Ice Cream – Head of Governance, Risk and Compliance

Note: Deadline for applying is 23.59 the day before the Job Posting End Date. 

UNILEVER IS LOOKING FOR AN ICE CREAM – Head of Governance, Risk and Compliance

Location: The Netherlands (Amsterdam)

Full-time: Yes

Local conditions apply  

For the recruitment of this position, we would like to emphasize that local conditions apply to the position and for this vacancy in principle we will consider candidates based in the set locations. If you are based outside of these locations and you are interested to apply, please feel free to do so but at this stage we will not take your application forward. We will only consider your application if a decision is made to also recruit outside of the set locations. 

The Ice Cream division at Unilever is preparing to stand on its own, aiming to become an independent, EUR 8.3 billion publicly listed company by the end of 2025. We’re on a mission to create the ultimate snacking company.​ A place where growth, innovation, founder and ownership mentality, and performance are cultivated and rewarded. And where we craft extraordinary ice cream experiences - transforming ordinary moments into lasting memories.​ Because we know, life tastes better with ice cream.​

ABOUT THE MAGNUM ICE CREAM COMPANY:

The Magnum Ice Cream Company is all about growth. Growing our business. Growing our customers’ businesses. Growing our people’s careers.​ Growth begins with empowerment. So we free our people to be innovative, responsible entrepreneurs, driven and equipped to give our consumers more amazing products and unforgettable moments – and having fun doing it.​  

With 19.000 expert ice cream colleagues and iconic brands like Wall’s, Cornetto and Ben & Jerry’s, loved in 76 countries, we are the world’s largest Ice Cream company leading the industry.  We have been taking pleasure seriously for more than 100 years, serving happiness with every lick or scoop of ice cream for generations.  

We are investing to unlock the full growth potential of The Magnum Ice Cream Company as a standalone entity, once we separate from Unilever, which is planned to happen before the end of 2025.  

We dream big but keep things simple to act fast.​ 

If you want to grow with us, make an impact, and shape the future of Ice Cream, this is the place for you! 

JOB PURPOSE

As part of our growth strategy, we are seeking a highly skilled and experienced Head of Governance, Risk and Compliance (GRC) to join our dynamic team. This role will be part of the Global Information & Cyber Security team and reports directly to the CISO.

As a visionary leader, you will architect and drive our cybersecurity governance, risk, and compliance strategy. You will be at the forefront of shaping a secure, resilient, and compliant digital environment. This role is pivotal in developing and aligning cybersecurity initiatives with business priorities, regulatory landscapes, and emerging threats.

You will lead a high-impact team, collaborate across departments, and serve as a trusted advisor to senior leadership. The successful candidate will be one that has significant GRC expertise with a proven record of leading large-scale transformations, has a passion for emerging technologies and a desire to make a meaningful impact.

The newly created Ice Cream Technology function will drive the technology set-up, standalone design and implementation of all required technology capabilities to enable Unilever’s Ice Cream business to become a fully functioning standalone company, separate from Unilever.

KEY RESPONSIBILITIES:

Strategic Leadership

• Define and champion a forward-thinking GRC strategy and vision that supports enterprise growth and innovation which meets the legal/regulatory requirements of a global food manufacturing company and protects its business, people and technology.

• Partner with cross-functional teams – including Legal, Privacy, IT Audit, and business leaders – to embed security and compliance seamlessly into business practices.

• Drive the integration of cybersecurity GRC capabilities into digital transformation initiatives, ensuring secure-by-design principles are embedded from inception.

• Build and mentor a world-class GRC team, fostering a culture of accountability, agility, and continuous learning.

• Serve as a thought leader across cybersecurity domains, anticipating and translating complex risks into actionable mitigation strategies.

Governance

• Design and evolve a cybersecurity governance framework that aligns with business goals, the TMICC enterprise risk governance framework and industry best practices.

• Establish and enforce information and cyber security policies, standards, and procedures that support a secure and compliant enterprise.

• Facilitate regular reviews and updates for cybersecurity governance framework and related policies, standards and procedures to maintain compliance.

• Support other team members within the Cybersecurity team and participate in initiatives such as incident response planning and post-incident reviews to ensure lessons-learned are integrated into the cybersecurity governance and risk frameworks.

• Partner with Legal, IT, Audit, and business units to embed security into core operations from the outset.

Risk Intelligence & Assurance

• Lead enterprise-wide risk assessments to identify, evaluate, and prioritize cybersecurity threats.

• Develop and oversee mitigation strategies, ensuring proactive risk posture management.

• Maintain the enterprise risk register and lead the issue management lifecycle.

• Oversee the development and execution of the third-party risk management framework to ensure vendor compliance with regulatory, security, and operational risk requirements.

• Champion the use of data analytics and automation to enhance risk visibility and decision-making.

Compliance Stewardship

• Ensure the organization meets all relevant cybersecurity regulations and frameworks (e.g., NIST, NIS2, GDPR, SOX, etc.).

• Lead the development of a compliance roadmap aligned with evolving global regulatory landscapes, business plans and technology landscape.

• Drive security awareness and compliance culture across the organization through training, communication, and leadership engagement.

• Oversee internal and external audits, ensuring readiness and transparency.

• Stay ahead of regulatory changes and evolving compliance expectations.

What You Bring

Education & Experience

• 10+ years of experience in information/cyber security or IT risk, with at least 5 years in a GRC leadership role and previous experience in a manufacturing or FMCG company.

• Proven success in leading cybersecurity programs in complex, global organizations.

• Experience with establishing GRC programs within start-up, greenfield environments.

Skills & Competencies

• Strategic mindset with the ability to balance risk, compliance, and business agility.

• Exceptional leadership, communication, and stakeholder engagement skills.

• Deep knowledge of cybersecurity frameworks, regulatory requirements, and risk methodologies.

• Proficiency in cybersecurity tools, risk platforms, and governance technologies.

You Excel At

• Adept at leading organizational change and fostering a culture of continuous improvement.

• Making informed decisions that balance risk, compliance, and business objectives.

• Influencing across all levels of the organization with clarity and confidence.

• Navigating ambiguity and turning complexity into clarity.

WHAT IS IN IT FOR YOU?  
  
Unilever is the place where you can be yourself and bring your purpose to life with the work that you do – creating a better business and a better world. We offer an exciting & dynamic work environment where you can make things happen. Furthermore, we offer some great reward and benefits!   

• Attractive total remuneration package; excellent company pension, bonus and share scheme.  

• Flexible cross-disciplinary career opportunities and a wealth of training opportunities & wellbeing resources whenever and wherever.   

• Plenty of company-paid holidays to further ensure your work-life balance is maintained.   

• We encourage an inclusive culture, which comes to life with interchangeable public holidays, paid paternity leave of 6 weeks and our transgender policy.   

• Under the Hybrid Working principles, you will be expected to spend a minimum of 40% in the office or at customers, suppliers or partners to connect and collaborate.  For the time you work from home, we will ensure you are well equipped. When you are at the office, you can enjoy our tasty canteen with prepped food and own products. 

• Informal culture and being the first one trying our new products.    

• My Fitness Plan (reduction on your Fitness Subscription).  

• Home work allowance 

• Company laptop and mobile phone 

• Green Mobility Policy 

EXCITED?  

Join Unilever and our team! To apply, you must do so online. Please do not forget to upload your CV and a motivation letter.  Your application will be reviewed against our requirements, and we will be in touch shortly after the closing date to provide you with an update on the status of your application.  

Looking forward to meeting you!    

Please note this is a Direct Search led by Unilever. Applications from agencies will not be accepted, nor will fees be paid for unsolicited CVs.   

Equal Opportunity Employer: Unilever is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, disability, age, parenthood, pregnancy or any other basis protected by applicable law, and will not be discriminated against.   

By highlighting the gender diversity at the workplace, Unilever encourages women equally men to apply. If you look for a job after a long career break or after any type of leave, do not hesitate to apply.  

NOTE: Please save a copy of this vacancy for personal use as it will disappear from the website after closing of the role.