.We are looking for an IS/IT Risk and Compliance Specialist (PCI) to be part of our Nestlé Nespresso Digital and Tech Team. Position Snapshot Location: Nespresso Hub, Barcelona, Spain.Type of Contract: Permanent.Type of work: Hybrid.Work Language: Fluent Business English. The Role As an IS/IT Risk and Compliance Specialist (PCI), you will ensure the organization's compliance with Payment Card Industry Data Security Standard (PCI DSS) requirements and protect sensitive cardholder data. Under the supervision and guidance of the primary Community of Practice Lead, you will assist in implementing, coaching, and supporting an integrated risk, compliance, and security management system in accordance with the business risk appetite that safeguards IS/IT systems and payment card information. Additionally, you will assist with PCI assessments (including market assessments) and manage reports on remediation efforts. In This Role, You Will: Assist in identifying and mapping controls for solutions and processes related to PCI compliance within product/product groups and other IT teams. Collaborate with cross-functional teams to ensure adherence to the Nestlé Security, Risk & Compliance framework. Contribute to the successful implementation of new security initiatives and projects, focusing on protecting cardholder data. Assist in conducting comprehensive controls testing, management system reviews, and reporting to assess IT compliance and management system effectiveness. Act as a trusted partner to Nespresso global markets, offering guidance and support on IT risk and compliance matters. Track changes to the PCI-DSS regulatory requirements and assist the organization in adapting and implementing controls to maintain PCI compliance. Review and assist in certifying PCI Internal Self-Assessment Questionnaires. Track and follow up on IT audits, internal reviews, or regulatory findings as corrective and preventative actions. What We're Looking For: Bachelor's degree in Computer Science or similar. 3+ years working with compliance regulations and standards, with a focus on PCI-DSS compliance. Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues. Experience developing and submitting IT audits and compliance reports. Experience with effective communication at different levels in the organization and in English. Extra Skills That Set You Apart: Demonstrated understanding of cloud services, data processing, hardware platforms, enterprise software applications, and outsourced systems. General knowledge of business processes, management, and operations. Proven analytical, evaluative, and problem-solving skills. We Offer You: We offer more than just a job. We put people first and inspire you to become the best version of yourself. Great benefits including competitive salary and a comprehensive social benefits package