Jacobs Douwe Egberts - IT Compliance Manager II (Freelance/ZZP)

Start date: ASAP

Hours per week: 40

The Compliance Manager ensures that the day-to-day IT operations are compliant with regulatory, organizational and commercial requirements that govern the company’s IT systems and are aligned with business needs and consistent/compliant with company values and the company’s business model (“Combined Business Model”).

The Compliance Manager key goals are to:

• Live JDE values – simplicity, entrepreneurship, accountability, discipline and solidarity
• Ensure requirements are met in all IT related compliance issues in IT Operations and that non-compliant situations are resolved.
• Focus areas are: contractual obligations (e.g. software licenses) and regulatory obligations (financial reporting and privacy)
• Direct the development, implementation and assessment of policies, procedures and controls to ensure that the company’s practices remain observant to all pertinent local or county laws and industry standards.

Expected results:

• Helps the Global Technology CoE Manager Security & Compliance to develop policies in the area of IT Compliance and to maintain an inventory of all compliance and governance requirements.
• Facilitate the creation and modification of all technology compliance policies.
• Responsible for the creation of an IT compliance risk assessment framework and periodically assess the regulatory, commercial and organizational, inherent and residual IT compliance risks.
• Manages the identification of the associated IT compliance control gaps and oversee the documentation, implementation and testing of the entire IT compliance control portfolio.
• Develops and directs IT compliance control monitoring programs to ensure IT compliance-related risks are managed to the appropriate level of acceptable residual risk.
• Manages the implementation and maintenance of IT compliance issue management tracking and resolution process that will address known issues, according to severity and potential impact to the organization.
• Reports the levels of IT compliance risk and control effectiveness to key stakeholders such as IT management, regulators, internal/external auditors, etc.
• Manages the coordination of audit-related tasks such as ensuring the readiness of IT and their organizations for audit testing and facilitating the timely resolution of any audit findings.
• Works with corporate legal and compliance representatives to identify all related IT compliance requirements (i.e., security, user access, privacy, data integrity, etc.) associated with the laws and regulations within all relevant jurisdictions.
• Oversees the execution of IT compliance training and awareness programs that periodically educate the requisite end-user community on the relevant IT compliance requirements, and certifies their adherence to the relevant IT compliance controls.
• Responsible for the day-to-day IT related compliance design and operations. Lead in projects for design of IT General and IT application controls.
• Co-ordinate operational compliance activities with the Global IT Compliance sSpecialist with regular reporting and modifying scope of controls for new and existing applications.
• Act as the Asset Manager for Software Licenses across the organization being aligned with business needs and consistent/compliant with company values and the company’s business model;
• Identify risks in Software License contracts.
• Ownership of the Software License management tool and manages the contract and agreement of the service provider of this tool.
• Defines actions to improve software license management (improvement on quantity alignment) and streamlines the processes used between providers, business and third parties. He/she ensures that services are delivered at the highest quality.

Must have:

• Academic Degree (or equivalent experience), preferably in a quantitative or Computer Science discipline. Post graduate education/certification in IT compliance or IT license management is (e.g. RE, CISA or CSAM)
• Proven experience in IT risk and compliance teams in a multi-vendor, multi-country environment for approx. 5-7 years;
• Interact with Business and IT leaders and being able to explain IT in a very simple and understandable way;
• Ability to translate understanding of the organization's goals and objectives into IT compliance and license requirements.
• Sound knowledge of IT frameworks like ISO 2700X, CoBIT
• Identifying risks in Software License contracts.
• Knowledge of technology environments, including high level knowledge of security, encryption methods and privacy-based solutions.
• Understanding of data processing, hardware platforms, enterprise software applications and outsourced systems.
• Managing virtual teams globally and able to handle different cultures.
• Industry experience with a food & consumer packaged goods company is a pre.