Manager - IT Risk & Compliance

Dunkin' Brands - Canton, MA (30+ days ago)3.9

Location: Canton, MA, US

Dunkin’ Brands- Finance

Manager - IT Risk & Compliance

Do you want a fast-paced and exciting work environment? Grab a coffee, let’s chat.

Who We Are-

With an energy that is infectious and a singular dedication to building on our successes, our people have grown our company into one of the world’s leading franchisors of quick service restaurants with more than 19,000 points of distribution in more than 60 countries worldwide. The success that we have built from our many years of creating products that people love is something we delight in sharing with our approximately 1,100 employees. But the best part about working at Dunkin’ Brands is being associated with well-known brands that people identify with great taste, delicious products and consistent service across the globe.

We are poised for even greater success, and we need enthusiastic people who are looking for career growth at a company that encourages innovation and nurtures entrepreneurial thinking. If you enjoy a fast-paced environment, have a positive attitude, and are looking for a company that invests in its employees then please apply! For more information, please visit

What You’ll Be Working On-

Oversee and provide leadership for the development, implementation and validation of compliance for all critical IT regulatory areas including, but not limited to, Sarbanes-Oxley (SOX), Payment Card Industry Data Security Standards (PCI-DSS) and global data privacy regulations
Demonstrate organizational leadership and commitment by meeting commitments, communicating effectively and establishing good rapport with colleagues
Oversee corporate information security risk assessments, including penetration tests; security awareness training, social engineering testing, while working with the business to address identified security risks
Manage the third-party vendor on-boarding process by evaluating the security of prospective partners
Review third-party audits and security assessments including annual PCI assessment, SOC 1 & 2 reports, vulnerability assessments; coordinate responses to reports and assessments as appropriate
Oversee the effectiveness of both the tools and vendor partnerships required to execute a successful IT compliance program
Oversee remediation efforts for IT compliance exceptions with appropriate expertise, discretion and professionalism
Provide education and subject-matter expertise to franchisees and DBI field team members in the areas of PCI compliance and store-level data breach processes.
Perform risk evaluation, treatment and reporting with respect to IT risk across the organization
Establish context and an understanding of the current conditions in which the organization operates on an internal, external and risk management perspective
Provide IT Information Security program governance with respect to the protection of data through Dunkin’ Brands Information Security and PrivacyPolicy and Standards
Manage the annual Information Security and Privacy Policy review, update and approval process, as well as keep up with Industry Best Practice and develop new policies as needed
Ensure that Dunkin’ Brands Information Security and Privacy program is defined and elements are included to ensure the preservation of confidentiality, integrity and availability of information

What You’ll Need-

Bachelor’s degree with concentration in IT or business required
Minimum of 3-5 years of information security, IT audit and/or IT Risk Management experience
CISM, CISA, or PCI certification a plus
Detailed knowledge of relevant applications and technical platforms.
Project Management certificate or proven experience using standard project management methodology a plus
Experience auditing financial systems and processes, preferably in a restaurant or retail environment
Excellent partnering skills are required

Additional Perks

1:30 release every Friday
On site fitness gym
Casual dress code- jeans every day!
Endless supply of coffee, ice cream and donuts!