Risk and Compliance Specialist
Nestle
full-time
Posted on:
Location Type: Hybrid
Location: Montreal • Canada
Visit company websiteExplore more
Salary
💰 CA$71,000 - CA$82,500 per year
About the role
- Responsible for implementing, coaching and reporting on risk, compliance and security through Nestlé’s Information, Compliance and Security Management System within IS/IT
- Owns risk identification and control mapping for all IS/IT team solutions and processes using Nestlé’s security, risk and compliance management framework and system
- Responsible for system reviews and reporting to assess the IS/IT security compliance index
- Helps teams identify and apply internal and external compliance requirements (legal, regulatory and business)
- Coaches and assists teams in managing risks, compliance issues and security gaps through documented corrective and preventive actions tracked in the management system
- Advises and promotes the importance of IS/IT-related risk, compliance and security outside the IS/IT community
- Responsible for implementing and maintaining the tools and processes of Nestlé’s Information, Compliance and Security Management System
- Collaborates with internal control and IT teams to ensure a single source of truth by integrating corrective and preventive actions, reporting and audit findings
- Leads the execution of IT/IS audit activities and audit requests
- Monitors progress and status of corrective and preventive actions in the management system and reports on them to close compliance gaps.
Requirements
- More than 2 years of experience in risk management, compliance, information security and IT services
- Bachelor’s degree in Computer Science or Information Security
- Demonstrated ability to apply IT-related knowledge and experience to resolve compliance issues
- Effective communication skills in French and English, with the ability to engage at multiple organizational levels
- Experience working in a global environment with cross-functional teams
- Independent, well-organized, strong collaborator, proactive and quick learner
- Asset: Certifications in compliance, risk management or information security (CRISC, CISM, CISSP)
- Asset: Experience with ISMS certification, preparing and submitting IS/IT audit and compliance reports, and familiarity with the Archer tool
- Bilingualism in English and French is required, as this role involves collaboration with stakeholders in the Canadian and/or global markets
Benefits
- Comprehensive benefits package including medical and dental coverage starting on the first day of employment
- Company-matched retirement plan
- Three weeks of vacation and six personal days (paid)
- Flexible and hybrid working arrangements
- Excellent training and development programs and opportunities for career advancement within the company
- Gender-affirming benefits to ensure access to care, resources and coverage needed for gender-affirming procedures
- Fertility services and medical coverage for surrogacy to support family-building regardless of medical condition, sex or sexual orientation
- Adoption benefits to help offset some of the financial barriers associated with adoption
- Access to tuition assistance and tuition reimbursement
- Eligibility for bonuses
- Free Nespresso coffee machine and a $100 monthly coffee credit
- Up to 50% discount on Nespresso machines, capsules and accessories
- Access to the company store with discounted Nestlé, Nespresso and Purina products (available at various Nestlé offices/sites)
- Additional discounts on a variety of products and services offered by our preferred vendors and partners
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
risk managementcomplianceinformation securityIT servicesISMS certificationaudit activitiescorrective actionspreventive actionssecurity compliancecontrol mapping
Soft Skills
effective communicationcollaborationindependenceorganizationproactivityquick learningengagement at multiple organizational levels
Certifications
CRISCCISMCISSP