IS / IT Risk&Compliance Senior Specialist

Press Tab to Move to Skip to Content Link

We are looking for a Senior Risk and Compliance Specialist to join our IT Marketing sales and eCommerce (MSE) stream in Barcelona.

Position Snapshot :

• Type of Contract : Permanent
• Function and Stream : IT Marketing, Sales and eCommerce
• Type of Work : Hybrid
• Work Language : Fluent Business English

The Role :

We are seeking a Senior Risk and Compliance Specialist responsible for maintaining, supporting, and improving our current compliance and security management systems (ISMS) within our product-based organization. The role is part of the transversal Operations team, working closely with the Security Stream and collaborating with Markets as needed.

The security management systems enable global IT teams to identify, document, measure, and address compliance and security requirements, including data protection, privacy, third-party / vendor management, information security, and procurement.

Operating on a risk-based approach, the specialist will ensure product teams develop appropriate risk treatment plans and verify whether existing controls sufficiently cover identified risks, collaborating with product teams and security teams to provide tools, processes, and frameworks for IT Security and Compliance.

What You’ll Do :

• Implement, coach, report, and improve Risk, Compliance & Security through the Nestlé Compliance and Information Security management system.
• Support the implementation of Compliance Frameworks for new products (e.g., ISMS RAs, Archer Controls, Compliance Enabler Network SPOCs).
• Assist in risk identification and controls mapping across solutions and processes within product groups and IT teams.
• Coach teams to identify and manage Risk, Compliance & Security gaps, tracking actions via the risk management system (Archer).
• Track security and compliance KPIs and coordinate actions with relevant teams as needed.
• Lead and coordinate internal and external audits, including preparing impacted teams.
• Maintain ISMS documentation and facilitate Risk Assessment exercises following the ISMS framework.
• Serve as the security-related ambassador within the stream, acting as the point of contact for security and compliance questions.
• Champion change towards more efficient operational models in security and compliance.

We Offer You :

More than just a job—people first! We offer :

• Competitive salary and comprehensive benefits, including pension plans, health insurance, restaurant card, mobility plan, and tax-advantaged benefits.
• Personal and professional growth through ongoing training and career development.
• Hybrid working environment with flexible schedules, state-of-the-art campus amenities, and a dog-friendly policy.
• Recreational activities like yoga, Zumba, and volunteering opportunities.

Join our global IT team at Nestlé, driving innovation and leveraging cutting-edge technologies in a dynamic environment, collaborating worldwide to deliver integrated solutions!

What Will Make You a Great Fit :

• 7+ years of experience in risk management, compliance, information security, or related IT roles.
• Graduate degree in computer science, law, IT security, quality management, or business administration.
• Industry-related certifications in compliance, risk, or security are preferred.
• Experience conducting and facilitating Risk Assessments.
• Experience with audits (internal and external).
• Ability to apply IT knowledge to resolve compliance issues.
• Experience preparing IT audit and compliance reports.
• Effective communication skills in English at various organizational levels.
• Experience working in a global environment with virtual teams.

Not a perfect match? No worries! Nestlé supports your personal growth with tailored development solutions.

Application Journey :

• Apply via our job portal.
• We contact suitable candidates.
• Interviews (HR, hiring team, stakeholders).
• Receive feedback.
• Receive an offer.
• Complete location-dependent checks and pre-onboarding.

We are Nestlé, a leading food and beverage company with brands like KitKat, Nescafé, Maggi, and Purina. With about 275,000 employees, we aim to enhance quality of life and promote a healthier future. Our values emphasize respect for all and diversity. In 2022, we achieved sales of CHF 94.4 billion, operating 344 factories in 77 countries. Learn more at our website.

We encourage applications from diverse backgrounds across gender, age, ethnicity, nationality, sexual orientation, social background, religion, and disability.

J-18808-Ljbffr

J-18808-Ljbffr