance.

 

A day in the life of...

 

  • Work with W360 Product/Platform Group owners and related specialists to enable and foster an appropriate IT risk and compliance environment by:
  • Developing and overseeing IT controls and IT risk management system (in close collaborate with Group Risk, Compliance & Security and leveraging existing and agreed frameworks) to prevent or deal with IT control violations;
  • Support the evaluation of the efficiency of IT controls and improve them continuously;
  • Align and revise as necessary procedures, reports etc. periodically to identify hidden risks or non-conformity issues;
  • Draft, modify and implement ad necessary company IS/IT policies and standards;
  • Collaborate with Group Risk, Compliance & Security, corporate counsels and HR departments to monitor enforcement of policies, standards and regulations;
  • Keep abreast of relevant regulatory developments within or outside of the company as well as evolving best practices in IT risk compliance control;
  • Contribute to (and where relevant own) the preparation of related reports for senior management, internal and external audit as well as external regulatory bodies as appropriate;
  • Supports the product/product group teams in implementing by design the required IT compliance in their solutions to meet the desired level of compliance maturity in the Nestlé Framework;
  • Coordinates audit-related tasks such as audits requests and ensuring the readiness of product/product group’s IT Product Managers, Partner Delivery Managers and their organizations for audits testing and facilitating the timely resolution of any audit findings (includes supporting product/product groups in the execution and follow-up of Partner Compliance Audits, including cloud);
  • Coaches& trains product/product group teams on the implementation and management of risks, controls and corrective actions through the implementation of the Nestlé Information Security Management System (ISMS);
  • Oversees the development and roll out of the Risk, Compliance & Security capability framework for their product/product groups, including the roll out and tracking of the awareness and behaviour training for all team members.
What will make you successful

 

  • 7+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs - atleast 4 years in a leadership role managing IT risk and compliance;
  • Undergraduate degree preferable in the field of computer science, law, IS/IT Security, Quality Management or business administration; graduate degree in one these fields preferred;
  • Experience in developing and submitting IT audit, risk and compliance reports;
  • Experience with effective communication at different levels in the organization and in English;
  • Direct experience and knowledge of regional, national and local IT laws and regulations;
  • Industry-related compliance, risk or security management certification is desirable;
  • Demonstrated ability to apply IT-related knowledge & experience in solving compliance issues;
  • Demonstrated understanding of cloud services, data processing, hardware platforms, enterprise software applications and outsourced systems;
  • General knowledge of business theory, business processes, management, budgeting and business office operations and solid understanding of product management principles;
  • Understanding of computer systems and integration capabilities;
  • Good understanding of AGILE , ITIL framework;
  • Experience having worked in a global environment and with virtual teams.

 

More about Nestlé IT 

 

Workforce 360 is Nestlé’s exciting and diverse new product-based IT team, created to bring together all products our global workforce needs for successful collaboration, engaging communication, and efficient work.  We provide IT services to the entire Nestlé Group, the world’s largest food and beverage company with 91.4 billion Swiss Francs in sales in 2018 and 308,000 employees. We continuously improve our products for the workforce, operating in 189 countries, by embracing Agile ways of working and evolving to quickly address new requirements.  We design and support our solutions end-to-end.  This means we not only deliver great IT solutions with the best user experience , we also quickly resolve issues as they arise.  Learn more about the Nestlé Group and reasons to join us on www.nestle.com.  

  

Please send your CV in English to be considered. 

Position Snapshot

 

  • Headquarters of Nestlé in Milan, Italy;
  • Permanent contract;
  • Full-time in the Milan HQ with some flexibility to work remotely;
  • Master or Bachelor’s degree in Computer Science, Sciences or Engineering, Information Systems, business administration or related field;
  • 7+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs - atleast 4 years in a leadership role managing IT risk and compliance;
  • Experience with effective communication at different levels in the organization and in English.

 

Position Summary

 

Joining Nestlé means you are joining the largest food and beverage company in the world! In order to complete our Workforce360 Product Operations Stream  Department, we are currently looking for a Risk and Compliance Specialist –IS/IT. This role will engage globally with all associated Product Groups that are part of Workforce 360 and ensure risk and compliance standards are adhered to. Under the supervision and guidance of her/his primary Community of Practice Lead and Product Group Manager, the Risk and Compliance Specialist's role is to assess, oversee and drive all IT risk and compliance issues within their area (product, product group, stream) including but not limited to information security, relevant regulatory obligations, data protection, privacy, 3rd party/vendor and procurement. The role includes evaluating the unit's IT risk and compliance with internal and external policies, standards and regulations, assessing the risks associated with each product and supporting the product teams in documenting and implementing corrective and ensuring the appropriate actions, checks and reviews are in place to deliver a risk based continuous improvement management system for compliance.

 

A day in the life of...

 

  • Work with W360 Product/Platform Group owners and related specialists to enable and foster an appropriate IT risk and compliance environment by:
  • Developing and overseeing IT controls and IT risk management system (in close collaborate with Group Risk, Compliance & Security and leveraging existing and agreed frameworks) to prevent or deal with IT control violations;
  • Support the evaluation of the efficiency of IT controls and improve them continuously;
  • Align and revise as necessary procedures, reports etc. periodically to identify hidden risks or non-conformity issues;
  • Draft, modify and implement ad necessary company IS/IT policies and standards;
  • Collaborate with Group Risk, Compliance & Security, corporate counsels and HR departments to monitor enforcement of policies, standards and regulations;
  • Keep abreast of relevant regulatory developments within or outside of the company as well as evolving best practices in IT risk compliance control;
  • Contribute to (and where relevant own) the preparation of related reports for senior management, internal and external audit as well as external regulatory bodies as appropriate;
  • Supports the product/product group teams in implementing by design the required IT compliance in their solutions to meet the desired level of compliance maturity in the Nestlé Framework;
  • Coordinates audit-related tasks such as audits requests and ensuring the readiness of product/product group’s IT Product Managers, Partner Delivery Managers and their organizations for audits testing and facilitating the timely resolution of any audit findings (includes supporting product/product groups in the execution and follow-up of Partner Compliance Audits, including cloud);
  • Coaches& trains product/product group teams on the implementation and management of risks, controls and corrective actions through the implementation of the Nestlé Information Security Management System (ISMS);
  • Oversees the development and roll out of the Risk, Compliance & Security capability framework for their product/product groups, including the roll out and tracking of the awareness and behaviour training for all team members.
What will make you successful

 

  • 7+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs - atleast 4 years in a leadership role managing IT risk and compliance;
  • Undergraduate degree preferable in the field of computer science, law, IS/IT Security, Quality Management or business administration; graduate degree in one these fields preferred;
  • Experience in developing and submitting IT audit, risk and compliance reports;
  • Experience with effective communication at different levels in the organization and in English;
  • Direct experience and knowledge of regional, national and local IT laws and regulations;
  • Industry-related compliance, risk or security management certification is desirable;
  • Demonstrated ability to apply IT-related knowledge & experience in solving compliance issues;
  • Demonstrated understanding of cloud services, data processing, hardware platforms, enterprise software applications and outsourced systems;
  • General knowledge of business theory, business processes, management, budgeting and business office operations and solid understanding of product management principles;
  • Understanding of computer systems and integration capabilities;
  • Good understanding of AGILE , ITIL framework;
  • Experience having worked in a global environment and with virtual teams.

 

More about Nestlé IT 

 

Workforce 360 is Nestlé’s exciting and diverse new product-based IT team, created to bring together all products our global workforce needs for successful collaboration, engaging communication, and efficient work.  We provide IT services to the entire Nestlé Group, the world’s largest food and beverage company with 91.4 billion Swiss Francs in sales in 2018 and 308,000 employees. We continuously improve our products for the workforce, operating in 189 countries, by embracing Agile ways of working and evolving to quickly address new requirements.  We design and support our solutions end-to-end.  This means we not only deliver great IT solutions with the best user experience , we also quickly resolve issues as they arise.  Learn more about the Nestlé Group and reasons to join us on www.nestle.com.  

  

Please send your CV in English to be considered. 

Apply now »