Snr. Specialist, Risk Mgmt (Treatment) Job

Date: Jan 18, 2019

Location: Singapore, SG

Apply now »
Apply now

Apply for Job

Requisition ID: COM000688


MSD is an innovative, global healthcare leader that is committed to improving health and well-being around the world. Our product offering categories include heart and respiratory health, infectious diseases, sun care and women's health. We continue to focus our research on conditions that affect millions of people around the world - diseases like Alzheimer's, diabetes and cancer - while expanding our strengths in areas like vaccines and biologics. We also devote extensive time and energy to increasing access to medicines and vaccines through far-reaching programs that donate and deliver our products to the people who need them.

Information Technology Risk Management and Security has become an essential component of the current IT enterprise that provides IT & Automation support to the Pharmaceutical Research, Supply Chain and Marketing organizations. Increased risks in both the information security (e.g. cyber threats, malware, etc.) and the regulated areas have required that staff possessing such skills is fully embedded within the IT organization. The enterprise is now dependent on these security and compliance experts for identifying, escalating and remediating such IT Risks in a timely and efficient manner. Also, emerging technologies like cloud, mobility and data analytics require strong IT Risk and Compliance early involvement.

To help meet these emerging challenges, we are seeking an energetic, forward-thinking security professional to support the risk management function.

Primary activities/responsibilities;



  • Perform IT risk advisory and assessments for divisional stakeholders, their vendors and other 3rd party collaborators. This includes working with the IT organization and peer risk organizations (e.g. Privacy, Physical Security, Supplier Management and Human Resources) to identify MSD IT Risks globally and to provide consultative services to assess and prioritize those risks.

  • Ensure compliance with corporate information security policies and other industry standards.

  • Partner with global IT Risk Management and Security functions to perform IT security risk identification, prioritization and mitigation- treatment.

  • Contribute to enterprise-wide risk mitigation programs, processes and technologies focusing effort on identification of the highest risks.

  • Serves as an expert on IT Security and Compliance policies. Maintains current state awareness and understanding of internal and industry practices relative to IT security & compliance. Knowledgeable of evolving trends, industry citations, etc.

  • Conducts analysis of conflicts in existing policies as a result of a change in regulatory expectations, corporate policies or adoption of new quality policies within the regulated businesses supported by the GIN@S. As needed, performs research to ensure proper understanding of regulations.

  • Elevate IT security awareness in general and targeted audience within the organisation, service providers and other vendors

    Updated activities/responsibilities :

  • Conduct and coordinate IT risk assessments with consideration for MSD policies and external laws and regulations which apply to the MSD business environment.

  • Support and improve the MSD security posture in the region including key markets such as Germany, France, and the UK by managing the risks to acceptable levels.

  • Ensure consistency in security collaboration with enterprise risk and other functions.

  • Support the secure adoption of new and emerging technology, i.e. Social Media, Mobility, Analytics, and Cloud Computing.
Qualifications



  • Education: BS in Information Security, Computer Science or Engineering or equivalent experience.

  • Minimum of 8 years’ experience in IT, with 6 in information security and/or IT Risk management.

  • Relevant professional certifications are desired, such as CRISC, CISA, CISM, GSNA

  • Technical knowledge and understanding of SDLC and GxP principles.

  • Experience in performing IT Risk Identification, Assessments, Treatment, Prioritisation and advisory

  • Hands-on experience with computer networking, databases, or software development.

  • Demonstrated skills working with various IT technologies and services.

  • Excellent verbal and written communications skills.

  • Thorough understanding of risk management including threat modelling, risk measurement, and vulnerability analysis.

  • Familiarity with advanced/emerging technology trends.

  • Demonstrated ability to work independently and as part of virtual teams in a fast paced environment

  • Natural curiosity and a desire to do things differently

  • Must be able to adapt and rapidly learn new technologies and apply their findings to solve key business challenges.


Job: Compliance & Risk Management
Other Locations:
Employee Status: Regular
Travel:
Number of Openings: 1
Shift (if applicable):
Hazardous Materials:
Company Trade Name: MSD


Job Segment: Risk Management, Engineer, Special Medicine, Respiratory, Embedded, Finance, Engineering, Healthcare, Technology

Apply now »
Apply now

Apply for Job