The primary responsibility of the Senior Compliance Consultant is to further build up the Unified Compliance Framework (UFC) for Cargill and validate that the selected Common Controls from the different worldwide applicable technical regulatory authoritative sources are appropriate and fulfilling Cargill’s regulatory requirements. He/she will be responsible for selecting and managing a solution which will facilitate Cargill’s UFC and allows for a complete overview and tracking of those common controls.
Secondary, the Sr Consultant in this role will further work across Cargill functions and businesses globally to provide technical and business support ensuring that the common controls are being correctly interpreted and executed properly to comply with all applicable technical regulatory requirements. This role helps the compliance team to identify, analyze and mitigate risks and issues that may impact security and global regulatory compliance. He/she also stays up to date on regulations and requirements as they pertain to how each country operates to feed and keep up to date the UFC.
50% Strategy and Planning
Select, setup and configure the solution for building and managing Cargill’s Unified Compliance Framework (UFC)
Select the technical regulatory authoritative resources that are applicable to Cargill’s business environment and build up the common control set that Cargill needs to comply with globally, creating the UCF as the foundation for the ISMS.
Build and stand up the Cargill Regulatory Compliance Program and create the Standard Operating Processes (SOPs) to support the program
Create a common global process to respond to External Inquiries and Audits from regulatory bodies, customers and suppliers related to requests for information regarding Cargill’s cybersecurity processes.
Select, setup and configure a tool that will support the full lifecycle of the Regulatory Compliance Program.
Coordinate the communication of the regulatory compliance program & processes globally with the Enterprise BU IT managers, TGRC team members and other key Enterprise and Corporate stakeholders
Draft and maintain the TGRC regulatory requirements related policies, standards, procedures and guidelines, aligning them wherever possible to a single model of compliance framework, and managing one-off requirements specific to certain regulatory requirements, all as part of the global roll out of the ISMS.
Maintaining the common control set within the UFC to ensure Cargill stays globally compliant with all technical regulations
Provide consultation regarding compliance needs and requirements to the business as called upon by team members and business leaders
Manage relationships with other areas within functions and business segments to maintain ongoing compliance status
Work with management, team members, and external regulatory assessors to collect, analyze, categorize, and archive evidence in compliance with regulations and policy
Perform periodic verification of compliance to specific global technical regulatory baseline requirements.
Participate in projects to identify technical regulatory requirements that need to be addressed
Advice TRA’s in performing assessments on new Global Systems and applications to ensure technical regulatory compliance
Advice TGRC and the Business with Documenting, Implementing & Managing Technical Compliance Requirements with respect to common controls in the UCF
Advice on documenting a compliance plan with internal/external stakeholders
Lead periodic regulatory audits (process and IT) and manage reporting.
Proactively identify improvement opportunities for IT Controls execution part of the UCF common control set.
Analyze and coordinate new compliance requirements through the defined change management process
Supports efforts of TGRC internal risk assessments
Monitor the Regulatory Compliance Program; provide recommendations on Controls, Processes and cost effective remediation efforts
Supports efforts of periodic Regulatory Assessments
Initiate and manage the IT Control testing program for compliance with the UFC Common Control Set
Relocation is not provided for this position.
Bachelor’s degree or equivalent work experience in lieu of degree
Minimum of 7 years of IT experience
Proven Experience in IT Governance and Compliance
Very strong, proven working knowledge of Risk Management, Information Security, Controls, and IT Audit practices or some combination thereof.
Experience in coordination and management of external compliance audits.
Experience managing transition projects for compliance management.
Knowledge of applicable laws and regulations globally, understanding and applying validated regulatory requirements
Ability to learn quickly, manage through systems and common processes, learning through on-the-job experience, listening for learning & alignment
Exemplary work ethic proven through consistent ability to create a variety of Compliance deliverables needed to support the program, including complex spreadsheets (e.g. Excel, Visio), effective PPTXs (PowerPoint) communicating key
concepts to both SMEs and end users, with the ability to quickly and accurately create, modify, review and revise the wide volume of deliverables the Compliance program needs to create
Exceptional teaming skills encompassing cross-functional teams, peer relationships, informing, and understanding and appreciating differences
Excellent communication skills encompassing interpersonal communications, persuasion and influencing skills, security communications in business terminology
Effective communication with senior leadership and medium to large audience discussions / presentations
Proven record of high performance in creating work product, problem solving, collaborating, planning/priority setting, timely decision making, perseverance, and a drive for results.
Very strong interpersonal skills in terms of effective listening, patience, composure, and conflict management.
Bachelors degree in Business or Information Systems
Experience in establishing and supporting setting up Information Handling or IT global Compliance programs for Fortune 100, government, or similar in an Organization
Prior knowledge of the Unified Compliance Framework
Prior client facing lead role a Compliance Area
Testing and management Experience in regulatory compliance