Job Description

384135BR

Snr. Spec. DDIT ISC GDD and S&G

India
About the role
Location : #L1 Hybrid

The purpose of the role is to partner with regional senior IT and Business leads to implement and support a broad range of Information Security and Compliance (ISC) topics including information security, compliance and/or information risk management. In this role, provide governance/risk advice and support for an IT functional team or lead all aspects of a specific governance/risk area globally.

Your Responsibilities Include but are not limited to:

• Provide governance/risk advice and support for DDIT GDD Function and oversee a specific governance/risk area globally. Ensure IT project risks are managed in line with ISC strategy, the policy framework, laws and regulations and outstanding industry standards.

• Ensure monitoring of information risk and proactive mitigation of issues. Deliver global information governance programs, e.g. risk management processes, information security awareness programs, data classification, storage & transmission guidelines, audit support, or development and maintenance and implementation of the Information Management Policy Framework

• Maintain strong knowledge of internal controls and internal risk and control frameworks/standards or the Information Management Policy Framework

• Ensure good communication and collaboration with the Service Delivery Teams, advise them on information security, IT compliance and / or information risk management matters. Ensure role, accountability, and responsibility of ISC is known and understood. Vice versa, establish clear accountability of the \xe2\x80\x9cfirst layer of defence\xe2\x80\x9d with IT and business, such that security and IT compliance accountability is not abdicated to ISC (which should have a \xe2\x80\x9c2nd layer of defence\xe2\x80\x9d role)

• Continuously support risk-based treatment of threats, gaps, vulnerabilities, and risks in the Service Delivery area. Support dashboards, reports and KPI reporting and improvements. Guide teams and support them in understanding the risk exposure and technical safeguards.

• Identify points of improvement or gaps in the service delivery of the central ISC teams and work together with them to resolve them. Review ongoing improvements and the feasibility of enhancements to global processes for ISC.

• Systematically support implementation and monitoring of the ISC Policy Framework on Information Technology and Operational Technology projects within the IT Function

• Analyze impact of new technologies and regulatory changes on information security considering Cyber Security and Data Privacy Acts, Laws, and Regulations

{#400,300#}#/video#]
Commitment to Diversity & Inclusion:
We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.
Role Requirements

• 5+ years of professional experience in a similar role with university level degree in business/IT technical/scientific area or comparable education/experience

• Good knowledge with GxP regulated business processes in the pharmaceutical industry, preferably QC&QA, Supply Chain and/or Manufacturing & Engineering.

• Experience with supporting projects about Information Security and Risk Management topics for high complexity multi-site, regional, global project portfolio / scope. Experience in an international matrix organization

• Strong knowledge in IMF Framework and ISC Tools. Understand and be able to efficiently support Waterfall SDLC and Agile ways of working. Understand and effectively support project delivery.

• Experience in reporting to and communicating with senior management (with and without IT background, with and without in-depth risk management background) on information risk topics. Experience in practical application of Risk Management

Why Novartis: Our purpose is to reimagine medicine to improve and extend people\xe2\x80\x99s lives and our vision is to become the most valued and trusted medicines company in the world. How can we achieve this? With our people. It is our associates that drive us each day to reach our ambitions. Be a part of this mission and join us! Learn more here: https://www.novartis.com/about/strategy/people-and-culture

You\xe2\x80\x99ll receive: You can find everything you need to know about our benefits and rewards in the Novartis Life Handbook. https://www.novartis.com/careers/benefits-rewards

Commitment to Diversity and Inclusion:
Novartis is committed to building an outstanding, inclusive work environment and diverse teams\' representative of the patients and communities we serve.

Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Novartis and our career opportunities, join the Novartis Network here:
https://talentnetwork.novartis.com/network
Division
Operations
Business Unit
DATA, DIGITAL & IT
Work Location
Hyderabad, AP
Company/Legal Entity
Nov Hltcr Shared Services Ind
Functional Area
Technology Transformation
Job Type
Full Time
Employment Type
Regular
Shift Work
No
Early Talent
No