IT Compliance Manager

You may know McCormick as a leader in herbs, spices, seasonings, and condiments – and we’re only getting started. At McCormick, we’re always looking for new people to bring their unique flavor to our team.

McCormick employees – all 14,000 of us across the world – are what makes this company a great place to work.

We are looking to hire an IT Compliance Manager immediately in a Hybrid (50/50) capacity.

What We Bring To The Table:

The best people deserve the best rewards. In addition to the benefits you’d expect from a global leader (401k, health insurance, paid time off, etc.) we also offer:

• Competitive compensation

• Career growth opportunities

• Flexibility and Support for Diverse Life Stages and Choices

• Wellbeing programs including

Role Summary:

The IT Compliance Manager is a key member of the Cybersecurity Governance, Risk, and Compliance team and will report to the Senior Manager, Cybersecurity Governance, Risk & Compliance. This position will be responsible for leading assessments of security risk, establishing security standards, and ensuring compliance against those standards across all disciplines of the information security domain that support McCormick’s global brands and subsidiaries. The ideal candidate has a strong work ethic along with strong organizational, project management, superlative communication skills and problem-solving skills. Additional key qualities include the ability to work with others to drive results. This position requires excellent verbal and written communication skills spanning across all levels of management. Candidates must thrive in a demanding, fast-paced work environment that is energetic, driven, and team-oriented. This role will also work with SMEs across the organization to mature/design security controls & mitigate risk.

Key Responsibilities: 

• Identify and manage IT-related risks to ensure the security, integrity, and efficiency of the organization's IT infrastructure.
• Regularly report to IT and business leadership teams on risk management activities and potential impact.
• Work with GRC tool to develop and improve workflows and processes related to management of risk.
• Oversee risks identified and managed related to third-party vendor risk assessment program.
• Demonstrate effective teaming skills with the ability to work independently as needed; leading initiation, execution, and completion to finalization and reporting for key work tasks.

Desired Candidate Profile: 

• Bachelor’s degree in Information Technology, Information Systems, Risk Management, Accounting or similar.
• 12+ years of experience related to internal/external audit, information technology, or internal controls.

• Knowledge of IT, operational, and business processes.

• Knowledge of operating systems and database technologies (e.g., HANA, Windows, SQL), with a focus on SAP expertise and experience.

• Understanding of core IT general control processes (e.g., Access and Change Management, System Development Lifecycle, Information Security, IT Operations, etc.), automated control processes, and overall reporting to management.

• Familiarity with common technology, project management, and control assessment frameworks (e.g., NIST, COBIT).

• Excellent written and verbal communication skills along with the ability to clearly communicate to key Business Partners.

• Interpersonal skills; ability to work collaboratively on a team.

Agencies: McCormick as needed will work with external recruitment vendors through our Agency Portal. Unless previously contacted, McCormick does not accept unsolicited resumes from external recruiting agencies.
 
McCormick & Company is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, colour, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.
 
As users of the disability confident scheme, we guarantee to interview all disabled applicants who meet the minimum criteria for the vacancy/ies.