How will you make an impact?HOW WILL YOU MAKE AN IMPACT?
Your key responsibilities will be the following:
1. Drive the consistent application of technology compliance best practices across Richemont's Group Platforms, ensuring adherence to industry standards and internal policies.
2. Champion a risk-based approach to technology governance, promoting a culture of compliance and ensuring robust oversight throughout the technology lifecycle.
3. Coordinate and support requirements & controls assessment by interacting with various teams such as Technology, Internal Control, Finance, Audit, Security and Data.
4. Establish and maintain a trusted relationship with Technology delivery teams and other key-stakeholders.
5. Work closely with the Security Enterprise Architect to translate compliance requirements into practical security controls and architectural patterns.
6. Coordinate and support data anonymization efforts, handling data deletion requests and contributing to process improvement.
7. Develop and maintain a centralized GRC risk register, providing oversight of cloud/SaaS risk management and ensuring effective technology lifecycle governance through comprehensive executive reporting and continuous monitoring.
8. Contribute to the development and maintenance of IT guidelines and procedures, ensuring they are up-to-date and effectively communicated across the organization.
9. Manage and execute ad-hoc projects, including Segregation of Duties (SoD) and Sensitive Access analysis, as well as quarterly access reviews, to identify and mitigate potential risks.
HOW WILL YOU EXPERIENCE SUCCESS WITH US?
10. MSc in Computer Science, Information System Management, or a related field.
11. 5+ years of experience in IT audit and compliance (experience in a leading audit or consulting firm preferred).
12. Risk management and IT compliance certification (, CISA, CRISC, CISM, CISSP) is a plus.
13. Deep understanding of information systems audit, application controls, information security, data privacy, and risk management principles.
14. Proven experience with risk, controls, and compliance frameworks (, ICS, SOX), SOC attestation, and SoD reviews.
15. Strong understanding of IT General Controls auditing on SAP and self-developed applications.
16. Solid knowledge of compliance frameworks (ISO, NIST, etc.).
17. Excellent analytical and problem-solving skills, with the ability to translate complex requirements into practical solutions.
18. Ability to work independently, prioritize effectively under pressure, and build trusted relationships with diverse teams across the organization.
19. Fluent in English and French; other languages are a plus.