About General Mills
We make food the world loves: 100 brands. In 100 countries. Across six continents. With iconic brands like Cheerios, Pillsbury, Betty Crocker, Nature Valley, and Häagen-Dazs, we’ve been serving up food the world loves for 155 years (and counting). Each of our brands has a unique story to tell.How we make our food is as important as the food we make. Our values are baked into our legacy and continue to accelerateus into the future as an innovative force for good. General Mills was founded in 1866 when Cadwallader Washburn boldly bought the largest flour mill west of the Mississippi. That pioneering spirit lives on today through our leadership team who upholds a vision of relentless innovation while being a force for good. For more details check out http://www.generalmills.comGeneral Mills India Center (GIC) is our global capability center in Mumbai that works as an extension of our global organization delivering business value, service excellence and growth, while standing for good for our planet and people.With our team of 1800+ professionals, we deliver superior value across the areas of Supply chain (SC) , Digital & Technology (D&T) Innovation, Technology & Quality (ITQ), Consumer and Market Intelligence (CMI), Sales Strategy & Intelligence (SSI) , Global Shared Services (GSS) , Finance Shared Services (FSS) and Human Resources Shared Services (HRSS).For more details check out https://www.generalmills.co.inWe advocate for advancing equity and inclusion to create more equitable workplaces and a better tomorrow.Job Overview
Purpose of the role
We are seeking a proactive and detail-oriented Technology Resilience, Audit & Compliance senior analyst to strengthen our IT governance and operational resilience across the enterprise.In this role, you will ensure that our technology platforms remain secure, compliant, and recoverable — aligning with global FMCG standards and business continuity needs. You will work closely with Cybersecurity, Infrastructure, and Application teams to manage patching compliance, vulnerability remediation, and technology recovery planning.This position requires a balance of technical understanding, process discipline, and stakeholder maturity — engaging confidently with senior management while driving hands-on execution of compliance and resilience initiativesKey Accountabilities
Enterprise Patching & Vulnerability ManagementOversee compliance with the System Hardening and Configuration Standards, ensuring systems are patched and secured in line with enterprise and regulatory expectations.Responsible for maintain the audit threshold for patching and vulnerability management in collation with cyber teams.Partner with Cybersecurity and Infrastructure teams to track, prioritize, and remediate vulnerabilities effectively.Manage technology obsolescence by coordinating with platform teams to phase out outdated or unsupported systems.Maintain and enhance patching and vulnerability management documentation, ensuring alignment with internal policies and audit requirements.Support audit engagements by providing timely and verifiable evidence, responding to findings, and ensuring closure of remediation actions.Generate periodic compliance reports and dashboards for senior leadership, highlighting trends, risk areas, and improvement opportunities.Technology Resilience & RecoveryMaintain and update Technology Recovery documentation, including response playbooks, system data, and contact inventories.Plan and coordinate disaster recovery exercises (including tabletop simulations) to test and validate recovery processes.Review recovery dependencies and wave sequencing to ensure logical and efficient system restoration aligned with business priorities.Partner with Business Application and Platform Leads (e.g., SAP, Core Systems) to ensure recovery plans reflect business continuity requirements.Develop and refine Operational Playbooks (OPLs), ensuring recovery teams have clear guidance on roles, procedures, and tools.Communicate exercise outcomes, readiness status, and lessons learned to senior management and key stakeholders.Act as a technical coordinator during real recovery events, ensuring effective execution and timely restoration.Benchmark recovery and resilience practices against industry best practices and regulatory expectations, recommending continuous improvements.Minimum Qualifications
5–8 years of experience in IT Compliance, Audit, Cybersecurity, or Technology Resilience, preferably within the FMCG or manufacturing sector.Strong understanding of patching governance, vulnerability management, and system hardening practices.Hands-on experience supporting or managing disaster recovery and business continuity initiatives.Preferred Qualifications
Relevant certifications (e.g., CISA, CRISC, ISO 22301, ITIL) are a plus.A balanced mix of technical acumen and governance mindset.Confidence to engage and influence senior management and auditors.A proactive, structured, and accountable approach to compliance and resilience management.A passion for building a secure and resilient technology environment that enables business continuity and operational excellence.
