IT GRC Lead

COFCO International is a global agri-business with a clear vision, strong values and a positive culture, focused on being a leader in the global grains, oilseeds and sugar supply chains. We provide the food the world needs in a responsible way. Headquartered is Geneva, Switzerland, we are ambitious, with the right structures and culture to meet the world's increasing and changing needs. With 11,000+ people in 35 countries, our global portfolio includes assets across the Americas, Europe, Africa, Middle East, and Asia-Pacific. We trade with over 50 nations, while providing farmers unique direct access to the growing Chinese market.

JOB PURPOSE:

The IT Security GRC Lead is responsible for driving the development, implementation, and oversight of IT security governance, risk, and compliance programs.  

This role ensures the organization's information assets are adequately protected by establishing and enforcing robust security controls, conducting internal audits, managing external audits activities and fostering a culture of security awareness and compliance.

RESPONSIBILITIES:

• Team Leadership and Development: Supervise and mentor the IT Security GRC team, assigning tasks, providing guidance, and ensuring effective execution of GRC activities;
• GRC Program Execution and Oversight: executing the IT Security GRC program, including risk assessments, compliance audits, and control implementation, ensuring alignment with regulatory requirements and internal policies;
• Stakeholder Communication and Reporting: communicate with stakeholders, providing regular updates, risk assessments, and compliance status, and generating reports for management;
• Process Improvement and Control Enhancement: Lead the team in identifying and implementing improvements to IT Security GRC processes and controls, ensuring continuous enhancement of the organization's security posture and adaptation to evolving threats and regulations.

REQUIREMENTS:

• Bachelor's Degree in a Relevant Field: computer science, information technology, cybersecurity, or a related field;

• At least 2 years of experience leading activities in Application Security, cybersecurity, IT governance, or IT Audit;

• Experience in performing IT Audits, Security Assessments (Threat Assessments, Architecture reviews, Penetration tests, Code Review);

• Exposure to GRC Activities: such as risk assessments planning, compliance audits preparations, or policy development, is advantageous; 

• Strong knowledge of IT fundamentals: Network Security, application security, operating systems, etc;

• Knowledge of GRC Frameworks: such as NIST, ISO 27001, GDPR, or similar;

• IT Audit or IT security Certifications such as CISA, CISSP, CIPP, or equivalent;

• Understanding of Security Controls: Familiarity with implementing and monitoring security controls, such as access controls, vulnerability management, and incident response;

• Understanding of Regulatory Compliance: such as GDPR, ISO 27001, or NIST;

• Experienced in Audit practice: evidence gathering, maintaining audit records, communicate audit findings, reporting audits and controls’ results;

• Ability to communicate in an effective manner across the organization with other teams or users;

• Fluent in English.

We kindly ask you to submit your CV in English.

COFCO International is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, age, national origin, disability status, protected veteran status or any other characteristic protected by law.   www.cofcointernational.com

Please refer to our Candidate Privacy Notice (https://www.cofcointernational.com/data-privacy-center/global-candidate-privacy-policy/) to know how COFCO collects and processes your personal data during your job application.