IS / IT Risk&Compliance Senior Specialist

Press Tab to Move to Skip to Content Link

We are looking for a Senior Risk and Compliance Specialist to join our IT Marketing sales and eCommerce (MSE) stream in Barcelona.

Position Snapshot :

• Type of Contract: Permanent
• Function and Stream: IT Marketing, Sales and eCommerce
• Type of Work: Hybrid
• Work Language: Fluent Business English

The Role :

We are seeking a Senior Risk and Compliance Specialist responsible for maintaining, supporting, and improving the compliance and security management systems (ISMS) in our product-based organization. The role is part of the transversal Operations team, working closely with the Security Stream and collaborating with Markets as needed.

The security management systems enable global IT teams to identify, document, measure, and address compliance and security requirements, including data protection, privacy, third-party/vendor management, information security, and procurement.

Using a risk-based approach, the specialist will ensure product teams develop appropriate risk treatment plans and verify that risks are adequately managed through existing controls or additional measures.

In collaboration with security teams, you will provide tools, processes, and frameworks to support IT Security and Compliance at Nestlé.

What You’ll Do :

• Implement, coach, report, and improve Risk, Compliance & Security via the Nestlé Compliance and Information Security management system.
• Support the implementation of Compliance Frameworks for new products (e.g., ISMS RAs, Archer Controls, Compliance Enabler Network SPOCs).
• Assist in risk identification and controls mapping across solutions and processes in product groups and IT teams using Nestlé’s frameworks.
• Coach teams in identifying and managing Risk, Compliance & Security gaps, tracking actions through the risk management system (Archer).
• Monitor security and compliance KPIs and coordinate actions with relevant teams.
• Lead audits and reviews, preparing and coordinating with impacted teams.
• Maintain ISMS documentation and facilitate Risk Assessment exercises following ISMS frameworks.
• Serve as the security-related point of contact within product groups and IT teams, promoting awareness and best practices.
• Champion continuous improvement and adaptation of security and compliance practices.

We Offer You :

More than a job, we prioritize people and your growth:

• Competitive salary and social benefits, including top-tier pension plans, health insurance, restaurant card, mobility plan, etc.
• Ongoing training and career development opportunities.
• Hybrid work environment with flexible schemes; our campus is dog-friendly, with amenities like a medical center, canteen, and co-creation spaces.
• Recreational activities such as yoga, Zumba, and volunteering initiatives.

Join our global IT team at Nestlé, driving innovation and leveraging cutting-edge technologies to seize digital opportunities, collaborating worldwide to deliver integrated solutions!

What Will Make You a Great Fit :

• 7+ years of experience in risk management, compliance, information security, and IT roles.
• Degree in computer science, law, IT security, quality management, or business administration.
• Industry-related certification in compliance, risk, or security management preferred.
• Experience in conducting and facilitating Risk Assessments.
• Familiarity with audits (internal and external) and effective audit management.
• Ability to apply IT knowledge to solve compliance issues.
• Experience preparing and submitting IT audit and compliance reports.
• Strong communication skills in English and experience working in a global, virtual environment.

We support your personal growth with tailored development solutions if your profile isn't a perfect match.

Application Process :

1. Apply via our job portal.
2. Submit your CV.
3. We contact suitable candidates.
4. Interviews with HR, the hiring team, and stakeholders.
5. Receive feedback.
6. Offer extension.
7. Location-specific checks and pre-onboarding.

About Nestlé: The world's largest food and beverage company, with brands like KitKat, Nescafé, Maggi, and Purina, employing around 275,000 people worldwide. Committed to improving quality of life and fostering diversity and respect. Visit us to learn more.