重庆
应届毕业生
本科
2025-02-08 10:38:29
12人关注
职位描述
该职位还未进行加V认证,请仔细了解后再进行投递!
1. PURPOSE OF ROLE
13Seeking an IT Compliance Expert to collaborate with relevant stakeholders on IT risk and compliance management.
2. KEY TASKS AND ACCOUNTABILITIES
1361 Collaborate with relevant teams to align APAC risk management strategies, Third Party Risk Management (TPRM), Software Asset Management (SAM), Business Impact Analysis (BIA), etc..
61 Optimize TPRM frameworks with tiering, lifecycle management, templates, and KPIs.
61 Enhance TPRM processes through cross-department collaboration and automation tools.
61 Conduct third-party risk assessments, develop mitigations, and monitor critical vendors.
61 Implement cybersecurity training and phishing simulations for third-party employees.
61 Perform audits based on IT MICS, SOX, and internal policies, addressing compliance gaps.
61 Liaise with external auditors, providing documents and audit support.
61 Oversee software management, including procurement, usage, and retirement.
61 Assess risks and conduct business impact analysis to critical systems, defining RTOs and RPOs for business processes.
61 Manage IT compliance approvals for hardware access, third-party risks, and software licenses.
3. BUSINESS ENVIRONMENT
The role of IT Compliance Expert in APAC is embedded within IT department but collaborates extensively with various business functions. It is integral to the wider business, serving as a critical link between technology, risk management, and regulatory compliance.
Key Strategic Interactions:
61 Global IT Compliance Team: The IT Compliance Expert collaborates closely with global teams to ensure consistent risk management strategies across APAC, including sharing best practices, aligning on policies and procedures, and coordinating efforts to address regional-specific compliance challenges.
61 Procurement Team: The IT Compliance Expert collaborates with Procurement Team in Supplier Risk Management to ensure alignment on TPRM.
61 Third Parties: The IT Compliance Expert manages relationships with third-party vendors and service providers, conducting risk assessments, developing mitigation strategies, and implementing remediation actions.
61 Business Departments: This role works with various business departments to identify and assess critical systems, ensuring that IT compliance efforts are aligned with business objectives.
61 External Auditors: This role maintains communication with external auditors, responding to requests, providing necessary documents, and assisting with audits.
61 Software License Owners: The IT Compliance Expert collaborates with software license owners in APAC to implement software management.
4. QUALIFICATIONS, EXPERIENCE, SKILLS
61 Bachelor’s degree, preferably in Information Technology, Computer Science, and /or equivalent formal training or work experience.
61 Effective communication and interpersonal skills, with the ability to collaborate with global teams.
61 Fluent in English.
61 Experience in managing and overseeing IT compliance-related projects.
61 Experience in Third Party Risk Management (TPRM), including risk assessments, mitigation strategies, and lifecycle management.
61 Experience with Software Asset Management (SAM) and Business Impact Analysis (BIA).
61 Familiarity with IT MICS, SOX, and other relevant compliance frameworks.
61 Ability to manage multiple tasks and priorities in a fast-paced environment.
61 Relevant professional certifications, such as Certified Information Systems Auditor (CISA), or ISO/IEC 27001 Lead Implementer, are a plus.
13
5. COMPETENCIES
61 Deep understanding of IT compliance frameworks, standards, and regulations, and the ability to apply them effectively.
61 Ability to lead and manage IT compliance-related projects.
61 Proficiency in conducting comprehensive audits and assessments, identifying compliance gaps, and providing guidance to stakeholders.
61 Expertise in identifying, assessing, and mitigating risks, including third-party, cybersecurity, and data security risks.
61 Skill in introducing automation tools to enhance efficiency and accuracy.
61 Ability to design and implement security awareness programs.
Equal Opportunity Employer
Budweiser China is an equal opportunity employer that is committed to workplace diversity and non-discrimination. Budweiser China strives to create an inclusive work environment that is free from discrimination and harassment and that values the differences of our employees, shareholders, and consumers. Specifically, we prohibits discrimination or harassment against any applicant, employee, vendor, contractor, customer, or client on the basis of, race, color, national origin, ***, sexual orientation, gender identity or expression, religion, age, marital status, pregnancy, disability or military/veteran status, or any other basis prohibited by law.
13Seeking an IT Compliance Expert to collaborate with relevant stakeholders on IT risk and compliance management.
2. KEY TASKS AND ACCOUNTABILITIES
1361 Collaborate with relevant teams to align APAC risk management strategies, Third Party Risk Management (TPRM), Software Asset Management (SAM), Business Impact Analysis (BIA), etc..
61 Optimize TPRM frameworks with tiering, lifecycle management, templates, and KPIs.
61 Enhance TPRM processes through cross-department collaboration and automation tools.
61 Conduct third-party risk assessments, develop mitigations, and monitor critical vendors.
61 Implement cybersecurity training and phishing simulations for third-party employees.
61 Perform audits based on IT MICS, SOX, and internal policies, addressing compliance gaps.
61 Liaise with external auditors, providing documents and audit support.
61 Oversee software management, including procurement, usage, and retirement.
61 Assess risks and conduct business impact analysis to critical systems, defining RTOs and RPOs for business processes.
61 Manage IT compliance approvals for hardware access, third-party risks, and software licenses.
3. BUSINESS ENVIRONMENT
The role of IT Compliance Expert in APAC is embedded within IT department but collaborates extensively with various business functions. It is integral to the wider business, serving as a critical link between technology, risk management, and regulatory compliance.
Key Strategic Interactions:
61 Global IT Compliance Team: The IT Compliance Expert collaborates closely with global teams to ensure consistent risk management strategies across APAC, including sharing best practices, aligning on policies and procedures, and coordinating efforts to address regional-specific compliance challenges.
61 Procurement Team: The IT Compliance Expert collaborates with Procurement Team in Supplier Risk Management to ensure alignment on TPRM.
61 Third Parties: The IT Compliance Expert manages relationships with third-party vendors and service providers, conducting risk assessments, developing mitigation strategies, and implementing remediation actions.
61 Business Departments: This role works with various business departments to identify and assess critical systems, ensuring that IT compliance efforts are aligned with business objectives.
61 External Auditors: This role maintains communication with external auditors, responding to requests, providing necessary documents, and assisting with audits.
61 Software License Owners: The IT Compliance Expert collaborates with software license owners in APAC to implement software management.
4. QUALIFICATIONS, EXPERIENCE, SKILLS
61 Bachelor’s degree, preferably in Information Technology, Computer Science, and /or equivalent formal training or work experience.
61 Effective communication and interpersonal skills, with the ability to collaborate with global teams.
61 Fluent in English.
61 Experience in managing and overseeing IT compliance-related projects.
61 Experience in Third Party Risk Management (TPRM), including risk assessments, mitigation strategies, and lifecycle management.
61 Experience with Software Asset Management (SAM) and Business Impact Analysis (BIA).
61 Familiarity with IT MICS, SOX, and other relevant compliance frameworks.
61 Ability to manage multiple tasks and priorities in a fast-paced environment.
61 Relevant professional certifications, such as Certified Information Systems Auditor (CISA), or ISO/IEC 27001 Lead Implementer, are a plus.
13
5. COMPETENCIES
61 Deep understanding of IT compliance frameworks, standards, and regulations, and the ability to apply them effectively.
61 Ability to lead and manage IT compliance-related projects.
61 Proficiency in conducting comprehensive audits and assessments, identifying compliance gaps, and providing guidance to stakeholders.
61 Expertise in identifying, assessing, and mitigating risks, including third-party, cybersecurity, and data security risks.
61 Skill in introducing automation tools to enhance efficiency and accuracy.
61 Ability to design and implement security awareness programs.
Equal Opportunity Employer
Budweiser China is an equal opportunity employer that is committed to workplace diversity and non-discrimination. Budweiser China strives to create an inclusive work environment that is free from discrimination and harassment and that values the differences of our employees, shareholders, and consumers. Specifically, we prohibits discrimination or harassment against any applicant, employee, vendor, contractor, customer, or client on the basis of, race, color, national origin, ***, sexual orientation, gender identity or expression, religion, age, marital status, pregnancy, disability or military/veteran status, or any other basis prohibited by law.
注:联系我时,请说是在重庆人才网上看到的。
工作地点
地址:重庆渝中区来福士广场
查看地图
求职提示:用人单位发布虚假招聘信息,或以任何名义向求职者收取财物(如体检费、置装费、押金、服装费、培训费、身份证、毕业证等),均涉嫌违法,请求职者务必提高警惕。
职位发布者
李阳HR
百威投资(中国)有限公司
-
快速消费品
-
1000人以上
-
外商独资·外企办事处
-
西藏中路268号(人民广场地铁站15号口旁)
