Senior Compliance Specialist jobs at Master Lock

Join our Team at Helen of Troy as a Safety Agency Compliance Director and make an immediate impact on our trusted brands, including: OXO, Hydro Flask, Osprey, Honeywell, PUR, Braun, Vicks, Hot Tools, Drybar, Curlsmith, and Revlon. Together, we build innovative and useful products that elevate people's lives everywhere every day! Look around your home, and you'll find us everywhere: In your kitchen, living room, bedroom, and bathroom. We are already making your everyday lives better. We are powered by knowledgeable, enthusiastic, and forward-thinking people committed to developing a culture of inclusion. Whether you are just starting your career or in need of a challenge, we recognize, develop, and empower talent! Position: Safety Agency Compliance Director Department: Engineering Work Locations: * El Paso, TX * Marlborough, MA Hybrid Schedule: At Helen of Troy, we embrace a flexible hybrid work model designed to support collaboration and productivity. For roles eligible for hybrid work, our standard schedule includes in-office collaboration from Tuesday through Thursday, with the option to work remotely on Mondays and Fridays. Any updates to this model will be communicated in advance. Please note that hybrid eligibility and schedules may vary based on business needs and manager expectations. What you will be doing: Our Safety Agency Compliance Director ensures that all department projects align with all regulations & specifications for all business units and that products delivered to our consumers are quality, reliable, and safe. This includes safety & health, environmental, and quality standards, as well as any ethical policies of the company. This position is responsible for ensuring all HELE products meet or exceed all current & future regulations & specifications, leading/mentoring/managing a team of certified Managers and Techs, and building/maintaining/expanding a lab that stays in sync with all relevant regulations & specifications. All activities must be performed according to a defined departmental budget. * Supervise complete project list for the Safety Agency Compliance team and delegate work to applicable Associates for timely delivery of services. * Facilitate communication of lab services to BU partners. * Sign off on all Agency Submissions with the assistance of the Safety Agency Compliance team to ensure product compliance with all relevant regulations and specifications, resulting in an Agency Release Notice (ARN) receipt prior to production. * Work with Agencies and 3rd Part Laboratories on certifications and negotiate service costs & SLAs. * Lead all aspects of & align APO Safety Agency Compliance lab services for supplemental support to the Safety Agency Compliance Program. * Answer customer or Legal Department questions related to product Safety Agency Certifications. * Assure all CEC (Unlisted components) are evaluated annually. * Provide other various lab service support on projects, such as NPD DFMEA & DQTPS for all BUs, Instruction Manual & Graphics review for Creative Department, internal Engineering Test Methods (ETM's) creation, etc. * Stay up to date with all current & future regulations & specifications for all BU products. * Maintain Program Certification from the Agency per all Compliance. * Standards within our Annex List in our Satellite Program: UL 153, UL 355, UL 474, UL 499, UL 507, UL 746C, UL 859, UL 867, UL 962, UL 982, UL 998 / CSA C22.2 #104, UL 1004-1, UL 1004-2, UL 1004-3, UL 1026, UL 1028, UL 1030, UL 1054, UL 1082, UL 1097, UL 2111, UL 1278, UL 1431, UL 1559, UL, 1647, UL 5085-3, CSA C22.2 #0.17, CSA C22.2 #250.4, CSA C22.2 #36, CSA C22.2 #46, CSA C22.2 #55, CSA C22.2 #64, CSA C22.2 #67, CSA C22.2 #77, CSA C22.2 #92, CSA C22.2 #113, CSA C22.2 #187, CSA C22.2 #189, CSA C22.2 #1335.1, CSA C22.2 #1335.2.9, CSA C22.2 #1335.2.14, CSA C22.2 #1335.2.15, IEC 60335-1, EN 60335-1, IEC 60335-2-8, EN 60335-2-8, IEC 60335-2-23, EN 60335-2-23, IEC 60335-2-30, EN 60335-2-30, IEC 60335-2-32, EN 60335-2-32, IEC 60335-2-40, EN 60335-2-40, IEC 60335-2-65, EN 60335-2-65, IEC 60335-2-80, EN 60335-2-80, IEC 60335-2-98, EN 60335-2-98, IEC 60335-2-101, EN 60335-2-101, UL 60335-1, UL 60335-2-8, CSA C22.2 60335-1, CSA C22.2 60335-2-9, UL 61058-1, CSA C22.2 60335-2-15, CEC Testing, UL 4200A. * Monthly/annual departmental budget management. * Mentor and develop lab Associates to expand their Agency Safety Compliance certifications. Skills needed to be successful in this role: * Acute attention to detail * Able to communicate, accurately, and concisely with other staff members. * Able to thrive under pressure and meet key deadlines. Minimum Qualifications: * Bachelor's Degree (or equivalent combination of education, training, and experience) from an accredited four-year college or university in a related profession/field. * 8 years' experience working in a laboratory directly involved with Safety Compliance Agency Standards. * Direct management experience of laboratory and technical associates. * MS Office experience: Excel, SharePoint, PowerPoint, Word, and Outlook * Authorized to work in the United States on a full-time basis. In Massachusetts, the standard base pay range for this role is $140,825-$176,051 annually. This base pay range is specific to Massachusetts and may not be applicable to other locations. Actual salaries will vary based on several factors, including but not limited to location, experience, skill level, and performance. The range listed is just one component of the total compensation package for employees. Benefits: Salary + Bonus, Healthcare, Dental, Vision, Paid Holidays, Paid Parental Leave, 401(k) with company match, Basic Life Insurance, Short Term Disability (STD), Long Term Disability (LTD), Paid Time Off (PTO), Paid Charitable (volunteer) Leave, and Educational Assistance. Wondering if you should apply? Helen of Troy welcomes people as diverse as our brands! Have the confidence to come as who you are because your point of view, skills, and experience will make us stronger. If you're eager to share new ideas and try new things, we want to hear from you. #li-ab1 #LI-HYBRID For more information about Helen of Troy, visit ******************** You can also find us on LinkedIn, and Glassdoor. Helen of Troy is an Equal Opportunity/Affirmative Action Employer. We are committed to developing a diverse workforce and cultivating an inclusive environment. We value diversity and believe that we are strengthened by the differences in our experiences, thoughts, cultures, and backgrounds. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws. We will provide individuals with disabilities with reasonable accommodations to participate in the job application process. If you would like to request an accommodation, please contact Human Resources at **************. Founded in 1968, Helen of Troy is a prominent player in the global consumer products industry, offering diverse career opportunities across North America, South America, Europe, and Asia. We boast a collection of renowned brands such as OXO, Hydro Flask, Osprey, Honeywell, PUR, Braun, Vicks, Hot Tools, Drybar, Curlsmith, Revlon, and Olive & June - many of which rank #1, #2, or #3 in their respective categories, making the Helen of Troy name synonymous with excellence and ingenuity. At Helen of Troy, our strategy involves acquiring brands that we can integrate and enhance, amplifying their unique attributes to drive growth and profitability. Embracing a culture of collaboration internally and externally, we are committed to providing innovative solutions tailored to consumers, operational excellence, global scalability, and exceptional shared services to support our brand portfolio. This dedication to fostering development and success sets Helen of Troy apart as a pioneer in the industry, propelling our brands to unparalleled heights of success and recognition worldwide. The above statements are intended to describe the general nature and level of work performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities and duties required of personnel so classified. Management retains the right to add or to change duties of the position at any time.

Join us and celebrate the beauty of human experience. Create for happier, healthier lives, with love for nature. Together, with our customers, we deliver food innovations, craft inspired fragrances and develop beauty and wellbeing solutions. There's much to learn and many to learn from, with more than 16,000 employees around the world to explore ideas and ambitions with. In the USA, we develop, market and produce a wide array of solutions from our 25 most innovative sites, based across the country. Stretch your skills, create and get inspiration from passionate colleagues. Every day, your energy, your thirst for knowledge, and your creativity will shape our future, making a positive difference on billions of people. Every essence of you enriches our world. We are Givaudan. Human by nature. As the global senior expert for Chemicals Management & Compliance, you will be the primary compliance advisor for the business in several technical areas, including Dangerous Goods Regulations, Hazardous Materials Transportation and Warehousing, Transport Emergency Response Management and Controlled Products Regulations. You will lead the development of global policies, processes and systems to ensure regulatory chemical compliance. You'll build cross functional collaboration with Commercial, Science & Technology, Regulatory Affairs, Trade Affairs, Supply-Chain, Site Operations, and Legal Compliance to embed industry best practices and support strategic chemical compliance programs. Additionally, you will represent us with regulatory agencies and industry associations, improving and leading change in response to evolving global chemical regulations. Reports to: Global Head Chemicals Management & Compliance Your Location: East Hanover, NJ, US; Other Possible locations: Cincinnati, Ohio, US; Kemptthal, Switzerland; Vernier, Switzerland. You Will: * Influence and advise the business on global Chemicals Management & Compliance (CMC) strategy, in Dangerous Goods and Controlled Products. * Assess current global compliance status and ensure execution of the Global EHS Strategy, * Lead global governance by engaging with partners across regions and departments. * Represent us with regulatory authorities and industry associations on CMC matters. * Advise management on latest regulations and compliance requirements. * Coordinate and support implementation of global EHS directives and guidelines across sites. * Ensure communication on legal updates and lead global change management for CMC topics, especially related to Dangerous Goods and Controlled Products Regulations. * Ensure systems provide accurate and compliant product safety information aligned with applicable regulations and internal corporate standards. * Support business project execution for ensuring compliance with new regulations. * Monitor SAP EHS system performance and coordinate issue resolution with Global EHS CoE CMC and IT department. * Communicate with government agencies on Controlled Products and Dangerous Goods topics, and also to address transport-related emergency response issues. * Develop and deliver technical guidance documents, training, audits, and site inspections. * Promote continuous improvement to enhance global CMC practices and business compliance performance, Your Profile: * University degree in chemistry, biochemistry, food chemistry, engineering, or related field. * 10+ years of Chemicals Management & Compliance industry experience. * Fluent in English; additional language skills are a plus. * Certified in Dangerous Goods transport regulations (e.g. IMDG, IATA, ADR, CFR). * Experience with global chemical compliance programs. * Chemistry and product safety expertise. * Technical expert in Dangerous Goods, Controlled Products (Drug Precursors and Chemical Weapon Precursors), Hazardous Materials Transport and Warehousing and Hazardous Materials Transport Emergency Response Management. * Knowledge in Product Stewardship and Drug Precursors related regulations (such as DEA) and International conventions. Compensation and Benefits The established salary range for this position is $120,000-$150,000 annually for US locations. Actual compensation will depend on individual qualifications. Includes medical, dental, and vision coverage, and a high-matching 401(k) retirement plan. #ZR #LI-Onsite At Givaudan, you contribute to delightful taste and scent experiences that touch people's lives. You work within an inspiring teamwork culture - where you can thrive, collaborate and learn from other talented and passionate people across disciplines, regions and divisions. Every essence of you enriches our world. Diversity of perspectives fuels innovation and fosters deeper connections with our employees, customers, and partners. At Givaudan, we are dedicated to cultivating an inclusive environment where every individual's voice is valued and has the power to shape our world. Join us in making a difference together. Remote working: Hybrid At Givaudan, you contribute to delightful taste and scent experiences that touch people's lives. You work within an inspiring teamwork culture - where you can thrive, collaborate and learn from other talented and passionate people across disciplines, regions and divisions. Join us and Impact Your World Diversity drives innovation and creates closer connections with our employees, customers and partners. Givaudan embraces diversity and is committed to building an inclusive environment where everyone impacts our world.

We are seeking a dedicated Labor Compliance Specialist to ensure comprehensive labor law compliance across our solar and civil construction projects. Reporting to the Director, Accounting, this role focuses primarily on prevailing wage administration, labor standards enforcement, and regulatory compliance. The specialist will work closely with project management teams to ensure all projects meet federal and state labor requirements while maintaining detailed documentation and conducting thorough compliance monitoring. Essential Duties and Responsibilities: Core duties and responsibilities include the following. Other duties may be assigned. Project Management & Compliance Administration Manage and monitor prevailing wage compliance on multiple solar and civil construction projects throughout project lifecycles Work with field project manager(s) to develop and maintain project schedules, budgets, and resource allocation plans Coordinate with contractors, subcontractors, and stakeholders Review, verify, and approve contractor and subcontractor wage classifications and pay rates Maintain accurate and up-to-date documentation for wage determinations, worker classifications, and labor standards Coordinate closely with payroll department on all wage-related compliance issues Ensure all projects comply with federal Davis-Bacon Act and applicable state prevailing wage laws Monitor certified payroll submissions and conduct compliance audits Conduct training sessions for project teams on prevailing wage requirements Coordinate and report payroll and prevailing wage data to customers, auditors, and other relevant stakeholders Documentation and Reporting Prepare, review, and submit all required prevailing wage reports to federal and state agencies Maintain comprehensive project documentation including payroll records, wage determinations, and compliance certificates Generate regular project status reports for management and stakeholders Ensure proper record retention in accordance with federal and state requirements Investigate and resolve wage and hour disputes in coordination with payroll and legal teams Risk Management Identify potential compliance risks and develop mitigation strategies Conduct regular site visits to verify wage compliance and worker classifications Manage relationships with workforce development organizations Work with payroll to address any prevailing wage related wage and hour disputes Required Qualifications Education and Experience Bachelor's degree in Construction Management, Engineering, Business Administration, or related field preferred Minimum 2 years of construction project management experience Minimum 2 years of experience with prevailing wage compliance on public works projects Experience managing solar or renewable energy construction projects preferred Civil construction experience (roads, utilities, infrastructure) preferred Technical Knowledge Thorough understanding of Davis-Bacon Act and state prevailing wage laws Knowledge of construction industry wage classifications and job descriptions Familiarity with certified payroll requirements and reporting procedures Understanding of federal and state procurement regulations Experience with project management software and construction scheduling tools Certifications (Preferred) Prevailing Wage Compliance certification Project Management Professional (PMP) certification Certified Construction Manager (CCM) Required Skills Technical Skills Experience with construction accounting and payroll systems Proficiency in project management software Advanced knowledge of Microsoft Office Suite, particularly Excel Familiarity with solar PV system design and installation processes Understanding of civil construction methods and materials Communication and Leadership Strong written and verbal communication skills Ability to lead cross-functional teams and manage multiple stakeholders Experience presenting to government officials and regulatory agencies Conflict resolution and problem-solving capabilities Ability to work effectively with diverse workforce including union and non-union labor Analytical and Organizational Strong attention to detail and accuracy in documentation Ability to analyze complex wage determinations and classifications Excellent organizational skills with ability to manage multiple projects simultaneously Critical thinking skills for risk assessment and mitigation Working Conditions/Physical Requirements Office-based work with regular travel to construction sites Occasional weekend and evening work to meet project deadlines Outdoor work in various weather conditions during site visits Ability to lift up to 25 pounds and navigate construction sites safely Prolonged periods sitting at a desk, typing and talking A remote working environment is available for the right candidate. Regular hours with occasional overtime during payroll processing weeks or benefits enrollment periods. Benefits Competitive salary commensurate with experience Three weeks of paid vacation after 90 days (first year is pro-rated based on start date) Up to 9 paid company holidays Paid sick time Company-paid Life Insurance ($75,000) Company-paid Short-term and Long-term Disability Insurance Medical, Dental, and Vision Insurance: Offering four medical plan options, with one plan fully covered at 100% by the company. 401(k) retirement savings plan with company matching Health Savings Account (HSA) Flexible Spending Accounts (FSA) Additional Information Criminal background check and pre-employment drug screen required. National Power LLC is an Equal Opportunity/Affirmative Action Employer and VEVRAA federal contractor and affords equal opportunity to all applicants for all positions without regard to race, color, religion, gender, national origin, age, disability, veteran status, gender identification or any other status protected under local, state or federal laws.

Who we are Samsara (NYSE: IOT) is the pioneer of the Connected Operations™ Cloud, which is a platform that enables organizations that depend on physical operations to harness Internet of Things (IoT) data to develop actionable insights and improve their operations. At Samsara, we are helping improve the safety, efficiency and sustainability of the physical operations that power our global economy. Representing more than 40% of global GDP, these industries are the infrastructure of our planet, including agriculture, construction, field services, transportation, and manufacturing - and we are excited to help digitally transform their operations at scale. Working at Samsara means you'll help define the future of physical operations and be on a team that's shaping an exciting array of product solutions, including Video-Based Safety, Vehicle Telematics, Apps and Driver Workflows, and Equipment Monitoring. As part of a recently public company, you'll have the autonomy and support to make an impact as we build for the long term. About the role The Governance, Risk, and Compliance Analyst is responsible for ensuring appropriate security controls and compliance requirements are implemented across Samsara's systems. You will collaborate with a global team to drive third-party vendor reviews and monitoring, security audits, such as SOC 2, ISO, and GovRAMP, and manage key efforts around enhancing and measuring Samsara's security posture. You take Security seriously and strive to build low friction solutions developed in close partnership with others. On a typical day, you might meet with Samsara's legal or procurement team to discuss an ongoing review of a vendor, collaborate with teams in engineering to collect evidence for an upcoming audit report, or work to create new classifications of data access permissions for various employee categories in the company. This role is open to candidates residing in the US except Alaska, Austin Metro, Boulder Metro, California, Chicago Metro, Connecticut, Dallas Metro, Denver Metro, Houston Metro, Maryland, Massachusetts, New Jersey, New York, Rhode Island, Seattle Metro, and Washington, D.C. You should apply if: You want to impact the industries that run our world: Your efforts will result in real-world impact - helping to keep the lights on, get food into grocery stores, reduce emissions, and most importantly, ensure workers return home safely. You are the architect of your own career: If you put in the work, this role won't be your last at Samsara. We set up our employees for success and have built a culture that encourages rapid career development, countless opportunities to experiment and master your craft in a hyper growth environment. You're energized by our opportunity: The vision we have to digitize large sectors of the global economy requires your full focus and best efforts to bring forth creative, ambitious ideas for our customers. You want to be with the best: At Samsara, we win together, celebrate together and support each other. You will be surrounded by a high-calibre team that will encourage you to do your best. In this role, you will: Communicate with senior management the current status of vendor and third-party risks Support security audit efforts around SOC 2, ISO 27001, FedRAMP, and other related compliance framework. Drive automation and efficiency in the TPRM program through the use of third-parties, such as Zip and Vanta, and creating native solutions; ensuring security reviews and reassessments scale with company growth. Partner with Procurement, Legal, and Privacy to ensure vendor risks are identified, documented, and mitigated throughout the vendor lifecycle. Champion, role model, and embed Samsara's cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices Minimum requirements for the role: 3+ years of experience in the governance, risk, and compliance space Experience implementing or maintaining vendor-risk programs Experience performing security and maturity assessments Supporting the creation or maintenance of risk registers, compliance inventories, and control mappings across internal and external systems Ability to work with systems teams to collaboratively implement security controls across a diverse range of systems, such as Okta, Netsuite, Salesforce, and internal tooling Professional experience coordinating and interacting with external auditors, internal engineering teams, business stakeholders, senior leadership, and security operations teams on procurement activities, audit controls and compliance requirements Experience conducting vendor risk assessments, including reviewing security certifications, penetration tests, and policies. Strong understanding of vendor integration risks and permission scoping across SaaS platforms (eg. Slack, Google Workspace, and Salesforce) Ability to translate complex technical findings and requirements into clear business risks and requirements to non technical stakeholders. An ideal candidate also has: Experience working with NIST Cybersecurity Framework profiles, SOC 2, ISO 27001, or similar frameworks Experience working within common GRC and procurement platforms such as Zip and Vanta. Experience managing high volumes of vendor requests and competing priorities. Prior assessment experience in the Software-as-a-Service industry Samsara's Compensation Philosophy: Samsara's compensation program is designed to deliver Total Direct Compensation (based on role, level, and geography) that is at or above market. We do this through our base salary + bonus/variable + restricted stock unit awards (RSUs) for eligible roles. For eligible roles, a new hire RSU award may be awarded at the time of hire, and additional RSU refresh grants may be awarded annually. We pay for performance, and top performers in eligible roles may receive above-market equity refresh awards which allow employees to achieve higher market. The range of annual base salary for full-time employees for this position is below. Please note that base pay offered may vary depending on factors including your city of residence, job-related knowledge, skills, and experience.$87,762-$118,000 USD At Samsara, we welcome everyone regardless of their background. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender, gender identity, sexual orientation, protected veteran status, disability, age, and other characteristics protected by law. We depend on the unique approaches of our team members to help us solve complex problems and want to ensure that Samsara is a place where people from all backgrounds can make an impact. Benefits Full time employees receive a competitive total compensation package along with employee-led remote and flexible working, health benefits, and much, much more. Take a look at our Benefits site to learn more. Accommodations Samsara is an inclusive work environment, and we are committed to ensuring equal opportunity in employment for qualified persons with disabilities. Please email ********************************** or click here if you require any reasonable accommodations throughout the recruiting process. Flexible Working At Samsara, we embrace a flexible working model that caters to the diverse needs of our teams. Our offices are open for those who prefer to work in-person and we also support remote work where it aligns with our operational requirements. For certain positions, being close to one of our offices or within a specific geographic area is important to facilitate collaboration, access to resources, or alignment with our service regions. In these cases, the job description will clearly indicate any working location requirements. Our goal is to ensure that all members of our team can contribute effectively, whether they are working on-site, in a hybrid model, or fully remotely. All offers of employment are contingent upon an individual's ability to secure and maintain the legal right to work at the company and in the specified work location, if applicable. Fraudulent Employment Offers Samsara is aware of scams involving fake job interviews and offers. Please know we do not charge fees to applicants at any stage of the hiring process. Official communication about your application will only come from emails ending in ‘@samsara.com' or ‘@us-greenhouse-mail.io'. For more information regarding fraudulent employment offers, please visit our blog post here.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

About Meridian Meridian Bioscience is a fully integrated life science company that develops manufactures, markets and distributes a broad range of innovative diagnostic products. We are dedicated to developing and delivering better solutions that give answers with speed, accuracy and simplicity that are redefining the possibilities of life from discovery to diagnosis. We are looking for talented and passionate individuals that help drive our vision. Our innovative culture will allow interested candidates to discover and create, through collaboration, cutting edge solutions to tough problems. Job Summary The Global Trade Compliance Manager is responsible for ensuring that the organization's import and export activities comply with all applicable international trade laws, regulations, and internal policies. This role oversees global trade operations, develops and implements compliance programs, manages relationships with regulatory agencies, and provides guidance to internal stakeholders on trade compliance matters. The ideal candidate brings deep expertise in international logistics and trade regulation compliance with a strategic mindset and ability to operate independently. With operations spanning seven countries, this role offers significant global exposure and will partner with regional logistics teams to implement standardized procedures, drive consistency across all regions and conduct regular audits to maintain governance and minimize exposure to penalties or disruptions. Key Duties Tasks/Duties/Responsibilities: Ensure full compliance with global customs laws, regulations, and trade agreements. Responsible for oversight of and compliance with international trade sanctions regulations. Identify, assess, and mitigate trade risks, including those related to tariffs, sanctions, and other trade barriers Implement and ensure compliance with international trade laws/regulations and company policies through development, implementation, and maintenance of import and export procedures and documentation. Manage relationships with customs brokers and freight forwarders; screen, monitor, and audit their performance and documentation. Oversee import and export activities to ensure proper classification, valuation, country-of-origin marking, and documentation of goods. Collaborate with product development, procurement, and legal and compliance teams to classify new items and ensure proper documentation. Establish and maintain internal controls to mitigate risk and ensure trade compliance. Partner with local shipping/logistics personnel to ensure adherence to global procedures and local laws. Manage export and import licenses and approvals from foreign regulatory agencies where needed. Monitor and manage import/export licenses, permits, documentation and recordkeeping requirements. Stay current on changes in trade regulations and communicate impacts to internal stakeholders. Lead internal training and awareness programs on trade compliance best practices. Coordinate with Quality Team to ensure trade compliance procedures are aligned with and/or incorporated into the appropriate Quality Management System procedures. Participate in additional projects or services as directed. Conduct regular audits to maintain governance and minimize exposure to penalties or disruptions. Serve as the primary point of contact for government agencies and customs authorities regarding trade compliance matters. Manage denied party screening, embargo, and sanctions compliance processes. Qualifications Bachelor's Degree and five (5) years relevant work experience in import/export operations, trade compliance, customs brokerage or similar role Knowledge of INFOR XA or other ERP systems is desirable. Proficiency in Microsoft Office Suite, particularly Excel Strong understanding of compliance risk mitigation and internal control frameworks. In-depth knowledge of U.S. and Canadian customs regulations, import/export laws, and trade agreements (e.g., USMCA), including processes for HTS classification, drafting customs documentation, and filing appeals. Familiarity with UK and EU trade regulations, import/export controls, and sanctions regimes is a plus. Proficiency to negotiate, manage, and audit customs brokers and freight forwarders for compliance with contractual and regulatory requirements. Ability to interpret and apply company Standard Operating Procedures (SOPs) and compliance guidelines. Able to manage trade compliance programs for multi-sites, and different divisions. Ability to identify, assess, and mitigate regulatory and operational risks across multiple jurisdictions. Experience in developing and delivering compliance training programs. Experience conducting compliance audits and driving corrective actions. Comfort working in a dynamic, multi-country environment with changing regulations. Must be a self- starter with strong organizational skills. Must have strong problem solving, troubleshooting and analyzing skills. Ability to build and maintain relationships with brokers and internal stakeholders. Ability to assess, implement, and optimize trade compliance technologies to support automation, scalability, and integration with enterprise systems. Strong understanding of international trade regulations, including U.S. (EAR, ITAR, OFAC), United Kingdom (UK Export Control Order), Germany (BAFA regulations). Ability to interpret and apply country-specific import/export laws to ensure global compliance. Experience in modeling global supply chain networks to identify compliance risks and support strategic decisions related to sourcing, routing, and distribution. Experience leading initiatives to streamline trade compliance processes through technology, data analytics, and cross-functional collaboration. Ability to partner with supply chain, legal and compliance, and IT teams to align trade compliance strategy with broader business objectives. Strong organizational and time management skills, with the ability to prioritize tasks effectively and adapt to changing priorities and work in a fast-paced environment. Travel: up to 20% *All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status. (USA Only)*

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula s Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever s key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization s compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

Job Description Governance, Risk and Compliance Analyst - Unilever Prestige Unilever Prestige is the Luxury Beauty division of Unilever that holds eight companies/brands: Dermalogica, Murad, Living Proof, Hourglass, Tatcha, Paula's Choice, K18 and Garancia. The businesses have a global footprint, are omni-channel in nature and with a heavy index to e-commerce and direct to consumer offerings. Our brands blend luxury physical in-store experiences with digitalized e-commerce offerings including digital technologies embedded within product offerings. It operates a unique organizational model that places high emphasis on independence, entrepreneurship, and speed, all rooted in individual breadth and depth of capability. The division is one of Unilever's key strategic bets and has seen consistent double-digit growth through both organic and M&A growth. Purpose: Reporting to the Senior Director of Information Security, the GRC Analyst will play a critical role in supporting the organization's compliance and risk management programs. This position is responsible for assessing third-party risks, maintaining the enterprise risk register, collecting audit evidence, and promoting adherence to compliance standards. Responsibilities/Essential Job Functions Third-Party Risk Assessments Conduct risk assessments for vendors, partners, and other third parties. Evaluate security, privacy, and compliance controls against organizational standards. Risk Register Management Maintain and update the organizational risk register. Track mitigation plans and monitor risk status across business units. Audit Support Collect and organize evidence for audits (including PCI and SOX). Collaborate with stakeholders to ensure timely and accurate documentation. Privacy Compliance Support Apply fundamental knowledge of U.S. or EU privacy laws (e.g., CCPA, GDPR). Assist in privacy impact assessments and data protection reviews as needed. Requirements and Qualifications Skills: Strong communication skills for cross-functional collaboration. Excellent communication skills for cross-functional collaboration. Knowledge: Familiarity with regulatory frameworks such as PCI DSS, SOX, and privacy regulations (GDPR, CCPA). Experience: 2+ years of experience in compliance, risk management, or audit support. This is a fully remote role with Dermalogica as the employer and on its employment terms. Apply now and become a key contributor to the Unilever Prestige growth trajectory! Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.

BASIC FUNCTION: The Regional Compliance Manager is responsible for ensuring that the organization's operations in Region Americas comply with applicable legal, regulatory, and internal policy standards. The role involves developing, implementing, and managing compliance programs, conducting risk assessments, and monitoring business practices to identify potential violations. The officer will collaborate closely with various departments to ensure compliance with various requirements and to mitigate risks. RESPONSIBILITIES: Establish, implement and monitor effective and efficient Enterprise Risk Management, Governance and Compliance concepts/programs across the Region including Joint Venture Companies. Continuous risk monitoring, reporting and cooperation with business on identified risks and corrective actions. Identification of areas of high risk of fraud, internal controls gaps or non-compliances, business efficiency optimization opportunities, improvement initiatives etc. Cooperation with business on establishment and implementation of appropriate codes of compliance and internal controls etc. to address identified gaps. Manage and monitor compliance issues within RAM to ensure that company, business and employees are complying with regulatory requirements (internal and external) and Omya internal policies and procedures. Execution of risk based operational, process and special audit as per audit plan. Effective coordination with various stakeholders e.g. Group Audit, Group Internal Controls, Regional/Group Management, Regional/Group Legal Counsel, Competency Centers and Business Process Owners on a wide range of projects/initiatives e.g. training, good practices, knowledge sharing, governance, compliance, business processes etc. Auditing Independently investigate and act on matters, including the design and execution of internal investigations, validation and implementation of appropriate corrective actions. These investigations may focus on: Identifying leakages in business processes and limiting exposure to fraud Financial audits e.g. cashflow management, accounting, book-keeping, etc. SCM e.g. procurement, tendering, controls of and recording of physical movement of goods in and out of plants/quarries, warehouses; customer billing, logistics models assessment etc. Operations e.g. material flow, inventory recording, recovery rates from quarries etc. Sales e.g. sales force assessment, customer evaluations, pricing models, distributor management, credit terms and enforcement, etc. HR e.g. salary base analysis, hiring processes, legal compliance in payroll, employment contract structure, etc. Ad-hoc, fraud, whistleblowing investigations, value for money analysis etc. Governance & Compliance In coordination with relevant stakeholders, evaluate and establish governance standards and implement procedures to ensure that RAM compliance programs are effective and efficient in identifying, preventing and correcting non-compliances with internal policies, local regulatory frameworks and risk landscape. Perform continuous risk assessment at Regional and Area, Country level. Monitor implementation of corrective actions to address or minimize risk exposure. Develop, coordinate and deploy effective educational and awareness programs. Report all deviations and build up a knowledge base for further development/improvement of compliance. Maintain safe and non-intimidating mode of escalation for employees to report serious non-compliances through Omya whistleblowing hotline or any other channels, including but not limited to fraud. Perform and supervise investigations into reported matters including reporting and closure of corrective actions. Other duties as assigned. QUALIFICATIONS: Bachelor's degree in Law, Business Administration, Finance, or a related field. A Master's degree or relevant certifications (e.g., Certified Compliance & Ethics Professional [CCEP], Certified Regulatory Compliance Manager [CRCM], or equivalent) is preferred. 5+ years of experience in compliance, legal, or regulatory roles, with a focus on regional or multinational organizations. Ideal candidate must be bilingual in English and Spanish. Strong knowledge of regional and industry-specific regulatory requirements (e.g., anti-corruption, data privacy, environmental regulations). Experience in developing and managing compliance programs. Strong analytical and problem-solving skills with the ability to assess risks and recommend proactive solutions. Excellent communication and presentation skills, with the ability to interact effectively at all levels of the organization. Proven ability to work in cross-functional and multicultural teams. High ethical standards and attention to detail. Ability to work independently and manage multiple tasks in a fast-paced environment. Ideal candidate must be willing to travel up to 30-50% within the US, Canada, Mexico and South America. The work location for this role is flexible if approved by “Company” except this position may not be performed remotely from Colorado, California and New York. Must possess current US employment authorization; sponsorship not available for this position. EOE #LI-REMOTE

* The Compliance Director is responsible for developing, implementing, and overseeing compliance programs to ensure that the company operates in accordance with all applicable laws, regulations, industry standards, and internal policies. * The Compliance Director will serve as a strategic advisor to senior leadership, promoting a culture of ethics, accountability, and risk awareness across the organization. * In addition to the Compliance Director's technical oversight, this role is responsible for the management of Compliance Team members. Essential tasks of the position * Ensure compliance with federal, state, and local regulations governing chemical distribution. * Oversee trade compliance programs, including import/export controls, customs regulations, and domestic and international chemical regulatory frameworks. * Manage compliance team members and assure quality performance with regards to technical documents, product qualification/setup, and lot management tasks. * Lead risk assessments to identify compliance vulnerabilities and establish corrective action plans * Develop and enforce company-wide policies and procedures related to compliance, ethics, and corporate governance. * Partner with internal departments (Sales, Supply Chain, EHS, Finance, Legal, etc.) to embed compliance into business operations. * Oversee compliance audits (internal and external) and ensure timely resolution of findings. * Resolve escalated issues arising from operations. * Application of quality programs to the chemical distribution environment including Responsible Distribution Canada (RDC), Food Safety Modernization Act program, RCRA, Haz Transport, OSHA, DOT, etc. * Project management, or temporarily function in other roles, to support continuous improvement and growth efforts * Any additional tasks requested by management as appropriate The outline of duties is not arranged in order of priority. These duties are not meant to restrict initiative, but rather to describe baseline activities. These duties will from time to time be altered to suit the needs of the company. We are a tobacco and drug free, professional environment Education * Bachelor's degree required. Experience * Minimum 10 years of progressive experience in chemical distribution/manufacturing, compliance, and/or related field. * 3-5 years' supervisory or management experience. * Experience with global trade compliance, consumer & life sciences, FDA regulations, ERM, and corporate governance compliance preferred. Knowledge/Skills * Intermediate level of expertise in MS Office and Contact Management Software * Excellent verbal and written communication abilities * Ability to maintain professional conduct that exemplifies the corporate policies at all times, particularly when interacting directly with internal and external customers * Ability to handle sensitive information with confidentiality and discretion * Detail oriented with strong, accurate clerical skills * Proficient at multi-tasking * Proactive problem solver * Highly motivated Physical Requirements * Satisfactory motor skills relevant to position * Ability to sit for long periods of time * Ability to lift up to 25 pounds