Share this Job
Apply now »

Compliance & Project Portfolio Management Specialist - IS/IT Finance, Control & Legal Operations

Compliance & Project Portfolio Management Specialist - IS/IT Finance, Control & Legal Operations

Esplugues Llobregat, B, ES, 08950

Esplugues Llobregat, B, ES, 08950

About IT in Nestlé

 

We are a team of IT professionals from many countries and diverse backgrounds, each with unique missions and challenges in the biggest health, nutrition and wellness company of the world. We innovate every day through forward-looking technologies to create opportunities for Nestlé’s digital challenges with our consumers, customers and at the workplace. We collaborate with our business partners around the world to deliver standardized, integrated technology products and services to create tangible business value.

Position Snapshot

 

  • Location: Barcelona, Global Tech Hub
  • Full-time
  • 7+ years of experience in diverse roles including a minimum of 4 years in the area of risk management and compliance. Project portfolio management experience is desirable.
  • Undefined period of time contract, act. Rate 100%
Position Summary

 

To strengthen our Global Tech Hub in Barcelona, we are looking for an IS/IT Specialist in the areas of Compliance & Project Portfolio Management to join our Operations Team in the Finance, Control and Legal Department.

Supported by the Product Stream Operations Manager, you will guide and educate the Product Group Managers and their teams with regards to compliance procedures. As a Subject Matter Expert you will support them as they work to resolve compliance issues, including but not limited to information security, data protection, privacy, 3rd party/vendor and procurement. You will oversee the unit's compliance with internal and external policies, standards and regulations by coordinating and providing support to the product teams as they undertake risk assessment activities, preparation of documentation and implementation of corrective measures. You will also ensure that the appropriate actions, checks and reviews are in place to deliver a risk based continuous improvement management system for compliance.

On the Project Portfolio Management side, you will work across our global product groups providing oversight and transparency on the portfolio of investments that supports planning, decision-making and execution required to deliver on strategic objectives. You will be responsible for ensuring that all initiatives have an approved budget, defined benefits and consistent portfolio financial elements. You will ensure adoption of portfolio framework across multiple product streams ensuring alignment across the teams.

A day in the life of Compliance & Project Portfolio Management Specialist

 

  • Ensure the adherence and compliance to ISIT Standards and Policies across the Global and Regional Business Solutions (BS) for the Finance, Control & Legal area.
  • Work closely with the Product Managers to understand their solutions and be a guardian on information security. Help assess & Identify risk within the Information Security Management System (ISMS ISO 27001:2013) framework as well as report on security risks and non-compliance issues.  
  • Collaborate with the product manager to build remediation plans, standard routines for control procedures and execute controls to mitigate identified risks relating to these global solutions and ensure to drive harmonization in the ISMS controls and metrics within the BS ISMS using aligned standard routine documentation and governance processes
  • Maintain effective and trusted relationships with Product Managers, ISMS Leads, Security & Compliance teams, Legal & Procurement compliance, Solution Architects, Regional Compliance SPOCs and other major stakeholders.
  • Support in scope solutions with internal and international audits on security related topics.
  • Give risk based security control recommendations for new solutions developed or deployed by Business Solutions Team.
  • Support Product Managers in the completion of the Cloud Security (re-) assessments for global and regional cloud solutions, with a particular focus on validating the requirements with respect to security control requirements.
  • Ensure product group is trained in reporting Risk, Compliance & Security incidents and events to meet internal and external requirements.
  • Support the Implementation of the BS Information Security Management System (ISMS) including the preparation and support the execution of Independent Reviews and risk assessments.
  • Cultivate continuous improvement in Information Security.
  • Coach and mentor individually or in teams to secure collaboration, learnings and excellence mind set.
  • In relation to our project portfolios, provide visibility on trends and forecasts versus plans and provide recommendations as to whether elements should continue as-is, be significantly changed, placed on hold or discontinued.
  • Lead reviews of any significant portfolio elements on a periodic basis and on demand if they are challenged.
  • Work in close collaboration with the Project Managers from each team to build a Community of Practice around all Project Portfolio activities.
  • Ensure and balance the availability of the required skills, competencies, and budget across teams within the portfolio, and provide visibility of this to the leadership team at a global level.
  • Make recommendations for the IS/IT portfolio overall or its various sub-portfolios that are clearly linked to IS/IT strategy, objectives and goals, reflecting an awareness of external dynamics.
  • Facilitate the identification, prioritization, and coordination of resources engaged with all or many of the IS/IT portfolio components.
  • Direct the development and maintenance of communications and reporting around the IS/IT portfolio and sub-portfolios, their contents and the individual performance of initiatives to IS/IT and business stakeholders and/or governance boards
What will make you successful

 

  • Bachelor's or master's degree in Information Systems, Business Administration, Engineering or related discipline, or equivalent work experience. 
  • Industry related compliance, risk or security management certification is desirable, e.g. Information Security Management System (ISMS ISO 27001:2013) certification
  • Experience  developing and submitting IS/IT audit and compliance reports
  • Understanding & experience of Infrastructure, Application, Web, Cloud & User Security.
  • Familiarity with the use of reporting tools to monitor portfolio activities and analyze portfolio performance
  • Experienced in both traditional and agile program management methodologies, e.g. SAFe
  • Excellent verbal and written communication skills, with a particularly strong ability to gain buy-in from product teams and business stakeholders in the areas of compliance and portfolio goals.
  • Experience having worked in a global environment and with virtual teams
  • Experience with effective communication at different levels in the organization and in English
  • Can-do mindset with an appetite for continuous improvement
  • Tools and Technologies: WEBI/analytics, ServiceNow, Finance tools including SAP/CATS/H2R
Join Us!

 

Show us that you are an enthusiastic, curious, fast learner and a team player person who is used to work with agile practices.

Your ability to be flexible self-motivated and your willingness to deliver on a deadline will set you apart among the other candidates.

Please apply in English at www.nestle.com/jobs.

The Nestlé Group is the world’s largest food and beverage company with 89.8 billion Swiss Francs in sales in 2017. It is present in 189 countries around the world, has 413 factories and its 323,000 employees are committed to Nestlé’s purpose of enhancing quality of life and contributing to a healthier future. Nestlé offers a wide portfolio of products and services for people and their pets throughout their lives. Its more than 2000 brands range from global icons like Nescafé or Nespresso to local favourites. Company performance is driven by its Nutrition, Health and Wellness strategy. Nestlé is based in the Swiss town of Vevey where it was founded more than 150 years ago. Learn more about our Group and reasons to join us on www.nestle.com.

About IT in Nestlé

 

We are a team of IT professionals from many countries and diverse backgrounds, each with unique missions and challenges in the biggest health, nutrition and wellness company of the world. We innovate every day through forward-looking technologies to create opportunities for Nestlé’s digital challenges with our consumers, customers and at the workplace. We collaborate with our business partners around the world to deliver standardized, integrated technology products and services to create tangible business value.

Position Snapshot

 

  • Location: Barcelona, Global Tech Hub
  • Full-time
  • 7+ years of experience in diverse roles including a minimum of 4 years in the area of risk management and compliance. Project portfolio management experience is desirable.
  • Undefined period of time contract, act. Rate 100%
Position Summary

 

To strengthen our Global Tech Hub in Barcelona, we are looking for an IS/IT Specialist in the areas of Compliance & Project Portfolio Management to join our Operations Team in the Finance, Control and Legal Department.

Supported by the Product Stream Operations Manager, you will guide and educate the Product Group Managers and their teams with regards to compliance procedures. As a Subject Matter Expert you will support them as they work to resolve compliance issues, including but not limited to information security, data protection, privacy, 3rd party/vendor and procurement. You will oversee the unit's compliance with internal and external policies, standards and regulations by coordinating and providing support to the product teams as they undertake risk assessment activities, preparation of documentation and implementation of corrective measures. You will also ensure that the appropriate actions, checks and reviews are in place to deliver a risk based continuous improvement management system for compliance.

On the Project Portfolio Management side, you will work across our global product groups providing oversight and transparency on the portfolio of investments that supports planning, decision-making and execution required to deliver on strategic objectives. You will be responsible for ensuring that all initiatives have an approved budget, defined benefits and consistent portfolio financial elements. You will ensure adoption of portfolio framework across multiple product streams ensuring alignment across the teams.

A day in the life of Compliance & Project Portfolio Management Specialist

 

  • Ensure the adherence and compliance to ISIT Standards and Policies across the Global and Regional Business Solutions (BS) for the Finance, Control & Legal area.
  • Work closely with the Product Managers to understand their solutions and be a guardian on information security. Help assess & Identify risk within the Information Security Management System (ISMS ISO 27001:2013) framework as well as report on security risks and non-compliance issues.  
  • Collaborate with the product manager to build remediation plans, standard routines for control procedures and execute controls to mitigate identified risks relating to these global solutions and ensure to drive harmonization in the ISMS controls and metrics within the BS ISMS using aligned standard routine documentation and governance processes
  • Maintain effective and trusted relationships with Product Managers, ISMS Leads, Security & Compliance teams, Legal & Procurement compliance, Solution Architects, Regional Compliance SPOCs and other major stakeholders.
  • Support in scope solutions with internal and international audits on security related topics.
  • Give risk based security control recommendations for new solutions developed or deployed by Business Solutions Team.
  • Support Product Managers in the completion of the Cloud Security (re-) assessments for global and regional cloud solutions, with a particular focus on validating the requirements with respect to security control requirements.
  • Ensure product group is trained in reporting Risk, Compliance & Security incidents and events to meet internal and external requirements.
  • Support the Implementation of the BS Information Security Management System (ISMS) including the preparation and support the execution of Independent Reviews and risk assessments.
  • Cultivate continuous improvement in Information Security.
  • Coach and mentor individually or in teams to secure collaboration, learnings and excellence mind set.
  • In relation to our project portfolios, provide visibility on trends and forecasts versus plans and provide recommendations as to whether elements should continue as-is, be significantly changed, placed on hold or discontinued.
  • Lead reviews of any significant portfolio elements on a periodic basis and on demand if they are challenged.
  • Work in close collaboration with the Project Managers from each team to build a Community of Practice around all Project Portfolio activities.
  • Ensure and balance the availability of the required skills, competencies, and budget across teams within the portfolio, and provide visibility of this to the leadership team at a global level.
  • Make recommendations for the IS/IT portfolio overall or its various sub-portfolios that are clearly linked to IS/IT strategy, objectives and goals, reflecting an awareness of external dynamics.
  • Facilitate the identification, prioritization, and coordination of resources engaged with all or many of the IS/IT portfolio components.
  • Direct the development and maintenance of communications and reporting around the IS/IT portfolio and sub-portfolios, their contents and the individual performance of initiatives to IS/IT and business stakeholders and/or governance boards
What will make you successful

 

  • Bachelor's or master's degree in Information Systems, Business Administration, Engineering or related discipline, or equivalent work experience. 
  • Industry related compliance, risk or security management certification is desirable, e.g. Information Security Management System (ISMS ISO 27001:2013) certification
  • Experience  developing and submitting IS/IT audit and compliance reports
  • Understanding & experience of Infrastructure, Application, Web, Cloud & User Security.
  • Familiarity with the use of reporting tools to monitor portfolio activities and analyze portfolio performance
  • Experienced in both traditional and agile program management methodologies, e.g. SAFe
  • Excellent verbal and written communication skills, with a particularly strong ability to gain buy-in from product teams and business stakeholders in the areas of compliance and portfolio goals.
  • Experience having worked in a global environment and with virtual teams
  • Experience with effective communication at different levels in the organization and in English
  • Can-do mindset with an appetite for continuous improvement
  • Tools and Technologies: WEBI/analytics, ServiceNow, Finance tools including SAP/CATS/H2R
Join Us!

 

Show us that you are an enthusiastic, curious, fast learner and a team player person who is used to work with agile practices.

Your ability to be flexible self-motivated and your willingness to deliver on a deadline will set you apart among the other candidates.

Please apply in English at www.nestle.com/jobs.

The Nestlé Group is the world’s largest food and beverage company with 89.8 billion Swiss Francs in sales in 2017. It is present in 189 countries around the world, has 413 factories and its 323,000 employees are committed to Nestlé’s purpose of enhancing quality of life and contributing to a healthier future. Nestlé offers a wide portfolio of products and services for people and their pets throughout their lives. Its more than 2000 brands range from global icons like Nescafé or Nespresso to local favourites. Company performance is driven by its Nutrition, Health and Wellness strategy. Nestlé is based in the Swiss town of Vevey where it was founded more than 150 years ago. Learn more about our Group and reasons to join us on www.nestle.com.

Apply now »