IT Risk - Cuajimalpa, México - ARIAD

ARIAD

Empresa verificada

Cuajimalpa, México

hace 1 semana

Publicado por:

Rodrigo Fernández

Reclutador de talento para beBee

Descripción

At Takeda, we are guided by our purpose of creating better health for people and a brighter future for the world.

Every corporate function plays a role in making sure we — as a Takeda team — can discover and deliver life-transforming treatments, guided by our commitment to patients, our people and the planet.

People join Takeda because they share in our purpose.

And they stay because we're committed to an inclusive, safe and empowering work environment that offers exceptional experiences and opportunities for everyone to pursue their own ambitions.

Job ID R0106851
Date posted 10/09/2023
Location Delegación Cuajimalpa de Morelos, Mexico City
The Future Begins Here
At Takeda, we are leading digital evolution and global transformation. By building innovative solutions and future-ready capabilities, we are meeting the need of patients, our people, and the planet.

Mexico City has been selected to be home to Takeda's recently launched Innovation Capability Center thanks to its international recognition in qualified and experienced talent in the data, digital and technology fields.

We invite you to join our digital transformation journey.

In this role, you will have the opportunity to boost your skills and become the heart of an innovative engine that is contributing to global impact and improvement.

At Takeda's ICC we Unite in Diversity

OBJECTIVES/PURPOSE

Execute the full lifecycle of information security and data privacy thirdparty risk assessments as needed, either individually or through available resources, within the region
Assist and execute control assessment activities to identify control effectiveness, maturity, and areas for improvements within region.
Collaborate with internal thirdparty relationship owners and thirdparty representatives to recommend necessary security and privacy controls to effectively mitigate risks to Takeda.
Assist in promoting thirdparty risk management processes across business lines to help influence a strong culture of proactive awareness for thirdparty security risks.
Improve and help foster a positive end user experience with business stakeholders by enhancing our program to accommodate an agile business environment.

ACCOUNTABILITIES

Execute the full lifecycle of information security and data privacy thirdparty risk assessments as needed, either individually or through available resources
Collaborate with internal thirdparty relationship owners or thirdparty representatives in their efforts to provide responses to the security and privacy risk assessment questionnaire.
Assist and execute regional control assessment activities to identify control effectiveness, maturity, and areas for improvements.
Effectively translate thirdparty responses to assessment questionnaire, using sound judgement, into concise risk exposure reporting for delivery to internal stakeholders
Partner with internal thirdparty relationship owners and thirdparty representatives to recommend necessary security and privacy controls to effectively mitigate risks to Takeda.
Ensure robust tracking and remediation of thirdparty security and privacy risk exposures identified through assessment processes.
Provide any necessary training and awareness related to the thirdparty security process.
Contribute to the gathering and distribution of periodic program metrics and/or dashboards.
Mentor and train new risk analysts

Dimensions and Aspects

Technical/Functional

Experience in evaluating third parties for the presence of fundamental information security and data privacy controls.
Ability to effectively negotiate appropriate remediation of security gaps with third party representatives to ensure protection of Takeda information.

Leadership

Ability to effectively manage conflicting priorities.
Develops strong relationships with other teams across the organization.

Decision-making and Autonomy

Assists the Regional Information Risk Assurance Lead with global risk and control assurance activities and regional execution.
Responds to risk stakeholders in a timely manner, engages colleagues when needed, and escalates when necessary.

Education, Behavioral Competences and Skills
-
Essential

Bachelor's degree or equivalent
13 years of experience in information security and/or thirdparty risk management
Ability to manage multiple workstreams simultaneously.
Ability to think critically and analytically.
Capable of effectively managing shifting priorities
Strong communication, interpersonal, presentation, and organizational skills
Comfortable operating in and navigating a global organization where risk stakeholders can be located across geographies and time zones.

-
Desired