Senior Compliance Analyst responsible for analyzing capital markets operations and ensuring regulatory compliance. Collaborating with teams to detect and manage market abuse risks.
About the role
- Lead Cyber Governance, Risk & Compliance at ZEISS, ensuring compliance with cyber regulations and enhancing the security framework. Oversee global team and strategies for cyber risk management and governance.
Responsibilities
- Contribute to the overall ZEISS Cyber Strategy by setting the long‑term direction for Cyber GRC across ZEISS and ensure that it evolves with business, technology, and regulatory developments
- Drive execution with the team by breaking down GRC-relevant target pictures into tangible roadmaps and actions for impactful implementation
- Provide the organization with structure and clarity by continuously improving the global ZEISS Cyber GRC Framework
- Take ownership of the cyber governance for ZEISS by defining and managing cyber-related policies, standards, and guidelines on enterprise-level
- Ensure the control landscape is comprehensive and accessible as part of the ZEISS Management System
- Establish enforcement mechanisms and reporting structures to ensure that minimum security baselines consistently are met throughout the ZEISS organization
- Take ownership of the enterprise‑wide cyber risk management framework that enables the ZEISS organization to assess, report and mitigate cyber-related risks in a consistent way
- Take ownership for cyber-related regulatory and contractual compliance and ensure that ZEISS remains prepared by monitoring emerging regulations and requirements
- Design and implement a forward‑looking third‑party security strategy that ensures partners, suppliers, and vendors meet ZEISS' security requirements
- Ensure cyber security due diligence and integration excellence during M&A activities
- Ensure Cyber GRC activities are aligned with business priorities and cyber-risks are embedded into operational and strategic decision‑making
- Functionally and disciplinarily leading a global team with high strategic relevance, fostering a culture of collaboration, innovation, and accountability within their team.
Requirements
- Advanced degree in Business Administration, Information Security, Information Systems, Cyber Security, IT Security, Security Engineering, Security Governance or a related discipline
- Proven professional experience in cyber security across multiple fields with related senior or leadership roles across global organizations
- One or more relevant and current information security certifications from an established organization (such as CISSP, CISM, CRISC, CISA, ISO/IEC27001 Lead Auditor or Implementor or equivalent)
- Strategic GRC leadership with the ability to define long-term Cyber GRC vision, translate target pictures into actionable roadmaps, and deliver outcomes via global teams
- Demonstrated expertise with major cyber security frameworks such as NIST CSF/800-53, ISO/IEC 27000 series and enterprise governance and policy management
- Experience in building and managing enterprise management systems and control frameworks, including audit readiness and risk reporting to executive stakeholder
- Proven record in driving compliance and audit readiness across multiple regulatory jurisdictions as well as contractual and consumer requirements
- Enable change and address various stakeholders to drive adoption of security baselines across business units, communicate clearly to non-technical leaders, and foster an inclusive and high-performance culture
- Experience in functionally and disciplinarily leading international and global teams within a business or technical environment, demonstrating a proven track record of strategic planning, team development, and operational excellence.
Benefits
- Health insurance
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Regulatory Engagement Lead managing key engagements with regulators and review processes at ANZ. Overseeing regulatory frameworks, processes, and reporting mechanisms for compliance and organizational goals.
Global Trade Compliance Specialist at Parexel coordinating trade compliance processes. Ensuring regulations are adhered to for the import and export of health - related goods.
Senior Associate, Workforce Compliance responsible for supporting compliance within energy workforce. Collaborating with contractors and clients to ensure regulatory adherence and documentation management.
Team Lead for Data Protection and Compliance at Proofpoint, leading implementations for clients to enhance their security posture and compliance requirements.
Intern supporting compliance management at ANBIMA, a financial market association overseeing integrity and legal compliance. Assisting with internal policies and external regulations.
Safety Manager coordinating holistic safety and risk programs for Aramark's operations. Implementing and enforcing safety standards and managing compliance with health and environmental regulations.
Senior Compliance Manager driving compliance risk management in wealth management at TD Bank. Overseeing regulatory compliance and managing a team for branch inspections and investigations.
Clinical Trials Regulatory Specialist at Winship Cancer Institute managing regulatory affairs and supporting clinical trials research with a focus on regulatory compliance and communication.
Regional Compliance BP as a strategy partner providing compliance consultation and oversight. Involved in compliance function in a leading healthcare company based in China.