Job ID
363884BR

Mar 15, 2023

India

15 Petabyte of data hosted, 49 countries supported, 15000 servers and thousands of devices to connect locations and businesses.

The role of supported services is \xe2\x80\x9cGlobal\xe2\x80\x9d in nature in the areas around Campus Network (Wire and Wireless), WAN (Internet and Global Inter-Office Connections), Cloud (Network connecting to and in public cloud platforms), IP Telephony and Contact Centers, Network Security (VPN, Proxy), enabled with the underlying next-gen technology stack for each of these identified areas.

Your responsibilities include, but are not limited to:

• Provide governance/ risk advise and support for an IT functional team\xe2\x80\x99s global network services tower for all aspects of information security and compliance governance globally.

• Strong knowledge of internal controls, internal risk and control frameworks/standards or the Information Management Policy Framework and ensure risks are handled in line with ISRM strategy, the policy framework, laws and regulations and outstanding industry standards.

• Ensure monitoring of information risk and proactive mitigation of issues - May deliver global information governance programs, e.g., risk management processes, information security awareness programs, data classification, storage and transmission guidelines, audit coordination and management, or development and maintenance of the Information Management Policy Framework.

• Ensure good communication and collaboration with the service owners of the IT Function for Risk Management and provide Risk Mitigation guidance and support in understanding the risk exposure and technical safeguards for IT Risk Management there by ensuring their compliance with Information Management Policy Framework and IT controls

• Ensure Novartis information assets (including Crown Jewels) are secured by working with security SMEs in deploying appropriate security measures; and identified vulnerabilities are analyzed, prioritized, and treated for in-scope services

• Provide governance and remediation of threats, vulnerabilities, and risks in the ISRM risk register in the IT function and Analyze impact of new technologies and regulatory changes on information security considering Cyber Security and Data Privacy Acts, Laws, and Regulations and initiate necessary conversations/engagements.

• Systematically supports implementation and monitoring of the ISRM Policy Framework within the IT Functions and business organization. Analyze risks to information assets, identify potential issues and support & track risk remediation activities based on agreed risk mitigation solutions.

• Develop and Present operational metrics based on industry best practices. Enhance existing metrics and reporting on risk management. Develop governance dashboards and reports showcasing IT Risk management improvements at the function level and identifies points of improvement or gaps in the service delivery of the central ISRM teams and works together with the central ISRM Compliance Services to resolve them.

Diversity & Inclusion / EEO

Novartis is committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.

Minimum Requirements

What you\xe2\x80\x99ll bring to the role:

• Over 5 years\xe2\x80\x99 experience in the areas of Business Information Security and Compliance, IT risk management, Audit management\xe2\x80\x99 Information Governance and Management

• University degree in business/ technical/ scientific area or comparable education/experience.

• Focused approach in handling the functional & operational risks, successful engagement with everyone, advocacy to drive Information Security Compliance activities.

• Experience with Good Practice quality guidelines and regulations (GxP)

• Collaboration and successful engagements with stakeholders, vendors, support teams, internal team members, etc.

• Experience with network services, technologies, and related areas.

Desirable Requirements:

• Professional information security certification, such as CISSP, CISM or ISO 27001 auditor/ practitioner.

• Professional (information system) risk or audit certification such as CIA, CISA or CRISC.

Why consider Novartis?
769 million lives were touched by Novartis medicines in 2022, and while we\xe2\x80\x99re proud of this, we know there is so much more we could do to help improve and extend people\xe2\x80\x99s lives.

We believe new insights, perspectives and ground-breaking solutions can be found at the intersection of medical science and digital innovation. That a diverse, equitable and inclusive environment inspires new ways of working.

We believe our potential can thrive and grow in an unbossed culture underpinned by integrity, curiosity and flexibility. And we can reinvent what\'s possible, when we collaborate with courage to aggressively and ambitiously tackle the world\xe2\x80\x99s toughest medical challenges. Because the greatest risk in life, is the risk of never trying!

Imagine what you could do here at Novartis!

India Accessibility and accommodation
Novartis is committed to working with and providing reasonable accommodation to individuals with disabilities. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the recruitment process, or in order to perform the essential functions of a position, please send an e-mail to [email protected] let us know the nature of your request and your contact information.

Join our Novartis Network:
If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Novartis and our career opportunities, join the Novartis Network here: https://talentnetwork.novartis.com/network


Division
CTS
Business Unit
TT CTS
Location
India
Site
Hyderabad, AP
Company / Legal Entity
Nov Hltcr Shared Services Ind
Functional Area
Technology Transformation
Job Type
Full Time
Employment Type
Regular
Shift Work
No