Lausanne Metropolitan Area
Governance, Risk and Compliance (GRC) expert with more than 13 years of experience in IT audit, Information Security, Internal Controls and Risk Management for FMCG (Tobacco, Coffee), Luxury Watchmaking and Retail industries.
Enabling effective enterprise risk management (ERM) by providing advice, reporting and executive counsel to the company’s leadership team on enterprise-wide strategic risks and the company’s risk landscape, with a primary focus on risk areas impacting Product Categories (SFP / CC / W&H) and commercialization efforts.
Partnering with business functions to develop and implement appropriate risks responses and monitoring thereof by risk owners.
Responsible for the ongoing risk management and internal control activities (i.e. risk assessment, advisory and review activities) to support the global commercialization (B2C & B2B) of our multicategory portfolio of products. Leading a team of risk management and internal control specialists to identify, assess, monitor and recommend mitigating responses to key risks. Establishing with Global Process Owners their processes for key business and technology initiatives, identifying and prioritizing risks, advising on the design and implementation of an effective internal control framework.
The Compliance & Information Security Specialist is responsible for monitoring and assessing IT security risks and implementing, aligning and measuring the compliance with Nestlé Globe Standards & Policies. The role of the Compliance & Information Security Specialist is to ensure all Information Security practices within Nespresso CH are adhered to by all responsible managers and teams. He supervises all activities linked to Security Systems and Technology, Identity Management and Security Services. Responsibilities and Tasks: Compliance - Propose action plans & improvements to Business Units to ensure compliance with Nestlé Globe and IS/IT Standards. - Provide support in regards to IS/IT audits. Follow-up audit action plans with their owners. - Provide support to the Business departments or projects regarding risk management and compliance. - Organize Swiss Market risk analysis workshop and mitigation plans update. - Manage the yearly ICS self-assessment and its follow-up. - Lead compliance awareness sessions for Business Units and for new employees. Information Security - Responsible to ensure that Information Security Policies & Principles are respected and followed in the Swiss Market. - Design Information Security Program in accordance with business requirements & Nestlé / Nespresso HQ guidance. - Perform security assessments (internal/external applications, business processes, external service providers) and create/maintain KPIs & reports to effectively communicate risks and action plans to Senior Management. - Ensure that all Nespresso CH partners and third-party providers comply with Information Security Policies & Principles (Cloud: IaaS, PaaS, SaaS assessment, 3rd party risk management) - Ensure PCI Compliance of the Market.
Managed various IT Audit assignments for Industry companies (with a strong focus on SAP clients). Knowledge and experience include areas of IT Audit in SOX environments (subject to PCAOB oversight), Internal Controls review, Implementation of an Internal Control System, Pre-Implementation and Post-Implementation reviews for ERP roll-out. Contribution on IT Risk Diagnostic missions for major accounts in Switzerland. Records management and e-archiving specialist. Subject Matter Expert for Dynamics AX. Responsibilities and Tasks: - Assess the Information Systems governance following COBIT and ITIL frameworks - Perform ITGCs in SOX environments - Ensure the effectiveness of automated controls - Conduct Segregation of Duties and Sensitive Transactions reviews - Identify the weaknesses of Application Controls and the associated risks, make recommendations and produce documentation on how to mitigate those risks - Manage and coach teams of Assistants on several engagements
IT Audit • ITGCs • Automated Controls • Pre and Post-implementation reviews Data Assurance SAP Utilization and Benchmarking reviews
Title: "Determining the best approach for the commercialization of Neos mobc3 self-service platform in France"
Responsibilities and Tasks: - Oversee the ordering, storage, inventory, and distribution of equipment and supplies. - Assist the Storekeeping Manager in determining needs for additional equipment and supplies. - Confer with employees to determine purchasing needs. - Order material, supplies, services, and equipment through BirchStreet e-procurement system and negotiate purchases with vendors. - Realize and maintain a "Food Cost" audit of the Kitchen.