Sr. Risk & Compliance Specialist

We are looking for a Risk and Compliance Specialist to join our IT Workforce 360 stream in Barcelona.

Position Snapshot :

• Type of Contract : Permanent
• Function and Stream : IT Workforce 360 stream
• Type of Work : Hybrid
• Work Language : Fluent Business English

The Role :

Under the supervision of her/his primary Community of Practice Lead and IT Service Management (ITSM) / Digital Employee Experience (DEX) Product Group Manager based in Barcelona, the Risk and Compliance Specialist is responsible for implementing, coaching, and supporting integrated risk, compliance, and security management systems in line with the business risk appetite.

The management systems enable global IT teams to identify, document, measure, and address compliance requirements, including data protection, privacy, third-party/vendor management, information security, and procurement.

The specialist's responsibilities include ensuring teams can manage their risks, compliance, and security through these systems, ensuring products and platforms are compliant and secure, meeting the business's risk appetite.

In collaboration with security teams, the specialist provides tools, processes, and frameworks to support IT compliance within Nestlé and conducts IT controls testing. They are also an active member of the ITSM / DEX Leadership Team.

What You’ll Do :

• Implement, coach, and report on Risk, Compliance & Security via the Nestlé Compliance and Information Security management system within IT Service Management / DEX.
• Support risk identification and controls mapping across solutions and processes using the Nestlé Security, Risk & Compliance framework.
• Conduct controls testing, management system reviews, and reporting to assess IT compliance.
• Assist IT teams in identifying and applying legal, regulatory, and commercial compliance requirements.
• Support the implementation of compliance frameworks for new products through advisory and coaching roles.
• Manage the ITSM / DEX Compliance Enablers network, including S&C cascade and meetings.
• Coach teams in managing risks, compliance, and security gaps with documented corrective actions.
• Guide IT teams in designing solutions with built-in compliance to meet risk appetite and maturity levels.
• Track compliance metrics effectively.

We Offer You :

• More than a job—people first, personal growth, and professional development.
• Competitive salary, social benefits, pension plans, flexible remuneration (health insurance, restaurant card, mobility plan).
• Ongoing training, career opportunities, and a dynamic, supportive environment.
• Hybrid work setup, state-of-the-art campus amenities, wellness activities, and volunteering opportunities.

Join our global IT team at Nestlé, driving innovation and leveraging technologies to seize digital opportunities. Grow in a vibrant, impactful environment collaborating worldwide to deliver integrated solutions!

What Will Make You a Great Fit :

• 5+ years in risk management, compliance, information security, or IT roles.
• Degree in computer science, law, IT security, quality management, or business administration; a graduate degree is a plus.
• Industry-related certifications in compliance, risk, or security preferred.
• Experience with ISMS risk assessments, ITSM/DEX product groups, and services is advantageous.
• Proven ability to resolve compliance issues using IT knowledge.
• Experience in preparing IT audit and compliance reports.
• Excellent communication skills in English and experience working in global, virtual teams.

Not a perfect match? Nestlé supports your growth with tailored development solutions.

Application Process :

• Apply via our portal with your CV.
• Relevant applicants will be contacted.
• Interviews with HR, the hiring team, and stakeholders.
• Feedback and job offer.

Location Checks and Pre-onboarding :

We are Nestlé, the world's largest food and beverage company, with brands like KitKat, Nescafé, Maggi, and Purina. With approximately 275,000 employees, we aim to enhance life quality and contribute to a healthier future. Our values emphasize respect for all and diversity. In 2022, our sales exceeded CHF 94.4 billion, with operations in 77 countries. We encourage diversity across gender, age, ethnicity, nationality, sexual orientation, social background, religion, and disability.