Security/ Compliance Manager
Ho Chi Minh, Vietnam
H&M Group
We are a family of brands, driven by our desire to make great design available to everyone in a sustainable way.Company Description
At H&M we are on an exciting journey to become the leading destination for style, creativity & culture, empowering leaders and engaging teams. Customers and colleagues are the core of our business, in line with our transformation, we want to achieve clear ownership, fuel our salesmanship and innovative minds, enabling agility to build on our passion for customers and colleagues throughout the organization.
Job Description
Risk Management
- Conduct regular risk assessments based on risk identification, risk analysis and risk evaluation in order to minimize external or internal threat exposures to our business based on the demands from the Green Security Standard – Sales Security Department
- Global Compliance Programs are followed, executed and corrective measures are taken
- Ensure (implement and follow up) compliance with global policies, standards and local legislation
- Sustain Code of Ethics program as part of the values and way of working at all local operations. Carry out necessary investigations and reports
- Monitor, coordinate and follow up the processes and guidelines to achieve goals in the local organization
- Report major deviations and all KPI’s to the Regional Security/Compliance Manager
Health and Safety
- Company´s crisis management processes are followed by being an active part of the crisis team and conduct crisis trainings in the local organization
- Take preventive measures, recognize safety hazards and initiate actions to prevent incidents/accidents to our employees and customers
- Health & Safety incidents/accidents are reported, and analysed
- Raise awareness by providing the essential safety and security training materials. Trainings are completed on a regular basis as per global and local requirements
- Assess travel risks using the available tools and take appropriate mitigation measures if needed
Asset Protection
- Follow the global project management and sourcing process when it comes to opening a new or rebuild stores, offices or distribution centres
- Plan and purchase security services and global technical solutions based on our standards
- Technical knowledge on all global security systems, including specific market situations to prevent new risks and potential crisis for the company
- Coordination of inventory preparation with the relevant departments involved to secure the accuracy of the count and data
Loss Prevention
- Analysing the shrinkage results and follow up that the KPIs are reached based on the set targets
- Implement, maintain and follow up a systematic Loss Prevention Strategy for reducing shrinkage
- Ensure the available LP tools are being used to their full potential
- Initiate and execute fraudulent investigations
Information Security
- Reach and maintain compliance with PCI DSS and Information security (Cyber security) by making sure your organisation is taking their responsibility.
- Make sure that security incidents are managed and reported
- Make sure that information security awareness is reached in your organisation
Lead your Team
- Create conditions to enable performance of teams and individuals
- Identify and develop talents in order to build (future) organisation and diverse team
- Strengthen team and foster collaboration
Qualifications
- Formal education within Business administration
- Certification:
- CPP (Certified Protection Professional)
- PSP (Physical Security Professional)
- APP (Associate Protection Professional)
- PMP (Project Management Professional)
- Other trainings or professional courses relevant to the role can be an asset
- Fluent in English mandatory (written/spoken)
- Problem solving ability, analytical and numeracy skills
- Good communication, presentation and training skills
- Good organisational and planning skills
- Competent with Office 365 tools
- Strong knowledge on policy implementation and compliance
- High performing Manager with exceptional results
- Minimum 3 years’ Security experience or equivalent
- Managing a team
- P&L / Sales / Budget / Forecasting
- Driving transformation / implementing strategies
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Compliance KPIs PCI DSS Risk analysis Risk assessment Risk management Strategy
Perks/benefits: Career development Travel
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs