TPRM Legal & Compliance Specialist

At HEINEKEN Kraków (HEINEKEN Global Shared Services) our success comes directly from our great people. We are a growing team of business experts in finance, accounting, data and technology ready to „WOW” the world with our expertise, passion and pride to be GREEN. We act on our values of Passion for consumers & customers, Courage to dream & pioneer, Care for people & planet, Enjoyment of Life, always focused on being ourselves: inclusive, diverse, and open for new challenges.
 

As a TPRM Legal & Compliance Specialist, you will play a vital role in identifying, assessing, and mitigating third-party regulatory risks, including those related to bribery, sanctions, money laundering, and adverse media. You will be part of the first line of defence, supporting business continuity through comprehensive risk screenings, mitigation action plans, and collaboration with global and local stakeholders. Your efforts will directly contribute to ensuring compliance and minimizing potential regulatory exposure across HEINEKEN’s global network.
 

Your responsibilities would include:
 

• evaluating risk screening findings based on data from the TPRM tool to identify potential compliance risks
• developing and managing mitigation plans tailored to risk types and ensuring their effective execution
• communicating and distributing mitigation actions clearly to the relevant teams in Procurement, Sales, or other departments
• monitoring compliance through due diligence questionnaire completion, screening result assessment, and follow-up on mitigation steps
• escalating risks that cannot be mitigated at operational level to appropriate stakeholders including Global Business Conduct and local Legal
• providing regular reports and updates on monitoring outcomes, including presenting key findings to stakeholders
• maintaining the TPRM platform and user access list, ensuring accuracy and effectiveness through audits and updates
• collaborating with internal stakeholders such as Global Business Conduct, local Legal, Procurement, Sales, and the external support team
• identifying opportunities for continuous improvement in risk assessment and monitoring processes, aligning with best practices and regulatory changes
   

You are a good candidate if you have:
 

• a bachelor's degree in Business Administration, Legal, Risk Management, or a related field
• a minimum of 5 years of experience in risk management, vendor management, KYC, or related areas
• strong knowledge of regulatory risk concepts including bribery, sanctions, and money laundering
• the ability to conduct risk assessments, interpret alerts, and determine appropriate mitigation actions
• strong attention to detail and excellent organizational skills
• proficiency in risk monitoring tools and methodologies
• experience in cross-functional collaboration across global teams
• fluency in written and spoken English
   

You’re a perfect candidate if you also have:
 

• hands-on experience in third-party risk management
• knowledge of regulatory risk requirements and compliance frameworks
• project management certification
• additional language skills

At HEINEKEN Kraków, we take integrity and ethical conduct seriously. If someone has concerns about a possible violation of legal regulations indicated in Polish Whistleblowing Act or our Code of Business Conduct, we encourage them to speak up. Cases can be reported to global team or locally (in line with the local HGSS Whistleblowing procedure) by selecting proper option in this tool or by communicating it on hotline.