Loading...
Share this Job
Apply now »

Risk and Compliance Specialist - IT Human Resources

Risk and Compliance Specialist - IT Human Resources

Esplugues Llobregat, B, ES, 08950

Esplugues Llobregat, B, ES, 08950

About IT in Nestlé

 

We are a multicultural and diverse team of IT professionals driving the biggest IT operations landscape and digital transformation of the FMCG industry. We work with leading technologies and solutions to enable Nestle to engage with millions of consumers worldwide. We transform how we use data with machine learning, advanced analytics, and introduce automation to drive industry 4.0 opportunities in areas including supply chain and manufacturing.

 

We look for people who are curious, courageous, innovative, collaborative and passionate about new technologies. We want to hear from people who have the courage to challenge; believe the only way of moving forward is by doing and who look for solutions to improve the lives of our consumers.

 

If this is you and you want to make an impact globally, join us and there will be no limits to your career.

#makeITpossible at Nestlé

Position Snapshot

 

  • Location: Global IT Hub Barcelona
  • Full-time 
  • Bachelor’s Degree  
  • 8+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs
Position Summary

 

In order to complete our IT Human Resources Department, we are currently looking for a Risk and Compliance Specialist. 

 

In this position, you will be responsible for implementing, coaching and supporting an integrated risk, compliance and security management systems in accordance to the business risk appetite. The management systems enable the IS/IT teams globally to identify, document, measure and address its compliance requirements, including but not limited to data protection, privacy, 3rd party/vendor, information security and procurement. The Risk and Compliance Specialist's responsibilities include ensuring the teams are able to drive all their risk, compliance and security requirements through the management system, ensuring compliant and secure products & platforms meeting the business risk appetite. To enable this, you will be responsible for providing the tools, processes and frameworks to support IS/IT Compliance in Nestle and for conducting IS/IT controls testing. 

Key Responsibilities

 

  • Support risk identification and control mapping for all solutions and processes in product/product groups and other IS/IT teams using the Nestlé Security, Risk & Compliance framework and management system 
  • Responsible for conducting controls testing, management system reviews and reporting to assess the IS/IT compliance and management system 
  • Support all IS/IT teams in identifying and applying Internal and External (legal, regulatory and commercial) compliance requirements 
  • Coach and support teams in managing Risk, Compliance & Security gaps through documented corrective & preventative actions, tracked through the management system 
  • Provide guidance and support to IS/IT teams in implementing by design the required IS/IT compliance in their solutions to meet the desired level of compliance maturity and risk appetite in the Nestlé Framework  
  • Advise on and promote importance of IS/IT related Risk, Compliance and Security outside the IS/IT community 
  • Implement tools and process to support an integrated Risk, Compliance & Security Framework (including regulatory requirements PCI, GDPR Quality etc.) 
  • Maintain the management system through continuous review and evaluation of external frameworks and standards (e.g., ISO27001, COBIT, NIST, ITIL etc.) 
  • Collaborate with Audit, IS/IT & NBE support functions to ensure one source of truth through integration of reporting corrective & preventative actions and audit findings  
  • Processes and procedures for lifecycle management of all technology compliance policies, standards and frameworks in Nestlé, including exceptions management 
  • Responsible for defining maintaining an integrated risk, compliance & security index 
  • Support the execution of IS/IT audit activities and requests 
  • Work with IS/IT teams and internal and external Auditors, tracking and following up all IS/IT audits, internal review or regulatory findings as corrective & preventative actions through the management systems 
  • Validate root causes have been addressed prior to closure of corrective & preventative actions  
  • Support IS/IT teams in ensuring the required levels of documentation and evidence to support audit and regulatory requirements 
  • Ensure all IS/IT teams are trained in identifying and reporting Security, Risk & Compliance incidents and events to meet internal & external requirements 
  • Drive root cause analysis across audits and reviews to identify and document required improvements in tools, processes and documentation 
  • Support IS/IT teams in the execution and follow-up of Partner Compliance Audits (including cloud) 
  • Perform, and/or coach to ensure consistency, risk assessment according to agreed Risk & Compliance framework in collaboration with IS/IT teams 
  • Coach & train IS/IT teams on the implementation and management of controls 
  • Train IS/IT teams on standards, policies, frameworks and regulatory requirements 
What will make you successful

 

  • 8+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs - thereof >4 years in a senior leadership role 
  • Undergraduate degree in the field of computer science, law, IS/IT Security, Quality Management or business administration; graduate degree in one these fields preferred 
  • Industry-related compliance, risk or security management certification is preferred 
  • Demonstrated ability to apply IS/IT-related knowledge and experience in solving compliance issues (preferable in the HR area) 
  • Experience developing and submitting IS/IT audit and compliance reports 
  • Excellent knowledge of technology environments (preferable in the HR area) 
  • Demonstrated understanding of cloud services, data processing, hardware platforms, enterprise software applications and outsourced systems 
  • Experience with effective communication at different levels in the organization and in English 
  • Experience having worked in a global environment and with virtual teams 

 

Show us that you are an enthusiastic, curious, fast learner and team player person who is used to work with agile practices. Your ability to be flexible, self-motivated and your willingness to deliver on a deadline will set you apart among the other candidates. Please don’t hesitate and apply in English at www.nestle.com/jobs. We are excited to hear from you! 

 

The Nestlé Group is the world’s largest food and beverage company with 89.8 billion Swiss Francs in sales in 2017. It is present in 189 countries around the world, has 413 factories and its 323,000 employees are committed to Nestlé’s purpose of enhancing quality of life and contributing to a healthier future. Nestlé offers a wide portfolio of products and services for people and their pets throughout their lives. Its more than 2000 brands range from global icons like Nescafé or Nespresso to local favourites. Company performance is driven by its Nutrition, Health and Wellness strategy. Nestlé is based in the Swiss town of Vevey where it was founded more than 150 years ago. Learn more about our Group and reasons to join us on www.nestle.com. 

About IT in Nestlé

 

We are a multicultural and diverse team of IT professionals driving the biggest IT operations landscape and digital transformation of the FMCG industry. We work with leading technologies and solutions to enable Nestle to engage with millions of consumers worldwide. We transform how we use data with machine learning, advanced analytics, and introduce automation to drive industry 4.0 opportunities in areas including supply chain and manufacturing.

 

We look for people who are curious, courageous, innovative, collaborative and passionate about new technologies. We want to hear from people who have the courage to challenge; believe the only way of moving forward is by doing and who look for solutions to improve the lives of our consumers.

 

If this is you and you want to make an impact globally, join us and there will be no limits to your career.

#makeITpossible at Nestlé

Position Snapshot

 

  • Location: Global IT Hub Barcelona
  • Full-time 
  • Bachelor’s Degree  
  • 8+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs
Position Summary

 

In order to complete our IT Human Resources Department, we are currently looking for a Risk and Compliance Specialist. 

 

In this position, you will be responsible for implementing, coaching and supporting an integrated risk, compliance and security management systems in accordance to the business risk appetite. The management systems enable the IS/IT teams globally to identify, document, measure and address its compliance requirements, including but not limited to data protection, privacy, 3rd party/vendor, information security and procurement. The Risk and Compliance Specialist's responsibilities include ensuring the teams are able to drive all their risk, compliance and security requirements through the management system, ensuring compliant and secure products & platforms meeting the business risk appetite. To enable this, you will be responsible for providing the tools, processes and frameworks to support IS/IT Compliance in Nestle and for conducting IS/IT controls testing. 

Key Responsibilities

 

  • Support risk identification and control mapping for all solutions and processes in product/product groups and other IS/IT teams using the Nestlé Security, Risk & Compliance framework and management system 
  • Responsible for conducting controls testing, management system reviews and reporting to assess the IS/IT compliance and management system 
  • Support all IS/IT teams in identifying and applying Internal and External (legal, regulatory and commercial) compliance requirements 
  • Coach and support teams in managing Risk, Compliance & Security gaps through documented corrective & preventative actions, tracked through the management system 
  • Provide guidance and support to IS/IT teams in implementing by design the required IS/IT compliance in their solutions to meet the desired level of compliance maturity and risk appetite in the Nestlé Framework  
  • Advise on and promote importance of IS/IT related Risk, Compliance and Security outside the IS/IT community 
  • Implement tools and process to support an integrated Risk, Compliance & Security Framework (including regulatory requirements PCI, GDPR Quality etc.) 
  • Maintain the management system through continuous review and evaluation of external frameworks and standards (e.g., ISO27001, COBIT, NIST, ITIL etc.) 
  • Collaborate with Audit, IS/IT & NBE support functions to ensure one source of truth through integration of reporting corrective & preventative actions and audit findings  
  • Processes and procedures for lifecycle management of all technology compliance policies, standards and frameworks in Nestlé, including exceptions management 
  • Responsible for defining maintaining an integrated risk, compliance & security index 
  • Support the execution of IS/IT audit activities and requests 
  • Work with IS/IT teams and internal and external Auditors, tracking and following up all IS/IT audits, internal review or regulatory findings as corrective & preventative actions through the management systems 
  • Validate root causes have been addressed prior to closure of corrective & preventative actions  
  • Support IS/IT teams in ensuring the required levels of documentation and evidence to support audit and regulatory requirements 
  • Ensure all IS/IT teams are trained in identifying and reporting Security, Risk & Compliance incidents and events to meet internal & external requirements 
  • Drive root cause analysis across audits and reviews to identify and document required improvements in tools, processes and documentation 
  • Support IS/IT teams in the execution and follow-up of Partner Compliance Audits (including cloud) 
  • Perform, and/or coach to ensure consistency, risk assessment according to agreed Risk & Compliance framework in collaboration with IS/IT teams 
  • Coach & train IS/IT teams on the implementation and management of controls 
  • Train IS/IT teams on standards, policies, frameworks and regulatory requirements 
What will make you successful

 

  • 8+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs - thereof >4 years in a senior leadership role 
  • Undergraduate degree in the field of computer science, law, IS/IT Security, Quality Management or business administration; graduate degree in one these fields preferred 
  • Industry-related compliance, risk or security management certification is preferred 
  • Demonstrated ability to apply IS/IT-related knowledge and experience in solving compliance issues (preferable in the HR area) 
  • Experience developing and submitting IS/IT audit and compliance reports 
  • Excellent knowledge of technology environments (preferable in the HR area) 
  • Demonstrated understanding of cloud services, data processing, hardware platforms, enterprise software applications and outsourced systems 
  • Experience with effective communication at different levels in the organization and in English 
  • Experience having worked in a global environment and with virtual teams 

 

Show us that you are an enthusiastic, curious, fast learner and team player person who is used to work with agile practices. Your ability to be flexible, self-motivated and your willingness to deliver on a deadline will set you apart among the other candidates. Please don’t hesitate and apply in English at www.nestle.com/jobs. We are excited to hear from you! 

 

The Nestlé Group is the world’s largest food and beverage company with 89.8 billion Swiss Francs in sales in 2017. It is present in 189 countries around the world, has 413 factories and its 323,000 employees are committed to Nestlé’s purpose of enhancing quality of life and contributing to a healthier future. Nestlé offers a wide portfolio of products and services for people and their pets throughout their lives. Its more than 2000 brands range from global icons like Nescafé or Nespresso to local favourites. Company performance is driven by its Nutrition, Health and Wellness strategy. Nestlé is based in the Swiss town of Vevey where it was founded more than 150 years ago. Learn more about our Group and reasons to join us on www.nestle.com. 

Apply now »