Our technology organization is transforming how we work at Smurfit Westrock. We align with our businesses to deliver innovative solutions that:
Address specific business challenges, integrate processes, and create great experiences
Connect our work to shared goals that propel Smurfit Westrock forward in the Digital Age
Imagine how technology can advance the way we work by using disruptive technology
We are looking for forward thinking technologists that can accelerate our focus areas such as building stronger foundational technology capabilities, reducing complexity, employing digital transformation concepts, and leveraging disruptive technology.
The opportunity:
The IT Compliance Senior Manager is responsible for leading, developing, and managing the implementation of the organization\u2019s global compliance program to ensure adherence to applicable laws, regulations, industry standards and internal policies across all regions of operation. They are responsible for ensuring that the Smurfit Westrock organization understands and follows global regulations, laws, and internal policies. The Senior Manager leads a team of compliance professionals and works cross functionally with IT, Legal, Audit and business leaders to maintain a robust security compliance posture.
How you will impact Smurfit Westrock:
Lead, design, implement, and continuously improve the organization\u2019s cybersecurity compliance framework in alignment with NIST, PCI DSS, GDPR, CCPA, NIS 2, and other applicable regulations and standards.
Monitor changes in laws, regulations, and industry standards, assess their impact, and proactively adapt the compliance programs.
Oversees the development and implementation of compliance policies, standards, procedures, and internal controls, ensuring effective adoption and ongoing adherence.
Scope, design, maintain, and govern a comprehensive inventory of regulatory, commercial, and organizational IT and cybersecurity compliance requirements.
Investigate compliance issues, violations, or complaints and recommend corrective actions.
Coordinate investigations into potential unlawful or fraudulent IT compliance activities, including data breaches or unauthorized disclosure of sensitive information.
Collaborate with the Training and Education Manager to drive organization-wide awareness and training programs on compliance obligations and security best practices.
Lead internal audit readiness efforts and manage external audit engagements, including regulator and certification audits.
Partner closely with Legal, Privacy, IT, and Security teams to remediate compliance gaps and ensure ongoing regulatory adherence and certifications.
Support and influence strategic cybersecurity initiatives, shaping the compliance strategy across the organization.
Lead the timely and accurate completion of customer security and compliance questionnaires, ensuring consistency with internal policies and regulatory requirements, and maintain a centralized repository of approved responses and supporting evidence.
Plan and deliver initiatives for business customers that support technology product owners and security-related activities, including GDPR and CCPA compliance.
Track, analyze, and report compliance metrics, risks, and findings to senior management, regulators, and external auditors.
Prepare and deliver regular compliance status updates and lead governance and stakeholder review meetings.
Promote a strong culture of compliance, ethical behavior, continuous improvement, and collaboration across functional areas.
Provide strategic and operational advisory on compliance risks, obligations, and best practices.
Lead, mentor, and develop a team of compliance professionals to support organizational goals.
Demonstrate a focus on problem-solving, continuous improvement, and teamwork across functional areas.
What you need to succeed:
Bachelor\u2019s degree in an IT- or related field, or a similar level of training.
Significant, diverse, and complex experience in the field of information security risk and/or compliance roles, with at least one role leading teams in compliance management.
An excellent working knowledge of security compliance, policy management, security frameworks (NIST) and regulations.
Possess excellent interpersonal skills, including interfacing effectively with a broad range of key stakeholders including management with IT, Accounting/Finance, Internal Audit, External Audit, Financial Compliance, and other corporate functions.
Possess strong analytical and critical thinking skills and ability to present data in easily accessible formats based on audience
Excellent written and verbal communication skills in English and the ability to communicate in both technical and business terms.
Experience in planning, organizing and developing information technology policies, procedures and practices
Excellent customer service, interpersonal, communication and organizational skills
Ability to work independently and as part of a team; and the ability to take initiative with minimal direction to solve problems.
Must be detail-oriented and have strong organizational skills.
Possess strong time management to meet deadlines.
A deep knowledge of IT compliance related processes is desired.
Proficient with MS Office, especially MS Excel, and GRC Tools.
Professional certifications in information security, risk management and/or compliance preferred (e.g., CISSP, CISM, CISA, CRISC, etc.).
What we offer:
Opportunity to lead and develop a dynamic, Global team of Compliance professionals.
Corporate culture based on loyalty, integrity, & respect.
Comprehensive training with numerous learning and development opportunities
An attractive salary reflecting skills, competencies, and potential.
A career with a global packaging company where Sustainability, Safety and Inclusion are business drivers and foundational elements of the daily work.
Smurfit Westrock is an Equal Opportunity Employer. We strive to create and maintain a diverse workforce where everyone feels valued, respected, and included. Smurfit Westrock does not discriminate based on race, color, religion, national origin, sex, age, disability, veteran status, sexual orientation, gender identity, or any other basis protected by federal, state, or local law.
Smurfit Westrock (NYSE:SW) is a global leader in sustainable paper and packaging solutions. We are materials scientists, packaging designers, mechanical engineers and manufacturing experts with a shared purpose: Innovate Boldly. Package Sustainably. Guided by our values of safety, loyalty, integrity, and respect, we use leading science and technology to move fiber-based packaging forward.
Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by state or federal law.
