Specialist - IT Risk and Compliance Policy Job

Date: Mar 30, 2019

Location: Prague, CZ

Apply now »
Apply now

Apply for Job

Requisition ID: COM000773

MSD is an innovative, global healthcare leader committed to improving health and well-being in 140 countries around the world. We continue to focus our research on conditions that affect millions of people around the world - diseases like Alzheimer's, Diabetes and Cancer - while further expanding our strengths in areas such as vaccines and biologics. We aspire to be the best healthcare company in the world and are dedicated to providing leading innovations and solutions for tomorrow.

MSD’s Information Technology division partners with colleagues across the business to help serve our patients and customers around the world. Ours is a high-energy team of dynamic, innovative individuals dedicated to advancing MSD’s contribution to global medical innovation by leveraging information and technology to efficiently advance the business by driving revenue and productivity.

Information Technology Risk Management and Security has become an essential component of the current IT enterprise that provides IT & Automation support to the Pharmaceutical Research, Supply Chain and Marketing organizations.  Increased risks in both the information security (e.g. cyber threats, malware, etc.) and the regulated areas have required that staff possessing such skills is fully embedded within the IT organization.  The enterprise is now dependent on these security and compliance experts for identifying, escalating and remediating such IT Risks in a timely and efficient manner.  Also, emerging technologies like cloud, mobility and data analytics require strong IT Risk and Compliance early involvement.

One of our colleagues is taking maternity leave and we would like to have someone help us meet the challenge in her absence.

Essential Responsibilities:

  • Information Security policy issuance development, execution and best practices.

  • Assist with defining policy to ensure that MSD employees comply with global laws and regulations, while also balancing the requirements of both an agile workforce and a secure environment.

  • Assist to coordinate policy development with various organizations including the Global Compliance organization, Global Technical Organization, divisional IT leaders, and technical experts.

  • Provide consultancy to stakeholders regarding the interpretation of policy issuances and their implementation.

  • Help monitor laws, regulations, standards & risk to ensure policy issuances are current with the rapidly changing environment.

  • Drive compliance with policy issuances by leveraging ITRMS communications team and automation activities.

  • Assist with influencing the workforce to adopt new behaviours that protect the company’s information.

  • Assist with audit related preparation and remediation efforts.


  • Minimum of 3 years’ experience in IT, audit, legal, information security, or IT Compliance.
  • Bachelor’s degree in Information Security, Computer Science, Business, or equivalent experience.
  • Superior written communications skills.
  • Excellent interpersonal and collaboration skills.
  • Ability to work both independently and collaboratively, with different teams across geographical regions.
  • Familiarity with laws, rules and regulations applicable to the Pharma industry.
  • Familiarity with NIST framework, ISO/IEC 27000 standards, GXP, PCI and other industry standards.
  • A foundational understanding of risk management.
  • Knowledge in IT security related to diverse platforms and technologies: Remote Access, VPN, firewalls, Anti-Virus systems, Data Leakage Protection, PKI environments, encryption technology, mobile devices, cloud computing, Windows, Unix/Linux, Macintosh, wireless, PCI.
  • Highly desirable:
    • Professional certifications: CISSP, CISA, CRISC or equivalent.
    • Internal Security Assessor certification a plus.

Your role at MSD is integral to helping the world meet new breakthroughs that affect generations to come, and we’re counting on your skills and inventiveness to help make meaningful contributions to global medical advancement. At MSD, we’re inventing for life.

Job: Compliance & Risk Management
Other Locations:
Employee Status: Regular
Travel: Yes, 10 % of the Time
Number of Openings: 1
Shift (if applicable):
Hazardous Materials:
Company Trade Name: MSD

Job Segment: Risk Management, Compliance, Medical, Network, Pharmaceutical, Finance, Legal, Healthcare, Technology, Science

Apply now »
Apply now

Apply for Job