IS / IT Risk&Compliance Senior Specialist

Press Tab to Move to Skip to Content Link

We are looking for a Senior Risk and Compliance Specialist to join our IT Marketing, Sales, and eCommerce (MSE) stream in Barcelona.

Position Snapshot :

• Type of Contract : Permanent.
• Function and Stream : IT Marketing, Sales, and eCommerce.
• Type of Work : Hybrid.
• Work Language : Fluent Business English.

The Role :

We are seeking a Senior Risk and Compliance Specialist responsible for maintaining, supporting, and improving our compliance and security management systems (ISMS) within our Product-based organization. The role is part of the transversal Operations team, working closely with the Security Stream and collaborating with Markets as needed.

The security management systems help global IT teams identify, document, measure, and address compliance and security requirements, including data protection, privacy, third-party/vendor management, information security, and procurement.

Operating with a risk-based approach, the specialist will ensure product teams develop appropriate risk treatment plans and verify that risks are adequately managed through existing controls or additional measures.

You will collaborate with security teams to provide tools, processes, and frameworks supporting IT Security and Compliance at Nestlé.

What You’ll Do :

• Implement, coach, report, and improve Risk, Compliance & Security through the Nestlé Compliance and Information Security Management System.
• Support the implementation of Compliance Frameworks for new products (e.g., ISMS RAs, Archer Controls, Compliance Enabler Network SPOCs).
• Assist in risk identification and controls mapping across solutions and processes using Nestlé’s frameworks and systems.
• Coach teams to identify and manage Risk, Compliance & Security gaps, tracking actions via Archer.
• Monitor security and compliance KPIs and coordinate actions with product and IT teams.
• Lead internal and external audits, preparing and coordinating involved teams.
• Maintain ISMS documentation and facilitate Risk Assessment exercises following ISMS standards.
• Serve as the security-related ambassador within the stream, acting as the main contact for questions or concerns regarding Security and Compliance.
• Promote awareness and drive change towards more effective operational models in security and compliance.

We Offer You :

More than just a job, we prioritize our people and support your growth:

• Competitive salary and comprehensive benefits package, including pension plans, health insurance, restaurant card, and mobility plan.
• Ongoing training and career development opportunities.
• Hybrid work environment with a state-of-the-art, dog-friendly campus featuring amenities like a medical center, canteen, and co-creation spaces.
• Recreational activities such as yoga and Zumba, along with volunteering opportunities.

Join our global IT team at Nestlé, where innovation and cutting-edge technology drive digital transformation. Collaborate worldwide to deliver integrated solutions and grow professionally in a dynamic environment.

What Will Make You a Great Fit :

• 7+ years of experience in risk management, compliance, information security, or related IT roles.
• Degree in computer science, law, IT Security, Quality Management, or business administration.
• Industry-related certifications in compliance, risk, or security are preferred.
• Experience in conducting and facilitating Risk Assessments.
• Familiarity with audits (internal and external) and effective audit management.
• Proven ability to apply IT knowledge to resolve compliance issues.
• Experience preparing IT audit and compliance reports.
• Excellent communication skills at all organizational levels in English.
• Experience working in a global, virtual team environment.

Not a perfect match? No worries! Nestlé supports your personal development with tailored growth solutions.

Application process:

1. Apply through our job portal.
2. Submit your CV.
3. We will contact suitable candidates.
4. Attend interviews with HR, the hiring team, and stakeholders.
5. Receive feedback.
6. Receive an offer.
7. Complete location-specific checks and pre-onboarding.

About Nestlé: We are the world's largest food and beverage company, with brands like KitKat, Nescafé, Maggi, and Purina. With around 275,000 employees, we aim to enhance quality of life and foster a healthier future. Our values emphasize respect for ourselves, others, diversity, and the future. In 2022, we achieved CHF 94.4 billion in sales, operating 344 factories across 77 countries. Learn more at our website.

We promote diversity and inclusion across gender, age, ethnicity, nationality, sexual orientation, social background, religion, and disability.