Overview
Skills
Job Details
SOX Finance Experience is a must.
Please note that this is a 6-month long term contract position.
Position can be remote but Client refer somebody can work hybrid in Raritan, NJ.
EXPERIENCE/COMPETENCIES
Minimum 5 years experience working with security and controls, consulting stakeholders throughout the application lifecycle development process
Experienced in identifying and articulating Controls/gaps around application security issues
Working knowledge of pharmaceutical business processes
Experienced in SOX compliance requirement/ IT General Controls
Experience in supporting internal and external Audits.
Self-starter and proficient multitasker with excellent documentation, communication, and organizational skills
Strong technical skills, including troubleshooting acumen for complex issues in need of problem solving.
Strong teamwork and communication/information sharing skills.
Exercise judgment and influence on key processes and technical decisions (e.g. - policy, standards, technical solutions).
Good organization, planning, and time management skills.
Demonstrated ability to manage complexity and handle/prioritize multiple tasks.
Process and detail oriented.
Excellent written and verbal skills (required for high-volume communications with company employees involved in data preservation tasks.)
Education
Bachelor s Degree in Information Technology, Computer Science, or a related field
Pharmaceutical industry related Security Certifications preferred.
Top Three Skills: degree in Computer science/Information tech, verbal skills, consulting stakeholders
PURPOSE OF POSITION
In the Assessment CoE Analyst role you will work within the Information Security and Risk Management (ISRM) department, joining the team responsible for ensuring the security of software applications. You will be responsible for security & controls throughout global projects related to R&D, Supply Chain, and Medical Technology applications including both 3rd party and internally developed applications.
RESPONSIBILITIES/PRINCIPAL DUTIES
Primary responsibilities include the following:
Orchestrate and deliver cybersecurity risk assessments Applications, and the technologies that run them while maintaining awareness of the changing threat landscape.
Support the design of cybersecurity controls, ensure proper design implementation and assurance testing.
Responsible for identifying risks related to the application prior to go-live and ensuring that appropriate mitigation/remediation plans are in place.
Understand and promote risk management activities associated with external regulations and internal policies such as Internal Asset Protection Policies (IAPP), GxP, SOX, and GDPR
Facilitate education and training to the program team on cybersecurity and internal control procedures and controls.
Provide a periodic work status update in the form of a summary slide of accomplishments, blockers, risks.
Build relationships with global stakeholders and provide consulting related to security controls implementation throughout project phases
Make recommendations for application security including change, incident management, process enhancements, access management, and change management
Consult with stakeholders about controls related to data classification and privacy, including data encryption and protection
Applicants must provide their phone number. Reference job number A4824.