SL1812A - IT Risk Manager Director

Reporting to the Vice President of IT Risk and Compliance, the Leader, IT Risk Management is accountable for the IT Risk Management function including the supervision of professional staff. Provide risk assessment and management services for strategic IT initiatives. Liaise with Corporate stakeholders to mitigate the Company’s IT exposure by formulating, developing, and coordinating all risk related activities (Information Security, Business Continuity/Disaster Recovery, Risk Management, and Controls (i.e. SOX) Testing).
The leader will also manage and facilitate the career growth and development of technology professionals.

The Leader will work regularly with leaders from the Legal, Regulatory, Internal Audit, Business Unit QA/QC, IT Operations, IT Architecture, HR organizations.

Responsibilities include managing a staff of 3-5 direct reports and several contractors dispersed across geographic locations; managing a team budget; sponsoring projects that require interdisciplinary teams to assess and manage risk.

·  Develop and implement strategic IT risk management initiatives that will reduce the total cost of risk and protect the assets of the company

·  Identify and analyze risk exposures

·  Develop and present proposed Risk Management approaches and techniques; Implement and execute approved Risk Management program

·  Develop and implement Business Continuity and Disaster Recovery programs

·  Develop and implement pan-regulatory Controls testing program (i.e., SOX, HIPAA, GxP, Part 11)

·  Liaise with Corporate Legal to develop and implement Data Privacy program and assessment procedures

·  Advise Senior Management on overall potential risk of loss on company exposures including insured, uninsured exposures, and retained losses

·  Delivery of enterprise level, global technology processes and standards in accordance with objectives and strategies

·  Prepares business case for initiatives and presents to leadership team

·  Lead a controls testing program that generates continuous improvement and process integration efforts

·  Lead his/her team by providing a clear articulation of direction and expectations

·  Accountable for performance management and engagement of each individual and team as a cohesive unit

·  Educates and trains the leadership, staff and business associates as to the IT risk management program, and their respective responsibilities in carrying out the risk management program

Principal Contacts
Leader will work regularly with representatives from the Legal, Regulatory, Internal Audit, Business Unit QA/QC, IT Operations, IT Architecture, IT Development, HR organizations.

Travel Requirements:
Approximately 15% domestic and international travel

·  5-7 years experience in a regulated industry (such as pharmaceutical, medical device, or biotechnology)

·  Bachelor’s Degree required (business, accounting, operations research, or computer science)

·  MA in a business related field or MBA highly preferred

·  Industry related certifications (e.g. CBCP, CISA, CISS, PMP, etc)

·  12+ years experience leading/managing teams, developing strategies, execution of programs/projects, and 4+ years partnering/guiding clients at executive levels

·  Risk management methodologies and implementation in an IT organization

·  Process and regulatory compliance requirements in the pharmaceutical and drug development industry

·  Implementing and maintaining business continuity, disaster recovery, information security and data privacy programs

·  IT business process development and improvement

·  Customer relationship management

·  Financial analysis and management

·  Data Analysis

·  Exceptional verbal, written, presentation and interpersonal skills

·  4+ years leading large, global IT projects

·  Proven ability to manage to financial goals, both in own area, and in support of a larger entity

·  Proven ability to build strong teams; recruit top talent and develop colleagues at all levels

·  Proven experience working with executive sponsors and senior business leadership teams developing and delivering strategy and operating plans

·  Program Management experience – ability to plan, organize, and execute work across multiple / global initiatives to drive delivery on commitments

·  Ability to interact with all levels within the organization

·  Ability to manage multiple priorities simultaneously

·  Ability to provide leadership and training to others

·  Creative approach to resolving business issues, balancing business needs with compliance

·  Strong interpersonal skills and ability to command respect of the organization

·  Demonstrates self motivation to lead global teams on business strategies and achievement of department goals, objectives, and initiatives