Manager, Risk Mgt, Consulting

Role Summary

The Enterprise Platforms & Security (EP&S) organization delivers the following capabilities for Pfizer. Business application platforms supporting Pfizer’s enterprise application and critical business processes. Infrastructure allowing business traffic to travel where it needs to go, internally and externally, along with the appropriate access controls. EP&S secures Pfizer's most important information assets through world class controls and protections and enables Pfizer's business results by making security an enabler and not a roadblock to achieving business results.

The Digital Risk Management (DRM) organization works with a global stakeholder community to incorporate legal, regulatory, and corporate policy requirements into solutions, services, and daily Digital operational activities. DRM strives to make compliance simple and to develop logical, robust, and cost-effective compliant processes and services across Digital. 

The Manager Risk Management Consulting role will collaborate with Digital partners to ensure Digital services and solutions are planned, designed, deployed, operated, and supported in a manner which meets Digital general controls and regulatory requirements.

ROLE RESPONSIBILITIES

This role will have the following primary responsibilities:

• Deliver risk management and compliance services to assigned Digital lines
• Participate in routine reporting to assigned Digital lines on the state of compliance
• Partner with assigned Digital lines in projects representing compliance controls and risk management practices to effectively provide visibility to risks and regulatory requirements that must be satisfied
• Liaise with Risk Management managed service provider to ensure BTQA role is being fulfilled for all assigned Digital projects
• Review and approve Solution Development Life Cycle (SDLC & IDLC – Waterfall / Agile execution) deliverables or change management deliverables
• Support completion of Solution Profiles; Confirm/Approve Solution Profiles, as BTQA representative
• Assure compliance requirements are met and approve deviations, where applicable
• Assure audit/inspection awareness and preparedness, and provide coaching / guidance as a compliance expert
• Support audits and inspections of Digital (prior, during, and post); Work with Digital customers on the remediation of commitments and tracking of status
• Lead assigned Risk Management efforts to address compliance gaps, conduct risk assessments and define and implement remediation plans
• In coordination with internal Risk Management operations and the Digital Line organization, identify and implement Key Performance Indicators (KPIs), metrics and standard reports to drive service improvements
• Support the monitoring of Digital process execution to identify targeted continuous improvement efforts to improve operational process effectiveness and control execution
• Based upon monitoring of Digital process execution, lead targeted continuous improvement efforts to improve operational process effectiveness and control execution
• Assist with defined compliance-related strategic projects/initiatives, and manage the associated records and activity tracking
• Support multiple compliance-related projects and initiatives simultaneously
• Independently identify broad objectives and proposals for Risk Management projects
• Partner with Digital to identify, assess, document and mitigate compliance risk in accordance with the Digital Compliance Risk Framework
• Conduct compliance investigations, as required.

BASIC QUALIFICATIONS

• BS required in a relevant discipline preferably within Information Security, Information Technology, Computer Science, Engineering or related majors.
• 5+ years of experience in the pharmaceutical or biotech industries supporting IT initiatives.
• Experienced with working through a highly matrixed organization to support and drive key initiatives
• Excellent Communication skills, capable of succinctly defining the problem and delivering options for addressing potential compliance gaps
• Experience with implementing controls aligned to principles, and concepts of regulatory compliance, and of pharmaceutical regulations
• Excellent in-depth understanding and working experience with compliance guidelines and regulations such as SOX, FDA GxP regulations, and Domestic/International privacy laws (i.e. PCI DSS, MA201, Safe Harbor, etc.)
• Excellent stakeholder management skills and organizational skills
• Ability to work independently and manage multiple priorities.
• Experience with Agile methodology.

PREFERRED QUALIFICATIONS

• Highly self-aware, quick to establish trust, with a customer first mindset
• Highly motivated to learn and ingest knowledge across the digital technology spectrum

PHYSICAL/MENTAL REQUIREMENTS

• Extensive computer use

NON-STANDARD WORK SCHEDULE, TRAVEL OR ENVIRONMENT REQUIREMENTS

• Flexible working hours to accommodate global time zones

Work Location Assignment: Flexible

Relocation assistance may be available based on business needs and/or eligibility.

Pfizer requires all U.S. new hires to be fully vaccinated for COVID-19 prior to the first date of employment.  As required by applicable law, Pfizer will consider requests for Reasonable Accommodations.

Sunshine Act

Pfizer reports payments and other transfers of value to health care providers as required by federal and state transparency laws and implementing regulations.  These laws and regulations require Pfizer to provide government agencies with information such as a health care provider’s name, address and the type of payments or other value received, generally for public disclosure.  Subject to further legal review and statutory or regulatory clarification, which Pfizer intends to pursue, reimbursement of recruiting expenses for licensed physicians may constitute a reportable transfer of value under the federal transparency law commonly known as the Sunshine Act.  Therefore, if you are a licensed physician who incurs recruiting expenses as a result of interviewing with Pfizer that we pay or reimburse, your name, address and the amount of payments made currently will be reported to the government.  If you have questions regarding this matter, please do not hesitate to contact your Talent Acquisition representative.

EEO & Employment Eligibility

Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status.  Pfizer also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA.  Pfizer is an E-Verify employer.

Information & Business Tech#LI-PFE