Job Description

Site Name: Bengaluru Luxor North Tower, Poznan Grunwaldzka Posted Date: Sep 8 2023 GSK is one of the world\'s foremost pharmaceutical and healthcare companies, and we are proud to be part of an industry that improves the lives of others. We embark on a significant transformation journey to support GSK in becoming a top-quartile data-enabled organization. This is an exciting time to join GSK. We are embracing new data technologies to improve the development, manufacture, and distribution of GSK\'s vital products to patients and consumers worldwide. You will be part of a team building a robust data and analytics ecosystem, allowing GSK to drive higher value by placing data at the core of its strategic and operational decisions. Are you looking for an opportunity to drive meaningful and impactful change within the Tech organization to ensure that business risks are proactively identified and controlled If so, this is the role for you. As a Manager - Governance, Risk and Compliance, you will be responsible for providing day to day support and management to the Governance, Risk & Compliance (GRC) department. You will support the activities across the assigned Tech Business Unit ensuring that Tech Risks & Controls are identified, prioritized, effectively managed, and monitored. Additionally, this role should work within the business unit to ensure Tech teams follow the required internal and external compliance standards and delivers a reduction in the overall risk profile for our customers. The primary responsibility of this position will be Commercial Tech. This role will provide YOU the opportunity to lead key activities to progress YOUR career. Responsibilities include some of the followings: Risk Management Enforce compliance for responsible business unit based on Tech Policies and Standards Facilitate risk identification and risk discussions within the business unit, both operational risk, product/project and strategic risk Support project and product owners in the management of their project risks, ensuring risk identification process is embedded and operational Contribute to risk assessments and remediation activity to address technical risks impacting a business unit, using internal risk assessment and control identification framework and tool Raise and approve (where necessary) policy exceptions and risks registers through the GSK integrated risk management tool (i.e., Archer) Ensure risk and findings are registered appropriately Assist Tech business unit management to have awareness and make risk informed decisions through a comprehensive risk summary report Ensure emerging risks are identified and escalated appropriately and in a timely manner Partner with other GRC and Security staff to deliver a continuous training and education program to ensure ongoing awareness on new and updated policies and standards within their business unit Governance & Compliance: Contribute to maintenance of the business unit delivery and operational frameworks (Activities, deliverables, roles and responsibilities) and ensure alignment to ITMS policies. Monitor deliverable quality, ensure quality standards are being met for products/ projects, programs or operations within their remit, following a risk-based approach, according to ITMS policies, internal risk assessments framework, and local SOPs. Contribute to providing Project Quality assurance oversight depending on the specific project risk profile, including specific assurance reviews as requested by stakeholders Contribute to ensuring Business Unit is keeping up with regulatory and legal requirements through a pro-active knowledge management program Quality assurance over the system change control within the Business Unit Support various risk management related activities consulting with BU Tech staff to deliver Audit Support Contribute to ensuring Business Unit is ready to host external inspections from regulatory bodies (i.e., FDA, EMEA, tax authorities) as well as external and internal auditors. Support management of overall Business Unit inspection readiness activities and CAPAs in liaison with the business Information Policy Formation Work with the GRC Compliance lead/Controls owners and ITMS team to review and approve the policy, standards, procedures, guidance and training for compliance with relevant legislation and GSK Requirements. Support reviews of the information systems for compliance with legislation and specifies any required changes within their Business Unit Support the GRC leads to implement policies, standards and procedures with aligned Tech Business Why you Basic Qualifications: We are looking for professionals with these required skills to achieve our goals: Bachelor\'s Degree in Technology or Science or equivalent field with Information Security, Risk, Controls experience 3+ years\' experience in Technology Risk Management/Analysis and Compliance 3+ years\' experience in cyber security control assurance and risk management Information Security Audit planning, implementation, verification, and reporting Cloud computing control expertise and experience Experience in Privacy Laws, necessary controls and compliance Preferred Qualifications: If you have the following characteristics, it would be a plus: Ability to build relationships and influence stakeholders Great verbal and written communications skills IT project management experience Programming and/or software development project knowledge Experience with Information Security and Data Privacy Regulations Pharmaceutical experience AI (Artificial Intelligence)/ML(Machine Learning) Certifications in CISA, CISM, CRISC, CISSP, CCSP Why Us GSK is a global biopharma company with a special purpose - to unite science, technology and talent to get ahead of disease together - so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns - as an organization where people can thrive. Getting ahead means preventing disease as well as treating it, and we aim to positively impact the health of 2.5 billion people by the end of 2030. Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it\'s also about making GSK a place where people can thrive. We want GSK to be a workplace where everyone can feel a sense of belonging and thrive as set out in our Equal and Inclusive Treatment of Employees policy. We\'re committed to being more proactive at all levels so that our workforce reflects the communities we work and hire in, and our GSK leadership reflects our GSK workforce. Why Us GSK is a global biopharma company with a special purpose - to unite science, technology and talent to get ahead of disease together - so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns - as an organization where people can thrive. Getting ahead means preventing disease as well as treating it, and we aim to positively impact the health of 2.5 billion people by the end of 2030. Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it\'s also about making GSK a place where people can thrive. We want GSK to be a workplace where everyone can feel a sense of belonging and thrive as set out in our Equal and Inclusive Treatment of Employees policy. We\'re committed to being more proactive at all levels so that our workforce reflects the communities we work and hire in, and our GSK leadership reflects our GSK workforce. Important notice to Employment businesses/ Agencies GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK\'s commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site. It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview. Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way. GlaxoSmithKline does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location. Even if they claim that the money is refundable. If you come across unsolicited email from email addresses not ending in gsk.com or job advertisements which state that you should contact an email address that does not end in \'gsk.com\', you should disregard the same and inform us by emailing [HIDDEN TEXT], so that we can confirm to you if the job is genuine.

foundit