Loading...
 
Share this Job
Apply now »

Sr. Risk & Compliance Specialist

Sr. Risk & Compliance Specialist

Position Snapshot

 

Location: Mexico City, MX

Position Type: Full time position.

Position Summary

 

In our IT Security & Compliance Team we are supporting Nestle to improve IT security and compliant ways of working. We are shaping the IT Compliance frame to be in line with external and internal requirements. 

You will be responsible to enhance the processes in different IT Compliance areas like Nestlé IT Standards, Data Privacy and Contract Management for 3rd parties and vendors related to IT Security & Compliance expectations. 

This role requires a good understanding and collaboration on the one hand internally in our team and on the other hand with other parts of the company from Legal team to Procurement and Audit. Furthermore, you need closely work together with central teams as well as local contacts in the different markets.

To enable this, you will be responsible for supporting the definition and providing the tools, processes, and frameworks to support IT risk & control management in Nestlé.
 

A day in the life of...

 

 

•    Sustain and improve tools and processes to support an integrated Risk, Compliance & Security Framework (including regulatory requirements such as Data Privacy).
•    Collaborate with Audit function to ensure one source of truth through the integration of reporting corrective & preventative actions and audit findings  
•    Advise on and promote importance of related IT Risk, IT Compliance and Security outside the IS/IT community especially with legal and procurement teams
•    Drive root cause analysis of audit results and review documentation to embed improvements in tools and processes by clear definitions in IT Standards and practice documents 
•    Support risk identification and control mapping for all solutions and processes in IT products and other IS/IT teams using the Nestlé Security, Risk & Compliance framework and management system
 

What will make you successful

 

•    5+ years of experience in a combination of IT Risk management, IT Compliance, Information Security, and IS/IT jobs with good knowledge of complex technology environments 
•    Undergraduate degree in the field of computer science, IS/IT Security, law, Quality Management; graduate degree in one these fields preferred 
•    Industry-related Compliance, Risk or Security management certification is preferred (e.g., CISA, CISM, CISSP, ISO27001, Lead Auditor, etc.) 
•    Demonstrated ability to apply IS/IT-related knowledge and experience in solving compliance issues 
•    Experience developing and submitting IS/IT audit and compliance reporting 
•    Direct experience and knowledge of global, regional and local Information Technology laws, regulations and standards (e.g., GDPR, ISO27001, NIST, ITIL etc.) 
•    Demonstrated understanding of cloud services, data processing, hardware platforms, enterprise software applications, and outsourced systems 
•    General knowledge of business theory, processes, management, budgeting & office operations 
•    Solid understanding of IT Product Management principles desired
•    Experience with effective communication at different levels in the organization and in English 
•    Experience having worked in a global environment and with virtual teams 
 

Benefits

Position Snapshot

 

Location: Mexico City, MX

Position Type: Full time position.

Position Summary

 

In our IT Security & Compliance Team we are supporting Nestle to improve IT security and compliant ways of working. We are shaping the IT Compliance frame to be in line with external and internal requirements. 

You will be responsible to enhance the processes in different IT Compliance areas like Nestlé IT Standards, Data Privacy and Contract Management for 3rd parties and vendors related to IT Security & Compliance expectations. 

This role requires a good understanding and collaboration on the one hand internally in our team and on the other hand with other parts of the company from Legal team to Procurement and Audit. Furthermore, you need closely work together with central teams as well as local contacts in the different markets.

To enable this, you will be responsible for supporting the definition and providing the tools, processes, and frameworks to support IT risk & control management in Nestlé.
 

A day in the life of...

 

 

•    Sustain and improve tools and processes to support an integrated Risk, Compliance & Security Framework (including regulatory requirements such as Data Privacy).
•    Collaborate with Audit function to ensure one source of truth through the integration of reporting corrective & preventative actions and audit findings  
•    Advise on and promote importance of related IT Risk, IT Compliance and Security outside the IS/IT community especially with legal and procurement teams
•    Drive root cause analysis of audit results and review documentation to embed improvements in tools and processes by clear definitions in IT Standards and practice documents 
•    Support risk identification and control mapping for all solutions and processes in IT products and other IS/IT teams using the Nestlé Security, Risk & Compliance framework and management system
 

What will make you successful

 

•    5+ years of experience in a combination of IT Risk management, IT Compliance, Information Security, and IS/IT jobs with good knowledge of complex technology environments 
•    Undergraduate degree in the field of computer science, IS/IT Security, law, Quality Management; graduate degree in one these fields preferred 
•    Industry-related Compliance, Risk or Security management certification is preferred (e.g., CISA, CISM, CISSP, ISO27001, Lead Auditor, etc.) 
•    Demonstrated ability to apply IS/IT-related knowledge and experience in solving compliance issues 
•    Experience developing and submitting IS/IT audit and compliance reporting 
•    Direct experience and knowledge of global, regional and local Information Technology laws, regulations and standards (e.g., GDPR, ISO27001, NIST, ITIL etc.) 
•    Demonstrated understanding of cloud services, data processing, hardware platforms, enterprise software applications, and outsourced systems 
•    General knowledge of business theory, processes, management, budgeting & office operations 
•    Solid understanding of IT Product Management principles desired
•    Experience with effective communication at different levels in the organization and in English 
•    Experience having worked in a global environment and with virtual teams 
 

Benefits

Ciudad de Mexico, MX, 11520

Ciudad de Mexico, MX, 11520

Apply now »