Home
/
Comprehensive
/
IT Security & Compliance MFRM
IT Security & Compliance MFRM-March 2024
Jakarta
Mar 28, 2026
About IT Security & Compliance MFRM

  Position Snapshot

  Location : Jakarta, Indonesia

  Company : Nestlé Indonesia

  Full time

  Position Summary

  Joining Nestlé means you are joining the largest food and Beverage Company in the world. At our very core, we are a human environment – passionate people driven by the purpose of unlocking the power of food to enhance quality of life for everyone, today and for generations to come.

  IT Risk & Compliance Functional Relationship Manager will partner with the IT Security & Compliance Manager, Market IT Business Relationship Managers, IT Product Managers and Business & IT Application Owners to implement and sustain Nestlé Security & Compliance frameworks. Ensures the proper implementation, management and follows up of Risk, Compliance & Security within the market. S/He will be responsible for the Information Security Management System of the unit to ensure that Security & Compliance is structured in the market and brings S&C requirements to any local initiative. S/He works with the market IT Applications Owners to ensure new and existing solutions are implemented and sustained secure & compliant by design.

  S/He will support the alignment of local business requirements and local Regulatory & Legal IT Compliance requirements with the Security & Compliance Product teams using ISMS Framework. S/He advocates and supports the deployment of global security & compliance solutions. S/He will be responsible for driving the awareness of Security & Compliance, practices, standards and behaviors across the market organization including senior stakeholders.

  A day in the life of IT Security & Compliance Market Functional Relationship Manager

  General Outputs

  Partner with internal and external stakeholders to define, plan, execute and refine strategy, definitions, and roadmaps to execute the market’s Information Security Management System (ISMS) and maintain the market’s ISO 27001 certification

  Accountable for ensuring all applications within their market are delivered and maintained secure and compliant with internal standards and external regulations, including privacy requirements, Business Continuity Plans etc.

  Supports the prompt deployment of global Security & Compliance solutions and processes in the market

  Responsible for tracking the market security & compliance posture through relevant metrics and driving continuous improvement through the management system

  Information Security Management

  Plan/execute the market’s Information Security Management System (ISMS)

  Provide process, standard routines and control procedures to enable secure and compliant by design applications

  Drive the continuous improvement of Security & Compliance posture by leading the Risk, Control & Applications owners through the ISMS Framework

  Ensure the implementation of IT Standards and Global Controls

  Track & report on Risk, Control & Remediation maturity

  Support the adoption of the appropriate metrics for tracking risks & controls

  Ensure Information Security risk & control posture is aligned with market management

  Risk management

  Ensures risk identification and controls mapping for all solutions and processes in market using the Nestlé Risk, Compliance & Security framework

  Ensures Risk, Compliance & Security gaps within the market are documented in corrective & preventative actions and tracked through the management system

  Presents IT Risk posture to market management and provides input Enterprise Risk Management processes in the market.

  Support & Incident Response

  Ensures market engagement in Security Incident & Event response, first point in market for Cyber Security Operations Center (CSOC).

  Prioritizes issues and escalations on behalf of receivers

  Provide insight into business disruptions caused by P1/P2 and unplanned outages.

  Regulatory & Audit Outputs

  Coordinates all the IT related audits requests in the market

  Represents the market teams with the auditors, supports market in providing documentation required to meet regulatory requirements (e.g. PCI, GxP)

  Tracks and follows-up the market audit, internal review or regulatory findings as corrective & preventative actions through the management system

  Validates root causes have been addressed prior to closure of corrective & preventative actions

  Works with Risk, Compliance & Security function to identify required levels of documentation and evidence to support audit and regulatory requirements

  Ensures market is trained in reporting Risk, Compliance & Security incidents and events to meet internal &external requirements

  Supports market in the execution and follow-up of Partner Compliance Audits (including cloud)

  Capability & Organizational Outputs

  Supports and advises IT & business application owners in any IS/IT compliance questions

  Oversees the development & roll out of the Risk, Compliance & Security capability framework for their unit

  Roll out, Promote and track of the Security & Compliance awareness and behavior training for market

  Performs, and/or coaches to ensure consistency, risk assessment according to agreed Risk & Compliance framework

  Coaches & trains local teams on the implementation and management of risks, controls and corrective actions through the implementation of the Nestlé Compliance & Information Security Management System

  Trains market teams on standards, policies, frameworks and regulatory requirements

  Identifies gaps between the desired level of compliance capability and the current level of maturity and propose and implement adjustments in capability development for market

  initiative (creative to bring value to the business in a controlled risk environment)

  What will make you successful?

  Bachelor’s Degree in computer science, information security, quality management, business administration, or other analytical or scientific discipline, or equivalent experience is required

  6-7 years of experience in information technology or related function

  5-6 years of experience in information security and compliance or data privacy is required

  Stakeholder management experience with proven record of successfully managing complex stakeholder network

  Experience working for or with a global matrixed organization including with virtual teams

  Experience with and strong knowledge of common information security management frameworks, such as ISO 27001, ITIL, COBIT and NIST

  Industry-related/Professional compliance, risk or security management certification is preferred. (e.g., Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), ISO27001 Lead Auditor/Implementer etc.)

Comments
Welcome to zdrecruit comments! Please keep conversations courteous and on-topic. To fosterproductive and respectful conversations, you may see comments from our Community Managers.
Sign up to post
Sort by
Show More Comments
SIMILAR JOBS
School Bus Driver
School Bus Driver Location352 Concord Rd Sudbury, Massachusetts 01776 USPhone NumberCategoriesDriversReq IDJR367 School Bus Driver (Open) First for a reasonFirst Student is the largest school transpo
Merchandiser Stocker
Job Overview Merchandiser for Greater Moon Township, PA The Merchandiser is responsible for providing high-quality merchandising support for Keurig Dr Pepper brands like 7UP, Snapple, Core, Bai and o
Customer Service Associate
Job Description: Models and delivers a distinctive and delightful customer experience. Registers sales on assigned cash register, provides customers with courteous, fair, friendly, and efficient chec
Cleaner
Overview Position Summary Details The Cleaner position provides the cleaning and upkeep of an assigned area. Essential Functions Cleans and maintains buildings/facilities. Performs heavy cleaning dut
Retail Cashier Part Time
Req ID: 431465 Address: 7791 NW 47th Ave Ocala, FL, 34482 Benefits: * Paid Time Off * Flexible Scheduling * 401(k) – 100% Match up to 5% * Medical/Dental/Vision Insurance after 30 days * Competitive
Security Officer
Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workp
Senior Member of Technical Staff
Job Description Cloud Engineering Infrastructure Development - Virtual Machine Control Plane At Oracle Cloud Infrastructure (OCI), we build the future of the cloud for Enterprises as a diverse team o
Special Education Teacher - Fortville, IN $45 Hourly
Special Education Teacher –Fortville, IN $45 Hourly Hours: 35 Location:Fortville, IN Start Date: asap $45 Hourly 23/24 school year, 6thgrade Requirements:IN SPED License The Special Education Teacher
Store Associate
Bring your heart to CVS Health. Every one of us at CVS Health shares a single, clear purpose: Bringing our heart to every moment of your health. This purpose guides our commitment to deliver enhanced
TSSCI Cyber Network Defense Analyst
Job Description An employer is looking for a TSSCI Cyber Countermeasures Analyst to sit at Fort Meade. This person is going to be responsible for being the subject matter expert of a specific system
OTHERS JOBS
About
Terms and Conditions Privacy policy Cookie Settings Contact Us
Services
Login register
zdrecruit Project Management Advertising and Marketing Education Sales
Links
zpostcode Recruit weather mreligion Yellowpages sport constellation shopping name game directory literature Word tour furnish Lottery tftnews lyrics News digital car dir Edu Finance
Copyright 2023-2026 - www.zdrecruit.com All Rights Reserved