Senior Risk
hace 2 semanas
About IT In Nestlé
We are a team of IT professionals from many countries and diverse backgrounds, each with unique missions and challenges in the biggest health, nutrition and wellness company of the world.
We innovate every day through forward-looking technologies to create opportunities for Nestlé’s digital challenges with our consumers, customers and at the workplace.
We collaborate with our business partners around the world to deliver standardized, integrated technology products and services to create tangible business value.
To strengthen our IT Procurement / Mexico hub, we are looking for an IT Procurement Business System Analyst to complete our Source to Pay Department.
Under the supervision and guidance of your primary Community of Practice Lead and Product Manager based in Barcelona you will be responsible for one or several products within a product group and you will be responsible to serve as a liaison between Procurement and IS / IT.
You will be accountable for the Procurement interface with IT to translate opportunities and issues supporting and and advising the best solutions.
You will further translate business strategies, opportunities and needs into IS / IT product requirements, and plays a key role within the product team to specify, test and deploy those IT solutions.
Position Snapshot
Location : Nestlé México
Stream : IT Security And Compliance
Type of Contract : Permanent
Under the supervision and guidance of her / his primary Community of Practice Lead and Product Manager based in Switzerland, the Sr Risk and Compliance IT Specialist is responsible for implementing, coaching and supporting an integrated risk, compliance and security management systems in accordance to the business risk appetite.
The management systems enable the IT teams globally to identify, document, measure and address its compliance requirements, including but not limited to data protection, privacy, 3rd party / vendor, information security and procurement.
The Risk and Compliance Specialist's responsibilities include ensuring the teams are able to drive all their risks, compliance and security requirements through the management system, ensuring compliant and secure products & platforms meeting the business risk appetite.
To enable this, s / he is responsible for providing the tools, processes and frameworks to support IT Compliance in Nestle and for conducting IT controls testing .
Key Responsibilities :
General Outputs
Responsible for coaching and reporting on Risk, Compliance & Security through the Nestlé Compliance and Information Security management system within IT :
- Supports risk identification and controls mapping for all solutions and processes in product / product groups and other IT teams using the Nestlé Security, Risk & Compliance framework and management system
- Responsible for conducting controls testing, management system reviews and reporting to assess the IT compliance and management system
- Supports all IT teams in identifying and applying Internal and External (legal, regulatory and commercial) compliance requirements
- Coaches and supports teams in managing Risk, Compliance & Security gaps through documented corrective & preventative actions, tracked through the management system
- Provides guidance and support to IT teams in implementing by design the required IT compliance in their solutions to meet the desired level of compliance maturity and risk appetite in the Nestlé Framework
- Responsible for tracking the compliance through relevant metrics
- Advise on and promote importance of IT related Risk, Compliance and Security outside the IT community
- Contributes to IT Security and Compliance on-boarding of Nestlé acquired businesses
Tools, Processes and Frameworks
Responsible for implementing and sustaining the tools and process for the Nestlé Compliance & Information Security Management System :
- Implements tools and process to support an integrated Risk, Compliance & Security Framework (including regulatory requirements PCI, GDPR Quality etc.)
- Maintains the management system through continuous review and evaluation of external frameworks and standards (, ISO27001, COBIT, NIST, ITIL etc.)
- Maintains and develops the Nestlé Cyber Risk Framework to address the evolving risk landscape
- Develops and sustains the Controls Library by translating Nestlé, Regulatory & Industry standards into actionable control points
- Collaborate with Audit, IT & Nestlé support functions to ensure one source of truth through integration of reporting corrective & preventative actions and audit findings
- Implement and sustain processes with Legal, Quality and Corporate Compliance to ensure IT teams are able to identifying and applying internal and external (legal, regulatory and commercial) compliance requirements
- Processes and procedures for lifecycle management of all technology compliance policies, standards and frameworks in Nestlé, including exceptions management
- Responsible for defining maintaining an integrated risk, compliance & security index (KPIs)
Regulatory & Audit Outputs
- Supports the execution of IT audit activities and requests
- Works with IT teams and internal and external Auditors, tracking and following up all IT audits, internal review or regulatory findings as corrective & preventative actions through the management systems
- Validates root causes have been addressed prior to closure of corrective & preventative actions
- Supports IT teams in ensuring the required levels of documentation and evidence to support audit and regulatory requirements
- Ensures all IT teams are trained in identifying and reporting Security, Risk & Compliance incidents and events to meet internal & external requirements
- Drives root cause analysis across audits and reviews to identify and document required improvements in tools, processes and documentation
- Supports IT teams in the execution and follow-up of Partner Compliance Audits (including cloud)
Required Profile :
6+ years of experience in a combination of risk management, compliance, information security and IT jobs - thereof >
3 years in a senior role
Undergraduate degree in the field of computer science, law, IT Security, Quality Management or business administration;
graduate degree in one these fields preferred
- Industry-related compliance, risk or security management certification is preferred. Valuable Certifications : ISO 27000 (any is valuable), or CISM, or CISA, or CRISC, or COBIT. Desirable only.
- Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues
- Experience developing and submitting IT audit and compliance reports
- Experience with effective communication at different levels in the organization and in English
- Experience having worked in a global environment and with virtual teams
-
Risk Control Oversight Office
hace 2 semanas
Ciudad de México HSBC A tiempo completoJob description Role purpose The HSBC Mexico Risk Control Oversight Office is a special unit operating under the Office of the Mexico CEO with a Board mandate to provide comprehensive assessment and monitoring of all regulatory programs across HSBC Mexico, coordination and acceleration of existing remediation or risk mitigation efforts across all Mexico...
-
Sr Manager Risk Management
hace 2 semanas
Ciudad de México Capital One National Association A tiempo completoWeWork Reforma Latino (97001), Mexico, Ciudad de Mexico, Ciudad de MexicoSr Manager Risk Management Sr Manager, Risk Management Capital One is one of the fastest growing organizations in the world today and we are growing our tech teams globally. You’ll play a pivotal role in developing and driving our international risk management strategy—from day...
-
Risk Control Oversight Office
hace 2 semanas
Ciudad de México, Ciudad de México HSBC A tiempo completoJob description Role purpose The HSBC Mexico Risk Control Oversight Office is a special unit operating under the Office of the Mexico CEO with a Board mandate to provide comprehensive assessment and monitoring of all regulatory programs across HSBC Mexico, coordination and acceleration of existing remediation or risk mitigation efforts across all Mexico...
-
Ciudad de México Citi A tiempo completoThe Business Risk Group Manager is accountable for management of complex/critical/large professional disciplinary areas. Leads and directs a team of professionals. Requires a comprehensive understanding of multiple areas within a function and how they interact in order to achieve the objectives of the function. Applies in-depth understanding of the business...
-
SAP Grc “senior”«remote»
hace 6 días
Ciudad de México Information Technologies Consultant Home S.A. de C.V. A tiempo completoSAP GRC “Senior” «Remote» **Experience Required in**: - Governance risk and compliance - At least 7 years of experience - Experience as a functional consultant configuring the module - English level: intermediate - Intermediate **WE OFFER**:Competitive salary Payroll + Law and Superior Benefits **Work area**:CDMX/ Remote Li-remote
-
Risk Control Oversight Office
hace 2 semanas
Ciudad Cuauhtemoc, México HSBC A tiempo completoRole purpose The HSBC Mexico Risk Control Oversight Office is a special unit operating under the Office of the Mexico CEO with a Board mandate to provide comprehensive assessment and monitoring of all regulatory programs across HSBC Mexico, coordination and acceleration of existing remediation or risk mitigation efforts across all Mexico global...
-
Business Risk Officer
hace 5 días
Ciudad de México Tiger Text A tiempo completoThe Business Risk Officer is a strategic professional who stays abreast of developments within own field and contributes to directional strategy by considering their application in own job and the business. Recognized technical authority for an area within the business. Requires basic commercial awareness. There are typically multiple people within the...
-
Information Risk
hace 4 semanas
Ciudad de México Trinity Structural Towers A tiempo completoInformation Risk & Compliance Supervisor Trinity Industries is looking for a Information Risk & Compliance Supervisor in Queretaro, MX. The Information Risk and Compliance Supervisor functions within the Information GRC (IGRC) team, reporting to the Senior Director of IGRC within the Information Risk Management organization. This role is pivotal in...
-
Advisor Wealth and Personal Banking Risk
hace 4 semanas
Ciudad de México Manpower S.A. de C.V A tiempo completoAdvisor Wealth and Personal Banking Risk Role holders will carry out activities that will include most of the following: Co-ordinate and manage projects; typically working on smaller projects/assignments Assisting in delivery of larger projects Implementing company policy and contributing to the attainment of functional results Ensuring the quality of...
-
Senior Geologist
hace 1 semana
Ciudad de México WTS Energy A tiempo completo**Senior Geologist Job Description**: For one of our clients, we are recruiting a Senior Geologist with a strong technical background in exploration, prospect identification and maturation in Exploration and Development over a wide range of depositional environments. **Key Accountabilities**: Ensure health, safety and environment are priorities in all...
-
Governance Manager, Risk and Compliance Services
hace 6 días
Ciudad de México Amazon A tiempo completoGovernance Manager, Risk and Compliance Services - Global Governance Amazon's Risk and Compliance Services (RCS) is in search of an experienced governance/company secretariat professional to support our regulated financial services entities across Canada and Latin America (LATAM). Based in Mexico, the successful candidate will join a high-performing...
-
Financial Risk Sr Consultant
hace 3 semanas
Ciudad de México Mirai A tiempo completoMirai Advisory is a global consulting firm which is focused on Asset & Liability Management and other Business Intelligence solutions. We are committed to providing a strong value-added solution and excellent services our clients. Our people are driven, motivated, and strive to meet rigorous objectives. Having a multidisciplinary team is essential to our...
-
Senior Buyer
hace 5 días
Ciudad Juarez, México EMPRESA MAQUILADORA IMPORTANTE A tiempo completo**EMPRESA MAQUILADORA IMPORTANTE** **Solicita**: **Senior Buyer** **Descripción y Requisitos** - Objective: - Lead the efforts of the company to reduce material cost and maintain the flow of raw materials on time for production- Functions: - Manage MRP system - MRP Configuration - Purchase Orders - Manage Price Reduction Initiatives - Manage inventory...
-
Advisor Wealth and Personal Banking Risk
hace 5 días
México Manpower Mexico A tiempo completoRole holders will carry out activities that will include most of the following: - Co-ordinate and manage projects; typically working on smaller projects/assignments - Assisting in delivery of larger projects - Implementing company policy and contributing to the attainment of functional results - Ensuring the quality of tasks/services provided by colleagues,...
-
Senior Seismic Interpreter
hace 1 semana
Ciudad de México WTS Energy A tiempo completoFor one of our clients, we are recruiting a Senior Seismic Interpreter with a strong technical background in integrative seismic interpretation, prospect identification and maturation within both Exploration and Development phases. **Key Accountabilities**: Ensure health, safety and environment are priorities in all activities. Delivery of mature...
-
PMO Risk Control Oversight Office
hace 2 semanas
Ciudad de México, Ciudad de México HSBC A tiempo completoJob description Role purpose The HSBC Mexico Risk Control Oversight Office is a special unit operating under the Office of the Mexico CEO with a Board mandate to provide comprehensive assessment and monitoring of all regulatory programs across HSBC Mexico, coordination and acceleration of existing remediation or risk mitigation efforts across all Mexico...
-
Ciudad de México Sandoz International GmbH A tiempo completoThird Party Risk Management Service Delivery Lead (TEMPORARY 6 MONTHS) 2023 will see Sandoz become a standalone organization! As a global market leader in Generics and Biosimilar medicine, Sandoz is stepping forward from a position of strength! Those joining Sandoz in the coming months will help shape the future of the company, its growth, innovation,...
-
Trader Senior.
hace 2 semanas
Ciudad de México Tiger Text A tiempo completoWant to build a stronger, more sustainable future and cultivate your career? Join Cargill's global team of 160,000 employees who are committed to safe, responsible and sustainable ways to nourish the world. This position is in Cargill’s food ingredients and bio-industrial business, where we anticipate trends around taste, nutrition and safety to...
-
PMO Risk Control Oversight Office
hace 2 semanas
Ciudad de México HSBC A tiempo completoJob description Role purpose The HSBC Mexico Risk Control Oversight Office is a special unit operating under the Office of the Mexico CEO with a Board mandate to provide comprehensive assessment and monitoring of all regulatory programs across HSBC Mexico, coordination and acceleration of existing remediation or risk mitigation efforts across all Mexico...
-
M365 Senior Developer
hace 4 semanas
Ciudad de México Zurich Insurance Group A tiempo completoZurich Capability Center is currently hiring a: M365 Senior Developer Your Skills and Experience As a M365 Developer, your skills and qualifications will ideally include: Advanced English Who we are Looking for a challenging and inspiring work environment where you can make a difference? At Zurich millions of individuals and businesses place their...
