Global IT Compliance Lead

Job Description
Are You Ready to Make It Happen at Mondelēz International?
Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.
**This role is fully remote**
As the Global IT Compliance Lead, the successful candidate will be proficient at managing risk-based IT compliance initiatives across Mondelez. The role owns the day-to-day management of the annual Sarbanes-Oxley information technology compliance programs for all in-scope applications and supported technologies. In addition, the candidate will be performing compliance activities related to technology assurance areas around access management, vulnerability management and configuration management among others. Candidate will also demonstrate ability and experience in governance related activities including administrative management of risk and control registers as well as policies and standards.
How you will contribute:
Compliance Responsibilities (80%)

• Manage annual SOX Compliance audit with a specific focus of IT General Controls and Vendor SOX Compliance
• Perform quarterly compliance assurance testing.
• Document compliance testing evidence and results providing audit ready assurances.
• Maintain Management Action Plan (MAP) catalog with due dates.
• Manage monthly audit MAPs. Includes the timely communication of open MAPs an escalation as needed of risks to completing MAPs at their agreed delivery dates.
• Perform administrative activities in GRC Solution for compliance related activities.
• Manage ad-hoc external IT audits.
• GRC Lead for CTO/CISO focused internal audits.
• Manage compliance program reporting activities.

Risk Management Responsibilities (20%)

• Execute risk assessment testing supporting the Risk Lead.
• Document risk assessment results.
• Support Risk Manager in drafting risk assessment reports.
• Perform management of risk register (additions/editions/deletions, etc.) for risks identified as part of compliance activities.
• Manage quarterly/annual review of risk acceptance/exceptions.
• Manage risk assessment results in relevant compliance dashboards.
• Document Issues and Remediation activities for all exceptions noted during risk assessments.

Certifications:
ISACA CISA and/or CISM Certifications
Job specific requirements:

• 10 years in one or more of the following fields: Information Security, SOX Compliance, Internal Controls, Internal Audit or GRC,
• 5 years leading/managing internal and external audits (i.e., Sarbanes-Oxley SOX) for a public US company.
• Experience with GRC tools (e.g., Archer).
• Knowledge of security concepts and methodologies such as risk assessments, risk & controls, policies & standards, enterprise security strategies, network, and cloud security.
• Knowledge of security frameworks such as CIS and NIST.
• Excellent written and verbal communications skills, including presentational skills and able to clearly communicate issues to management and other key stakeholders.

Compensation:
The base salary range for this position is $117,400 to $161,425; the exact salary depends on several factors such as experience, skills, education, and budget. In addition to base salary, this position is eligible for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results.
In addition, Mondelez International offers the following benefits: health insurance, wellness and family support programs, life and disability insurance, retirement savings plans, paid leave programs, education related programs, paid holidays, and vacation time. Some of these benefits have eligibility requirements. Many of these benefits are subsidized or fully paid for by the company.
No Relocation support available
Business Unit Summary
The United States is the largest market in the Mondelēz International family with a significant employee and manufacturing footprint. Here, weproduce our well-loved household favorites to provide our consumers with the right snack, at the right moment, made the right way. We have corporate offices, sales, manufacturing and distribution locations throughout the U.S. to ensure our iconic brands-including Oreo and Chips Ahoy! cookies, Ritz, Wheat Thins and Triscuit crackers, and Swedish Fish and Sour Patch Kids confectionery products -are close at hand for our consumers across the country.
Mondelēz Global LLC is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Applicants who require accommodation to participate in the job application process may contact 847-943-5460 for assistance.
For more information about your Federal rights, please see eeopost.pdf; EEO is the Law Poster Supplement; Pay Transparency Nondiscrimination Provision; Know Your Rights: Workplace Discrimination is Illegal
Job Type
Regular
Information Security
Technology & Digital