Job title: Senior Security Compliance, Policy and Risk Analyst
Company: Thermo Fisher Scientific
Job description: Job Description
Position Summary:
When you join us at Thermo Fisher Scientific, you’ll belong to an inquisitive team that shares your passion for exploration and discovery. With revenues of more than $35 billion and the largest investment in R&D in the industry, we give our people the resources and chances to create significant contributions to the world.
As a member of the Corporate Information Security Risk Management team, you will ensure company compliance in the multifaceted global cybersecurity legal and regulatory landscape. You will provide key input and assistance in the development and implementation of a cybersecurity compliance program, which will include assessments, cybersecurity audits, and certifications as well as maintain our robust policy lifecycle. Also, you will be asked to implement various risk analysis processes within the risk analysis team including review of reported risks, risk management, and ensuring teams are properly handling plans to reduce or eliminate risk
The ideal candidate will have outstanding research, writing, and presentation skills, a desire to tackle complex problems, and strive to complete assignments timely with minimal oversight. This position will join a team of analysts that drive visibility and understanding of information security compliance, policy and risk as well as influence strategic decision making across the enterprise.
Key Responsibilities:
- Coordinate responding to internal and external cybersecurity audits as well as customer security questionnaires
- Maintain all documentation related to the compliance program to support audits, potential litigation, and charting maturity of the overall program
- Monitor the legal, regulatory, and compliance landscape to proactively identify cybersecurity related issues that may impact Thermo Fisher
- Lead development, maintenance, and revision of policies, standards, procedures, work instructions, and guidelines of security programs and related activities
- Partner with internal teams to ensure policies meet the needs and goals of CIS
- Intake and analysis of identified risks from a variety of sources including audits, compliance checks, automated vulnerability systems, and other internally or externally reported risks.
- Complete analyses and reports and work with the Senior Manager to develop a comprehensive view of risk across the company.
- Process risk acceptance requests and provide vital information and analysis to allow business leaders to identify which risks are appropriate
- Review and supervise action plans developed by risk owners and ensure plans are completed appropriately.
- Process policy exception requests and ad-hoc risk analyses
Education:
- 8+ years of related work experience
- Bachelor’s Degree in Risk Management, Information Assurance, Information Security, Cybersecurity, IT, Law or Data Privacy or related field. Equivalent work experience is accepted.
- Certifications not required, but recommended: CRISC, CISSP or CISA
Experience:
- Experience with qualitative and quantitative risk analysis methods and risk frameworks
- Experience drafting corporate policies or working in document management
- Experience providing analysis of laws and regulations as they apply to a specific business or market segment
- Ability to explain legal, technical and compliance topics to a broad audience
- General understanding of cybersecurity technologies and controls with the ability to bridge the gap between regulatory and technical concepts
Knowledge, Skills, Abilities:
- Customer service mentality
- Attention to detail, organizational skills, time management
- Excellent verbal and written communication skills
- Eagerness to learn
- Ability to work both independently and as part of a team
Our Mission is to enable our customers to make the world healthier, cleaner and safer. Watch as our colleagues explain 5 reasons to work with us. As one team of 100,000+ colleagues, we share a common set of values – Integrity, Intensity, Innovation and Involvement – working together to accelerate research, solve complex scientific challenges, drive technological innovation and support patients in need. #StartYourStory at Thermo Fisher Scientific, where diverse experiences, backgrounds and perspectives are valued.
Apply today!
Thermo Fisher Scientific is an EEO/Affirmative Action Employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other legally protected status.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Accessibility/Disability Access
Job Seekers with a Disability: Thermo Fisher Scientific offers accessibility service for applicants requiring accommodations in the job application process. For example, this may include individuals requiring assistance because of hearing, vision, mobility, or cognitive impairments. If you are a job seeker with a disability, or assisting a person with a disability, and require accessibility assistance or an accommodation to apply for one of our jobs, please submit a request by telephone at 1-855-471-2255*. Please include your contact information and specific details about your required accommodation to support you during the job application process.
*This telephone line is reserved solely for job seekers with disabilities requiring accessibility assistance or an accommodation in the job application process. Messages left for other purposes, such as not being able to get into the career website, following up on an application, or other non-disability related technical issues will not receive a response.
Job Category
Information Technology
Thermo Fisher Scientific
is an EEO/Affirmative Action Employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other legally protected status.
Expected salary:
Location: Bangalore, Karnataka
Job date: Sun, 15 May 2022 01:12:50 GMT
Apply for the job now!