OT Risk and Compliance Manager
As our OT Risk and Compliance Manager you will develop, implement and embed the Operational Teams (OT) risk management framework and process to the global OT organization, driving compliance and doing risk assessments. This role will work closely with various stakeholders across the company, including Legal, Corporate Risk and Internal Control, Internal and External Auditors and, of course, Operational Teams (OT). Security, privacy, risk and compliance are key to the strategy of FC and IT/OT and are an explicit element of the strategy.
What we ask
In order to be successfull in this role you should have
- Academic working and thinking level.
- Min 7 years’ experience in IT auditing or IT/OT risk management in IT cyber security environment
- 10 Years of relevant IT experience with a min of 5 years of hands-on experience on developing and implementing OT risk management frameworks
- Deep understanding of information security, change, operations and supplier control like ISAE 3402.
- Extensive knowledge of OT risks, an overall view of the “big picture”, and a good knowledge of the IT/OT processes
- In-depth knowledge of risk-based approaches, OT risk management frameworks and industry best practices, such as ISO 27001, NIST, COBIT, etc., especially on OT frameworks
- Strong advisory (consultancy) and interpersonal skills
- Ablility to motivate and engage others, which results in effective/efficient training and a high level of knowledge transfer, process adoption and performance.
Bonus point for:
- Bsc/Msc in risk and auditing, RE or similar
- CRISC or other Risk Management Certifications are beneficial
What we offer
Unique company culture of Dutch heritage and international presence
We offer great work life balance, and competitive salary & benefits package so you can enjoy it
Workweek of 40 hours, competitive pension scheme, holiday allowance of 8%, bonus scheme, flexible working hours and the ability to work from home.
Diverse training and mentoring programs to help you grow on your own professional journey
Exceptional support of cross disciplinary movement within the company to broaden your knowledge and growth paths
A friendly and informal working environment, yet professional team members as sparring partners
Autonomy and trust to create longer term impact that helps bring better nutrition to the world
Free cheese and milk at lunch in the central office, fruit and barista coffee to help you go through your working days with a lot of joy
Vacancy description
In your daily work, you will
- Work with the OT and business teams to drive ICF and Internal control framework compliance.
- Look at the threat landscape and work with the OT teams to make sure control adherence is at the right level and teams are uplifted.
- Act as trustworthy advisor with a strong relationship with the OT control owners, middle and higher IT and OT management, Corporate Internal Control, the external audit and cross business area peers.
- Do risk assessment and advising OT management, Ciso and senior management on findings and mitigations
- Responsible for compliance around financial processes and Cyber security controls.
- Prioritize said processes in a risk-based way so we focus where the need is the highest.
- Support the implementation of a security key control framework within IT and the business to facilitate our compliance and mitigate cyber security risks.
- Drive maturity in the organization based on these controls is key. Where needed exceptions are assessed and approved.
- Periodically review and update policies.
Team Details
See all colleagues on LinkedInFor thousands of people every day, we are more than just a dairy company. To our farmers, our employees, the communities we serve, the businesses we work with and the people to whom we bring happiness, FrieslandCampina means something more. For them it's not just about what we do, but who we are.
We value talented people from any background who want to contribute to something bigger than themselves. We encourage all of our employees to make decisions that benefit our entire company. At FrieslandCampina we own our own career and act accordingly. We trust you to make a difference in your job and influence the bigger picture. Working at FrieslandCampina means you are contributing to a better world.
As Information Risk and Security Team (IRS) we have an important role for people to make maximum use of technology and facilities in a secure way. Security is an important enabler for the RFC strategy hence top of mind of our board. The IRS team is led by the CISO who you report to.
We work in an international based team out of the Netherlands and Kuala Lumpur, driving a secure operation while elevating the security maturity and keeping abreast of developments.