IT Risk & Compliance (SOX) Lead

Are you looking for new challenges and personal growth within Coca-Cola Europacific Partners Indonesia? Then we have a great opportunity for you.

Please attach an updated CV with your application.

The primary purpose of this role is to ensure the organization’s IT systems and processes comply with CCEP’s internal policies and procedures and that we are aligned to Sarbanes-Oxley Act (SOX) requirements. The professional will be responsible for developing, implementing, and maintaining IT security policies, procedures and controls to safeguard the integrity, confidentiality, and availability of our information assets. This role involves conducting regular 2nd line review activities such as; risk assessments/audits and compliance checks to identify and mitigate potential security threats and vulnerabilities. The professional will collaborate with various departments to ensure that all IT-related activities align with regulatory standards and best practices, thereby supporting the organization’s overall governance, risk management, and compliance objectives.

Key responsibilities:

Ensuring that our IT system landscape is managed in line with our control framework, policies and procedures and our SOX requirements as well as our other compliance frameworks

Ensuring that future system integrations as part of our transformational projects are CCEP and SOX compliant.

Identifying opportunities and improvements and drive for change to implement improvement processes and improved controls

Engaging and supporting the IT organization and business to align priorities and plans with key business objectives while ensuring that our key risks and controls are addressed

Acting as an empowered representative of the information security office during IT planning initiatives to ensure that security measures are incorporated into strategic IT plans and that service expectations are clearly defined

Responsible for working with business and IT stakeholders to balance real-world risks with business drivers such as speed, agility, flexibility and performance. As such, the candidate is responsible to build strong relationships at all levels and across all business units and organizations, and understand business imperatives

Experience (On the Job)

Overall, extensive hands-on experience with SOX compliance, including conducting risk assessments, project improvements and implementing controls, including but not limited to:

Monitoring of IT General control initiation, execution, quality and compliance with (different) requirements

Conducting and managing SOX compliance audits, including IT General Controls (ITGC) and application controls

Performing risk assessments to identify potential security threats and vulnerabilities

Developing and implementing remediating and mitigating strategies to address identified risks

Working closely with various departments, including finance, internal audit, and IT, to ensure alignment with SOX compliance requirements

Leading the transformation and transition of control ownership to the appropriate departments (structure, setup and support transition)

Educating control owner on effective compliance processes and the importance of maintaining robust controls

Maintaining comprehensive documentation of compliance activities, audit results and risk assessments

Reporting to senior management and external auditors

Strong understanding of business applications, including ERP and financial systems

Qualifications

At minimum, 6-8 years of experience in IT Security, Compliance or audit roles with relevant SOX auditing and/or Risk Management experience

Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.

Advanced degrees (e.g., Master’s) in relevant fields is a pre

Relevant and recent working experience with a BIG-4 firm is a pre

Hands-on SAP (ECC, GRC, HANA) experience in running detailed analysis through SAP default t-codes, programs or reports

Experience with management and implementation of information security risk management standards e.g. NIST or ISO

Certifications such as ‘Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Sarbanes-Oxley Expert (CSOE) or similar

What's your expected monthly basic salary?

Which of the following types of qualifications do you have?

How many years' experience do you have as a SAP Governance Risk and Compliance Consultant?

Manufacturing, Transport & Logistics More than 10,000 employees

PENGUMUMAN :Coca Cola Europacific Partners Indonesia tidak pernah memungut biaya apapun dalam proses rekrutmen.Coca Cola Europacific Partners Indonesia tidak pernah bekerja sama dengan travel agent / biro perjalanan tertentu dalam proses rekrutmen.Coca-Cola Europacific Partners is one of the leading consumer goods companies in the world. We make, move, and sell some the world’s most loved brands – serving 600 million consumers and helping 1.75 million customers across 29 countries grow. We combine the strength and scale of a large, multi-national business with an expert, local knowledge of the customers we serve and communities we support.Coca-Cola Europacific Partners Indonesia operates eight manufacturing facilities in Sumatra, Java, and Bali employs a direct workforce of more than 8,000 people and distributes a million cases of refreshing drinks to more than 500,000 outlets across the nation. We are also committed to make a distinct and positive contribution to the areas we operate, by running various initiative, such as: Bali Beach Clean Up, support Green School (Adiwiyata School) program, Coca-Cola Forest, and Waste Bank Development Program in several cities.Coca-Cola Europacific Partners is listed on Euronext Amsterdam, the New York Stock Exchange, London Stock Exchange and on the Spanish Stock Exchanges, trading under the symbol CCEP. For more information about CCEP, please visit www.cocacolaep.com & follow CCEP on Twitter at @CCEP.

PENGUMUMAN :Coca Cola Europacific Partners Indonesia tidak pernah memungut biaya apapun dalam proses rekrutmen.Coca Cola Europacific Partners Indonesia tidak pernah bekerja sama dengan travel agent / biro perjalanan tertentu dalam proses rekrutmen.Coca-Cola Europacific Partners is one of the leading consumer goods companies in the world. We make, move, and sell some the world’s most loved brands – serving 600 million consumers and helping 1.75 million customers across 29 countries grow. We combine the strength and scale of a large, multi-national business with an expert, local knowledge of the customers we serve and communities we support.Coca-Cola Europacific Partners Indonesia operates eight manufacturing facilities in Sumatra, Java, and Bali employs a direct workforce of more than 8,000 people and distributes a million cases of refreshing drinks to more than 500,000 outlets across the nation. We are also committed to make a distinct and positive contribution to the areas we operate, by running various initiative, such as: Bali Beach Clean Up, support Green School (Adiwiyata School) program, Coca-Cola Forest, and Waste Bank Development Program in several cities.Coca-Cola Europacific Partners is listed on Euronext Amsterdam, the New York Stock Exchange, London Stock Exchange and on the Spanish Stock Exchanges, trading under the symbol CCEP. For more information about CCEP, please visit www.cocacolaep.com & follow CCEP on Twitter at @CCEP.