IT Risk & Compliance Lead

We are Coca-Cola Europacific Partners (CCEP) – a dedicated team of 42,000 people, serving customers in 31 countries, who work together to make, move and sell some of the world’s most loved drinks.We are a global business and one of the leading consumer goods companies in the world. We help our 2.1 million customers grow, and we are constantly investing in exciting new products, innovative technologies, and fresh ideas. This helps us to delight the 600 million people who enjoy our drinks every day.You will be reporting in our newly established Integrated Shared Service entity in the Philippines.About the RoleThe primary purpose of this role is to ensure the organization’s IT systems and processes comply with CCEP’s internal policies and procedures and that we are aligned to Sarbanes-Oxley Act (SOX), and other external requirements. The professional will be responsible for developing, implementing, and maintaining IT security policies, procedures and controls to safeguard the integrity, confidentiality, and availability of our information assets. This role involves conducting regular 2nd line review activities such as; risk assessments/audits and compliance checks to identify and mitigate potential security threats and vulnerabilities. The professional will collaborate with various departments to ensure that all IT-related activities align with regulatory standards and best practices, thereby supporting the organization’s overall governance, risk management, and compliance objectives.Key ResponsibilitiesEnsuring that our IT system landscape is managed in line with our control framework, policies and procedures and our SOX requirements as well as our other compliance frameworksEnsuring that future system integrations as part of our transformational projects are CCEP and SOX compliant.Identifying opportunities and improvements and drive for change to implement improvement processes and improved controlsEngaging and supporting the IT organization and business to align priorities and plans with key business objectives while ensuring that our key risks and controls are addressedActing as an empowered representative of the information security office during IT planning initiatives to ensure that security measures are incorporated into strategic IT plans and that service expectations are clearly definedResponsible for working with business and IT stakeholders to balance real-world risks with business drivers such as speed, agility, flexibility and performance. As such, the candidate is responsible to build strong relationships at all levels and across all business units and organizations, and understand business imperativesAbout You:At minimum, 8+ years of experience in IT Security, Compliance or audit roles with relevant SOX auditing and/or Risk Management experienceBachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.Advanced degrees (e.g., Master’s) in relevant fields is a preferredRelevant and recent working experience with a BIG-4 firm is a preferredHands-on SAP (ECC, GRC, HANA) experience in running detailed analysis through SAP default t-codes, programs or reportsExperience with management and implementation of information security risk management standards e.g. NIST or ISO Certifications such as ‘Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), CertifiedSarbanes-Oxley Expert (CSOE) or similar