Are you looking for a position where you can apply your IT expertise in IT risk management?

In the role of IT Risk & Compliance Officer, you'll take charge of pinpointing, assessing, and mitigating IT-related risks across our organization, focusing on areas such as cloud services and cybersecurity. You will work in close coordination with multiple teams to maintain the security and dependability of our IT infrastructure. 

About Barentz

Barentz is a leading global life science and specialty performance ingredients distributor. The company sources branded specialty ingredients from leading manufacturers worldwide and its ingredient experts provide value-added technical support which includes pre-mixing, blending, ingredient formulation and ingredient testing from its state-of-the-art, customized formulation centers and application laboratories in EMEA, Americas and Asia-Pacific.

Established in 1953, Barentz has operations in more than 70 countries with a strong presence in Europe and North America, and a rapidly growing network in Latin America and Asia-Pacific. With a turnover of €2.5 billion, the company employs over 2,600 people worldwide and serves more than 25,000 customers. For more information, visit: www.barentz.com.

About this role

Job Purpose:

The IT Security & Compliance Officer will be responsible for executing IT-related risk, security, and compliance policies and requirements in line with the Barentz global IT risk and security frameworks within the Global IT organization. This role demands collaboration with IT and business leadership, the Global CISO, and the Head of Risk Management & Internal Control, and reports directly to the CIO.

Key Responsibilities:

• Maintain and report on Barentz’s IT Risk & Security status and improvement initiatives.
• Define, implement, and continuously improve IT Risk-, Security-, and Compliance metrics.
• Support Risk Management and Internal Control in the global design and implementation of IT General Controls.
• Act as a liaison for external stakeholders on security matters (e.g., inquiries or security questionnaires).
• Execute and support IT audits and assessments.
• Supports on Access Management and user provisioning for Business Applications (ERP, CRM)
• Further, develop and maintain the Barentz Security Control Framework and Risk Heatmap.
• Identify and manage areas of improvement and work with IT to develop improvement plans.
• Coordinate and facilitate Vendor Security Assessments and Vulnerability Management.
• Conduct periodic global reporting on Risk & Security status.
• Participate in the CSIRT (incident logs, reporting, facilitating).
• Coordinate penetration testing and support for IT Operations.
• Develop, maintain, and implement IT security standards and guidelines in alignment with security policies.
• Key user and Global IT liaison for the Archer GRC tool for IT Risk-, Security, and IT Compliance.
• Align with Group Risk Management on processes, tools, and methodologies.
• IT Risk & Security regulations and regulatory compliance.