Position Snapshot

　　• Global IT Hub of Nestlé in Italy, Milan Headquarters.

　　• Connectivity & Voice platform group, reporting to the Process, Compliance & Projects manager.

　　• Full-time and on location permanent contract with virtual working available.

　　• Bachelor's degree in computer science, law, IS/IT Security, Quality Management or business administration.

　　• 2+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs.

　　Position Summary

　　Are you a talented Risk and Compliance professional ready to join Nestlé’s IT Platforms Connectivity & Voice team in Milan, Italy? Then look no further!

　　Our Risk and Compliance Specialist is responsible for implementing, coaching and supporting integrated risk, compliance and security management systems in accordance with the business risk appetite, within the Connectivity & Voice platform group. The management systems enable the IS/IT teams globally to identify, document, measure and address its compliance requirements, including but not limited to data protection, privacy, 3rd party/vendor, information security and procurement.

　　A Day in the Life of a Risk and Compliance Specialist

　　• Supports risk identification and control mapping for all solutions and processes in the product group and using the Nestlé Security, Risk & Compliance framework and management system (ISO27001)

　　• Responsible for management system reviews and reporting to assess the IS/IT compliance and management systems.

　　• Supports the team in identifying and applying Internal and External (e.g. PCI, GDPR, legal, regulatory and commercial) compliance requirements.

　　• Coaches and supports the team in identifying and managing Risk, Compliance & Security gaps through documented corrective & preventive actions, tracked through the management system.

　　• Provides guidance and support to the team in implementing by design the required IS/IT compliance in their solutions to meet the desired level of compliance maturity and risk appetite in the Nestlé Framework

　　• Responsible for tracking the compliance through relevant metrics, along with presenting them in relevant forums.

　　• Responsible for managing the application portfolio to guarantee the relevant compliance assessment execution and the quality of data, both at application launch and at regular review campaigns.

　　• Collaborates with audit support functions to ensure one source of truth through the integration of reporting corrective & preventative actions and audit findings.

　　What else will make you successful?

　　• Bachelor's degree in computer science, law, IS/IT Security, Quality Management or Business Administration

　　• 2+ years of experience in a combination of risk management, compliance, information security and IS/IT jobs.

　　• Excellent English communication skills applied with different stakeholders, nationalities, and mediums (face-to-face and remote)

　　• Industry-related compliance, risk or security management certification is preferred.

　　• Demonstrated ability to apply IS/IT related knowledge and experience in solving compliance issues.

　　• Experience developing and submitting IS/IT audit and compliance reports.

　　• Experience having worked in a global environment and with virtual teams.