Manager InfoSec & Compliance

MAKE HISTORY WITH US! At PMI, we’ve chosen to do something incredible. We’re totally transforming our business and building our future on one clear purpose – to deliver a smoke-free future. With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and the space to move your career forward in endlessly different directions. IT at PMI PMI’s journey to a smoke-free future implies a shift from a tobacco manufacturer to a science and technology-based consumer facing organisation. Such a shift creates an abundance of unique and progressive IT projects to match all levels of skills and ambitions. You’ll feel like you’re working in a start-up – with the freedom to shape and define the future of digital, but with the support and scope of a vast global business. You’ll get a chance to work with innovative technologies (e.g., Cloud, APIs, AI) as well as management practices (e.g., Agile, Design Thinking, Product Management). Our environment is fast-paced and highly collaborative. If you want the freedom to find new ways to connect with consumers, there’s no better place to progress your career. Digital at PMI is dynamic, diverse, and innovative. Do you want to become a part of a top talent team where you can bring new insights to life in a global function that is a key driver of the success of our business? Join us! Joining Information Security Running at the forefront of PMI's Digital Transformation, Information Security offers guidance, solutions and advisory all across PMI, supporting our secure journey towards a smoke-free future. Our scope ranges from security assessments, architecture, governance and risk advisory, through resilience, cyber threat intelligence and incident response, to supporting PMI Functions, Markets, and Platforms (e.g. Finance, People & Culture, Operations, Consumer or Product) and building an organizational security culture. What’s the purpose of this role? The purpose of the Manager InfoSec & Compliance role is to support the Head of InfoSec & Compliance in the design, development, and enhancement of the enterprise IT control framework, closely aligned with internationally recognized risk management frameworks, and to foster a more risk aware culture in the IT organization. Where do we see this role going? • As we progress on our business transformation journey, the Manager InfoSec & Compliance will help drive the adoption of IT controls framework to facilitate our IT transformation. • The role actively participates in the definition and monitoring of the enterprise GRC management framework with other risk assurance functions • We see this role further growing with the function and the company, and are looking for an experienced profile with the clear willingness to help craft and build strong GRC management capabilities within the IT organization JOIN US! WHO ARE WE LOOKING FOR? • Expert in GRC management keen to develop a strong risk aware culture in the IT organization • Trusted advisor to IT management on continuous monitoring of IT risk posture. • Advise the IT organization and the wider business on IT controls identification, assessment, including on the design of new processes and systems that meet professional risk management standards. • Maintain and renew a deep knowledge and understanding of the organization's policies and procedures and risk management industry standards to drive the continuous evolution of the enterprise IT risk management framework. • Support the organization in the adoption of a risk-based decision-making culture to accelerate our business transformation, while handling risk and meeting regulatory compliance WHAT WE OFFER YOU? • Private medical and dental care, life insurance • Lunch card (Sodexo) • Hybrid work opportunity and flexible working arrangements • Employee pension plan • Multisport program • Cafeteria program • Wide range of trainings, optional language classes, further education and professional qualification support possibility • Free bike and car parking for all employees HOW CAN YOU MAKE HISTORY WITH US? • Support the Head of InfoSec & Compliance in driving the strategy, design, adoption, and governance of IR controls management subject areas within IT worldwide operations and foster a risk balanced entrepreneurship within the IT organization. • Help drive the communication, engagement, and escalation strategies with all internal customers & service partners to ensure alignment of operational plans and activities with enterprise IT GRC management. • Help drive the design and implementation of continuous governance of IT controls standards and processes vital for PMI to meet its current and future GRC needs as defined either by regulatory requirements or consumer expectations. • Provide continuous mentorship and advisory to the worldwide IT organization to facilitate adherence to all PMI policies and guidelines on GRC processes. • Provide training and awareness sessions on IT controls management and related tooling and processes to the worldwide IT organization • Help attract, develop and retain the best talent to build a flexible, agile and innovative team of IT controls management specialists supporting the organization in adopting risk-based decision-making culture Please note that only online applications will be taken into consideration. Only selected candidates will be contacted.