IS / IT Risk&Compliance Senior Specialist

Press Tab to Move to Skip to Content Link

We are looking for a Senior Risk and Compliance Specialist to join our IT Marketing sales and eCommerce (MSE) stream in Barcelona.

Position Snapshot :

• Type of Contract: Permanent
• Function and Stream: IT Marketing, Sales and eCommerce
• Type of Work: Hybrid
• Work Language: Fluent Business English

The Role :

We seek a Senior Risk and Compliance Specialist responsible for maintaining, supporting, and improving our compliance and security management systems (ISMS) within our Product-based organization. The role is part of the transversal Operations team, working closely with the Security Stream and collaborating with Markets as needed.

The security management systems help IT teams globally to identify, document, measure, and address compliance and security requirements, including data protection, privacy, third-party/vendor security, information security, and procurement.

Operating on a risk-based approach, the specialist will ensure product teams can develop appropriate risk treatment plans and collaborate to verify whether risks are adequately covered by controls or if additional measures are necessary.

In collaboration with security teams, you will provide tools, processes, and frameworks to support IT Security and Compliance at Nestlé.

What You’ll Do :

• Implement, coach, report, and improve Risk, Compliance & Security via Nestlé's systems.
• Support the implementation of Compliance Frameworks for new Products.
• Assist in risk identification and controls mapping across solutions and processes.
• Coach teams in managing Risk, Compliance & Security gaps, tracking actions in Archer.
• Monitor security and compliance KPIs, taking action when necessary.
• Lead audits and reviews, coordinating impacted teams.
• Maintain ISMS documentation and conduct Risk Assessments.
• Serve as the security-related point of contact within product groups and IT teams.
• Promote awareness and drive change towards more efficient operations in security and compliance.

We Offer You :

More than just a job: we prioritize people and your growth, offering benefits like competitive salary, social benefits, pension plans, flexible remuneration, health insurance, and more.

• Opportunities for personal and professional development.
• Hybrid work environment with a state-of-the-art campus.
• Recreation and volunteering activities.

Join our global IT team at Nestlé, driving innovation and leveraging cutting-edge technologies to seize digital opportunities. Grow in a dynamic environment, collaborating worldwide to deliver integrated tech solutions!

What Will Make You a Great Fit :

• 7+ years in risk management, compliance, security, or IT roles.
• Degree in computer science, law, IT Security, Quality Management, or Business Administration.
• Industry-related certifications preferred.
• Experience in Risk Assessments, audits, and compliance reporting.
• Strong communication skills in English and experience working in a global, virtual environment.

No perfect match? No worries! Nestlé supports your growth with tailored development solutions.

Application Journey :

1. Apply via our portal.
2. Submit your CV.
3. We contact suitable candidates.
4. Interviews with HR, the hiring team, and stakeholders.
5. Receive feedback and an offer.
6. Complete location-specific checks and pre-onboarding.

We are Nestlé, a leading food and beverage company with brands like KitKat, Nescafé, Maggi, and Purina. With around 275,000 employees, we aim to enhance quality of life and promote health. Our values emphasize respect for all and our future. In 2022, we achieved over CHF 94.4 billion in sales, operating in 77 countries with 344 factories. Learn more at our website.

We celebrate diversity across gender, age, ethnicity, nationality, sexual orientation, social background, religion, and disability.

J-18808-Ljbffr