IS / IT Risk&Compliance Senior Specialist

Press Tab to Move to Skip to Content Link

We are looking for a Senior Risk and Compliance Specialist to join our IT Marketing sales and eCommerce (MSE) stream in Barcelona.

Position Snapshot :

• Type of Contract: Permanent
• Function and Stream: IT Marketing, Sales and eCommerce
• Type of Work: Hybrid
• Work Language: Fluent Business English

The Role :

The Senior Risk and Compliance Specialist will maintain, support, and improve our compliance and security management systems (ISMS) within our Product-based organization. This role is part of the transversal Operations team, working closely with the Security Stream and collaborating with Markets as needed.

The security management systems help IT teams globally to identify, document, measure, and address compliance and security requirements, including data protection, privacy, third-party/vendor management, information security, and procurement.

Responsibilities include enabling product teams to develop risk treatment plans, verifying controls, and collaborating with security teams to provide tools and frameworks to support IT Security and Compliance at Nestlé.

What You’ll Do :

• Implement, coach, report on, and improve Risk, Compliance & Security processes through the Nestlé Compliance and Information Security management system.
• Support the implementation of Compliance Frameworks for new Products, such as ISMS RAs, Archer Controls, and Compliance Enabler Network SPOCs.
• Assist in risk identification and control mapping across solutions and processes using Nestlé's frameworks and systems.
• Coach teams to identify and manage risks, track corrective actions, and ensure controls are effective.
• Monitor security and compliance KPIs and take corrective actions as needed.
• Lead internal and external audits, coordinating with relevant teams.
• Maintain ISMS documentation and facilitate Risk Assessments following ISMS frameworks.
• Serve as the security-related point of contact within product groups and IT teams, promoting awareness and best practices.
• Champion change towards more efficient operational models in security and compliance.

We Offer You :

More than just a job, we prioritize our people and support your growth:

• Competitive salary, comprehensive social benefits, including pension plans, health insurance, restaurant card, mobility plan, etc.
• Ongoing training and career development opportunities.
• Hybrid working environment, state-of-the-art campus with amenities and recreational activities.

Join our global IT team at Nestlé, driving innovation and leveraging cutting-edge technologies to seize digital opportunities. Grow professionally in a dynamic, impactful environment with worldwide collaboration!

What Will Make You a Great Fit :

• 7+ years of experience in risk management, compliance, information security, or related IT roles.
• Graduate degree in computer science, law, IT Security, Quality Management, or business administration.
• Industry-related certifications in compliance, risk, or security are preferred.
• Experience with Risk Assessments, audits, and developing IT audit and compliance reports.
• Effective communication skills in English and experience working in a global, virtual environment.

Not a perfect match? No worries! Nestlé supports your growth with tailored development solutions.

Application Process :

1. Apply via our job portal.
2. Submit your CV.
3. We contact suitable candidates.
4. Attend interviews with HR, the hiring team, and stakeholders.
5. Receive feedback.
6. Receive an offer.
7. Complete location-dependent checks and pre-onboarding.

We are Nestlé, the world's largest food and beverage company, with brands like KitKat, Nescafé, Maggi, and Purina. With approximately 275,000 employees, our purpose is to enhance quality of life and promote a healthier future. We value respect, diversity, and inclusion. Visit us at [website].

We encourage diversity across gender, age, ethnicity, nationality, sexual orientation, social background, religion, and disability.

J-18808-Ljbffr