Job details:

• Permanent position
• Location: Łódź
• Full-time
• Hybrid work
• Candidates have to be located in Poland
• Relocation to Lodz, Poland is possible
• Industry: Food / Manufacturing

Scope:

The client is on a journey to transform the cocoa and chocolate industry. As the world’s leading manufacturer of high-quality chocolate and cocoa products, our actions truly shape the future of our industry. We are a business-to-business company, serving the entire food sector, from the cocoa bean to the finest chocolate product. We are a company with a purpose, we believe in doing well by doing good and reinvesting in the communities we operate. We have a long-standing commitment to sustainability and our goal is to shape a sustainable cocoa and chocolate future. We are headquartered in Zurich, and have more than 12,000 passionate Employees working in more than 40 countries worldwide. We are very proud of who we are and what we do. And of course, we are always looking for talented people to help us have a positive impact on our industry and beyond!

The client is on a mission to lead the digital revolution in the chocolate industry, and we're looking for a GRC Analyst for our Risk & Compliance team to shape this transformative journey. Reporting to the Head of Digital Risk & Compliance, you will ensure the organization as well as third parties comply with regulatory requirements, manage risks effectively, and maintain strong governance practices. You will conduct risk assessments, monitor compliance and cyber security, respond to regulatory requirements, and collaborate with internal teams to implement policies and procedures that align with legal and operational standards. This position involves an understanding of regulatory requirements and the ability to translate them into operational controls that are precisely aligned with our company's risk profile. Join us to make a significant impact and help steer BC Digital towards an exciting future.

Key responsibilities:

• Implement risk and compliance policies and procedures mitigating potential threats to BC’s digital assets.
• Monitor and ensure compliance with regulatory requirements and internal policies.
• Support developing comprehensive risk management strategies in alignment with organizational goals.
• Support incident response efforts, including investigating security incidents and breaches.
• Collaborate with various departments to implement risk mitigation strategies.
• Support audits and reviews to verify compliance with policies and assess the effectiveness of controls.
• Utilize and manage GRC tooling for effective risk and compliance tracking.
• Support the modernization of digital risk and compliance tools, procedures, and policies.
• Prepare regular reports on governance, risk, and compliance activities.
• Support the creation of training programs to promote compliance awareness.

Skills:

• Graduate degree in information technology, cybersecurity, business administration, or a comparable field.
• Proficient in English.
• Relevant experience in cybersecurity, governance, risk & compliance management is a plus.
• Understanding of risk management principles, methodologies, and tools, and the development of effective mitigation strategies.
• Familiarity and experience in implementing Information Security Management Systems (ISMS) and Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, CIS, NIST, CoBIT is a plus.
• Experience with GRC tools such as RSA Archer, ServiceNow GRC, or similar is a plus.
• Independent and self-driven personality with a structured and organized approach.
• Ability to create internal and external partnerships/networks across the organization.
• Ability to analyze complex situations and develop actionable improvement plans in collaboration with diverse teams.
• Competence in managing workloads, and effectively prioritizing tasks to meet deadlines.