it risk, controls and compliance product manager

ABOUT YOUR NEW JOB:

The IT Risk, & Controls and Compliance Product Manager will play a key role in identifying and managing IT risks, analyzing risk trends, and ensuring effective risk mitigation in the IT and OT (Operational Technology) environments. This position focuses on strengthening risk tolerance decisions, promoting risk awareness within Group Digital & Technology Platform Services (DTPS), and maintaining clear communication with internal business stakeholders.

YOUR NEW KEY RESPONSIBILITIES:

• Prepare and present regular risk reports to senior management and communicate risk findings and recommendations to stakeholders. 

• Lead cross-functional risk assessments (IT, OT, cyber, data privacy) to identify potential risks, evaluate the impact and likelihood and collaborate with stakeholders to develop mitigation plans and controls. 

• Drive risk mitigation strategies, monitor risk remediation activities, and measure and report residual risks.

• Collaborates with the IT Risk Governance Product Manager and the Data Privacy Officer to ensure that all GRC processes are effectively and efficiently implemented in the corporate GRC platform.

• Develop and maintain IT Control and Risk Register.

• Develop and maintain policies, procedures, and guidelines and ensure these policies and procedures are communicated and adhered to throughout the organization.

• Assess response and post-incident analysis to prevent future occurrences and develop mitigating plans where is applicable.

• Stay updated on the latest Cyber Security risk management trends, technologies, and best practices. Continuously improve the organization's IT risk management framework.

• Assess and manage compliance and quality risks associated with third-party vendors and service providers. Supports activities related to security by design (contracts review, security clauses provision, supplier’s assessments). 

• Review and follow up on SOC reports from the vendors.

• Performs business impact analysis to identify business mission critical applications.

• Manage assessments to verify compliance with internal and external requirements. Supports initiatives and activities for security frameworks conformance assessments and certifications (NIST, ISO27001, IEC62443, NIS2, The Coca-Cola Company Standards, etc.). 

• Strong facilitation and collaboration skills to drive training sessions to educate employees on Cyber Security risk and practices and promote a culture of risk and control awareness and proactiveness across the organization.

• Communicate internally third-party vendors and service providers risks and ensure that vendors comply with the organization’s IT security and risk management policies. 

ARE THESE YOUR SECRET INGREDIENTS?

• Bachelor's or Master's degree in Cybersecurity, Information Technology, Risk Management, or a related field.

• 10+ years professional work experience in IT Audit and/ or IT Governance, and/ or Cyber and IT Risk.

• Extensive expertise of risk assessment methodologies, IT Control frameworks (NIST, Cobit, etc.), and regulatory compliance requirements.

• Hands on experience in designing processes, policies and controls and managing mitigation actions.

• Risk Analysis & Mitigation: Ability to identify, evaluate, and manage IT and cybersecurity risks.

• Strong analytical and problem-solving skills and ability to work with IT, business teams, and third-party vendors to ensure compliance with security policies.

• Excellent verbal and written communication skills to present risk reports to senior management, train employees, and collaborate across teams.

• Certifications CISA, CISM or CRISC.

• Excellent command of English Language.

• A proactive, detail-oriented, and strategic thinker who can effectively manage risks, ensure compliance, and foster a strong security culture across the organization.

ABOUT YOUR NEW TEAM:

We are Coca-Cola Hellenic, a growth-focused consumer goods business and strategic bottling partner of the Coca-Cola Company. We bottle, distribute and sell an unrivalled range of products in 29 markets in Europe, Africa and Eurasia. As we do, we create value for all stakeholders, support socio-economic growth and build a more positive environmental impact.

We bring together more than 30,000 people from over 70 nationalities, coming from five continents. The diversity of our markets, from mature to emerging economies, provides a wide range of attractive opportunities for growth.

We nurture our talents. We give opportunities to people across all functions and levels, as well as different geographies, backgrounds and education. We are willing to take a risk on the people we believe in, even if they don’t have the perfect experience. We have faith in what every person can be. 

And although we have so much to be proud of, we always stay humble. We believe the real magic happens – for us and for you – when we OPEN UP.

AT COCA-COLA HBC, DIVERSITY HELPS US THRIVE

At Coca-Cola HBC, we are an inclusive employer that thrives on diversity. This means our environment provides equal opportunities for all, regardless of race, color, religion, age, disability, sexual orientation, or gender identity. Join us in nurturing a culture where everyone belongs and contributes to our collective success.