IS / IT Risk&Compliance Senior Specialist

Press Tab to Move to Skip to Content Link

We are looking for a Senior Risk and Compliance Specialist to join our IT Marketing, Sales, and eCommerce (MSE) stream in Barcelona.

Position Snapshot :

• Type of Contract: Permanent
• Function and Stream: IT Marketing, Sales, and eCommerce
• Type of Work: Hybrid
• Work Language: Fluent Business English

The Role :

The Senior Risk and Compliance Specialist will maintain, support, and improve the compliance and security management systems (ISMS) within our Product-based organization. This role is part of the transversal Operations team but will work closely with the Security Stream and collaborate with Markets as needed.

The security management systems help global IT teams identify, document, measure, and address compliance and security requirements, including data protection, privacy, third-party/vendor security, information security, and procurement.

Operating on a risk-based approach, the specialist will ensure product teams can develop appropriate risk treatment plans and verify whether existing controls are sufficient or require additional measures.

You will collaborate with security teams to provide tools, processes, and frameworks supporting IT Security and Compliance at Nestlé.

What You’ll Do :

• Implement, coach, report, and continuously improve Risk, Compliance & Security through Nestlé’s ISMS.
• Support the implementation of Compliance Frameworks for new products (e.g., ISMS RAs, Archer Controls, Compliance Enabler Network SPOCs).
• Assist in risk identification and controls mapping across solutions and processes using Nestlé’s frameworks and management systems.
• Coach teams in identifying and managing Risks, Compliance & Security gaps, tracking actions via Archer.
• Monitor security and compliance KPIs, taking action as needed.
• Lead internal and external audits, coordinating with impacted teams.
• Maintain ISMS documentation and facilitate Risk Assessment exercises following ISMS standards.
• Act as the security-related ambassador within the stream, serving as the point of contact for security and compliance queries.
• Promote best practices and champion changes towards more effective operations in security and compliance.

We Offer You :

More than just a job, we prioritize people and support your growth:

• Competitive salary, comprehensive social benefits, including a top-tier pension plan, flexible remuneration, health insurance, restaurant card, and mobility plan.
• Ongoing training and career development opportunities.
• Hybrid work environment with flexible scheduling; our campus includes amenities like a medical center, canteen, and social areas.
• Recreation and volunteering activities such as yoga, Zumba, and more.

Join Nestlé’s global IT team, drive innovation, and leverage cutting-edge technology to seize digital opportunities. Grow your career in a dynamic environment working with international partners to deliver integrated tech solutions!

What Will Make You a Great Fit :

• 7+ years in risk management, compliance, information security, or related IT roles.
• Degree in computer science, law, IT Security, Quality Management, or Business Administration.
• Industry certifications in compliance, risk, or security are preferred.
• Experience in conducting and facilitating Risk Assessments.
• Familiarity with audits (internal and external) and effective audit management.
• Proven ability to address compliance issues using IT expertise.
• Experience in preparing and submitting IT audit and compliance reports.
• Strong communication skills in English at various organizational levels.
• Experience working in a global, virtual team environment.

We support your personal growth with tailored development solutions, even if your profile isn't an exact match.

Application process:

1. Apply via our portal.
2. Submit your CV.
3. We contact suitable candidates.
4. Interviews (HR, technical, stakeholders).
5. Receive feedback.
6. Receive an offer.
7. Complete location-specific checks and pre-onboarding.

About Nestlé: We are the world's largest food and beverage company, with brands like KitKat, Nescafé, Maggi, and Purina. With around 275,000 employees and CHF 94.4 billion in sales (2022), we operate in 77 countries with 344 factories. Our values emphasize respect—toward ourselves, others, diversity, and the future. Learn more at our website.

We celebrate diversity across gender, age, ethnicity, nationality, sexual orientation, social background, religion, and disability.