.IS/IT Risk and Compliance Specialist (PCI) We are looking for an IS/IT Risk and Compliance Specialist (PCI) to be part of our Nestlé Nespresso Digital and Tech Team. Position Snapshot Type of Contract: Permanent. Type of work: Hybrid. Work Language: Fluent Business English. The Role As an IS/IT Risk and Compliance Specialist (PCI) you will be ensuring the organization's compliance with Payment Card Industry Data Security Standard (PCI DSS) requirements and protecting sensitive cardholder data. Under the supervision and guidance of the primary Community of Practice Lead, you will be responsible for assisting with implementing, coaching and supporting an integrated risk, compliance and security management systems in accordance with the business risk appetite that safeguards IS/IT systems and payment card information. Additionally, as a PCI Compliance Specialist, you will be assisting with PCI assessments (including market assessments) and managing reports on remediation efforts. In This Role, You Will: Assist in identifying and mapping controls for solutions and processes related to PCI compliance within product/product groups and other IT teams. Collaborate with cross-functional teams to identify and map controls for solutions and processes, ensuring adherence to the Nestlé Security, Risk & Compliance framework. Contribute to the successful implementation of new security initiatives and projects within the organization, with a focus on protecting cardholder data. Assist in conducting comprehensive controls testing, management system reviews, and reporting to assess IT compliance and management system effectiveness. Act as a trusted partner to Nespresso global markets, offering guidance and support on IT risk and compliance matters. Track changes to the PCI-DSS regulatory requirements and assist the organization to adapt and implement controls to maintain PCI compliance. Review and assist in certifying PCI Internal Self-Assessment Questionnaires. Track and follow up on IT audits, internal reviews, or regulatory findings as corrective and preventative actions. What We're Looking For: Bachelor's degree in Computer Science or similar. 3+ years working with compliance regulations and standards, with a focus on PCI-DSS compliance. Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues. Experience developing and submitting IT audits and compliance reports. Experience with effective communication at different levels in the organization and in English. Extra Skills That Set You Apart: Demonstrated understanding of cloud services, data processing, hardware platforms, enterprise software applications and outsourced systems. General knowledge of business processes, management, and operations. Proven analytical, evaluative and problem-solving skills. We offer you: We offer more than just a job. We put people first and inspire you to become the best version of yourself