Head of Risk & Compliance responsible for building frameworks and ensuring compliance at Penfold. Leading a team and enabling product delivery while adhering to regulatory requirements.
About the role
- IT Governance, Risk and Compliance Analyst responsible for NIS2 compliance at Emerson in Romania. Collaborating with stakeholders to enhance cybersecurity measures and reporting to leadership.
Responsibilities
- Support Network Information Security Directive (NIS2) assessments for our organization, evaluating their information security controls and practices
- Document controls, collect evidence and oversee compliance with NIS2
- Assist in identifying gaps in compliance with NIS2 requirements and support the development of remediation plans to close gaps
- Collaborate with stakeholders across Emerson to implement and maintain security measures aligned with NIS2 standards
- Monitor and track progress towards NIS2 compliance goals, ensuring timely completion of remediation plans
- Report and communicate NIS2 program and compliance initiatives to senior leadership
- Support Emerson businesses with external audits to achieve NIS2 compliance
- Provide training sessions and workshops on NIS2 requirements and best practices to internal & supply chain stakeholders to ensure NIS2 awareness as appropriate
- Stay up to date on any changes within the NIS2 framework and ensure ongoing alignment with evolving standards
- Build control assurance / compliance initiatives to improve the overall cybersecurity posture of the organization
- Lead and support various information security framework control gap assessments, implementation of framework management systems, gap remediation, ongoing management, and continual improvement initiatives in addition to NIS2 as needed
Requirements
- Bachelor’s Degree in IT, Information Systems, Computer Science, or related discipline
- 1-2+ years of experience in ISO 27001 & ISO 27002, TISAX, NIS2 or related information security frameworks
- Strong understanding of Information Security principles, standards, and frameworks
- Strong experience conducting security assessments and audits
- Effective communication and interpersonal skills to properly collaborate effectively with internal teams and external stakeholders.
- Project management skills to manage program expectations, building work programs/schedules.
- Willingness to travel (20%)
- Fluent in English
- Audit experience (preferred)
- Fluency/proficiency in other European languages (preferred)
Benefits
- At Emerson, we prioritize a workplace where every employee is valued, respected, and empowered to grow.
- We foster an environment that encourages innovation, collaboration, and diverse perspectives.
- Our commitment to ongoing career development and growing an inclusive culture ensures you have the support to thrive.
- Whether through mentorship, training, or leadership opportunities, we invest in your success so you can make a lasting impact.
- We believe diverse teams, working together, are key to driving growth and delivering business results.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Regulatory Affairs intern supporting compilation of Annual Reports and PADERs at Cosette Pharmaceuticals. Engaging with experienced professionals in a collaborative, learning environment.
Consultant - Forensics handling cyber security incident investigations for reputation management. Developing responses to security incidents leveraging forensic tools and incident response strategies.
Manager overseeing compliance and investigations in Forensic & Integrity Services at EY. Leading teams on compliance projects while building client relationships in a dynamic environment.
Vulnerability & Compliance Management Consultant performing vulnerability assessments and compliance reporting at Capgemini. Supporting infrastructure across Linux, Windows, and cloud environments with automation contributions.
IT Access Governance and Compliance Manager ensuring governance adherence and execution of compliance operations. Collaborating with IT teams to enhance control processes and frameworks within BAT.
Team Lead for VAT Compliance in a hybrid role overseeing compliance teams and processes. Leading operational standards and addressing VAT regulatory requirements in an international environment.
Senior Compliance Risk Manager ensuring Mercury products meet regulatory standards. Collaborating with cross - functional teams in compliance advisory for Payments, Lending, or Credit Cards.
Internal Auditor executing compliance and audit duties for security at International SOS. Collaborating with internal stakeholders to enhance information security practices.
Aquatic Resources Regulatory Specialist conducting aquatic resource delineations and assisting with permit applications for ICF. Collaborating with teams to support environmental compliance and restoration efforts.