Nestle

ISIT Risk and Compliance Specialist

Nestle

full-time

Posted on:

Location Type: Hybrid

Location: MontrealCanada

Visit company website

Explore more

AI Apply
Apply

Salary

💰 CA$71,000 - CA$82,500 per year

About the role

  • Responsible for implementing, coaching and reporting on Governance, Risk, Compliance & Security through the Nestlé Compliance and Information Security management system within IS/IT:
  • Supports risk identification and controls mapping for all solutions and processes in IS/IT team s using the Nestlé Security, Risk & Compliance framework and management system
  • Responsible for conducting system and reporting reviews to assess the IS/IT security compliance index
  • Supports teams in identifying and applying Internal and External (legal, regulatory and commercial) compliance requirements
  • Coaches and supports teams in managing Risk, Compliance & Security gaps through documented corrective & preventative actions, tracked through the management system
  • Advises on and promotes the importance of IS/IT related Risk, Compliance and Security outside the IS/IT community
  • Responsible for implementing and sustaining the tools and process for the Nestlé Compliance & Information Security Management System:
  • Support an integrated Risk, Compliance & Security Framework (including regulatory requirements such as PCI and GDPR)
  • Collaborates with Internal Control and IS/IT teams to ensure one source of truth through integration of reporting corrective & preventative actions and audit findings
  • Supports the execution of IS/IT audit activities and requests: Works with IS/IT teams and internal and external auditors, tracking and following up all IS/IT audits, internal review or regulatory findings as corrective & preventative actions through the management systems
  • Monitors and reports on progress and status of corrective & preventative actions in the management system to address compliance gaps.
  • Supports IS/IT team s in ensuring the required levels of documentation and evidence is available to support audit and regulatory requirements.
  • Acts as a partner to all IS/IT units for IS/IT compliance questions and advice:
  • Drives the development & roll out of the Risk, Compliance & Security competency framework for IS/IT team including the roll out and tracking of the awareness and behaviour training
  • Performs risk assessment according to agreed Risk & Compliance framework in collaboration with IS/IT team s
  • Oversee market's PCI compliance.
  • Collaborates to manage the Attestation of Compliance process (AoC) and SAQs.
  • Coaches IS/IT team s on standards, policies, frameworks and regulatory requirements

Requirements

  • 2+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs
  • Bachelor degree in the field of computer science or IS/IT Security
  • Demonstrated ability to apply IS/IT-related knowledge and experience in solving compliance issues
  • Effective communication skills in both English and French, with the ability to engage at various organizational levels.
  • Experience working in a global environment with cross-functional teams
  • Independent, organized, strong collaborator, dynamic and a fast learner
  • Nice to have: certifications in industry-related compliance, risk, or security management (CRISC, CISM, CISSP)
  • Nice to have: Experience with ISMS certification, developing and submitting IS/IT audit and compliance reports, and knowledge of Archer.
  • Bilingualism in English and French language skills are a requirement, as this position requires collaboration with stakeholders across the Canadian market (and/or globally).
Benefits
  • Comprehensive total rewards benefits package including Health and Dental benefits that start on day one of employment
  • Company matched pension plan
  • Three weeks of Vacation and six personal days (Personal Paid Holidays)
  • Flexible and hybrid work arrangements
  • Excellent training and development programs as well as opportunities to grow within the company
  • Access to Educational Assistance & Tuition Reimbursement
  • Bonus eligibility
  • Free Headspace Account – guidance to create habits to support your mental health
  • Free Nespresso Coffee Machines and $100 monthly coffee credit
  • Up to 50% off – Nespresso Coffee Machine, Capsules and accessories
  • Access to the Discount Company store with Nestlé, Nespresso, and Purina products (Located across various Nestle offices/sites)
  • Additional discounts on a variety of products and services offered by our preferred vendors and partnerships
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
risk managementcomplianceinformation securityIS/IT securityrisk assessmentaudit activitiescorrective actionspreventative actionsdocumentationregulatory requirements
Soft Skills
effective communicationcollaborationorganizationindependencedynamic learningcoachingengagementteamworkproblem-solvingleadership
Certifications
CRISCCISMCISSP