IT Risk - Cuajimalpa, México - Takeda Pharmaceutical
Descripción
_ OBJECTIVES/PURPOSE _
- Execute the full lifecycle of information security and data privacy thirdparty risk assessments as needed, either individually or through available resources, within the region
- Assist and execute control assessment activities to identify control effectiveness, maturity and areas for improvements within region
- Collaborate with internal thirdparty relationship owners and thirdparty representatives to recommend necessary security and privacy controls to effectively mitigate risks to Takeda
- Assist in promoting thirdparty risk management processes across business lines to help influence a strong culture of proactive awareness for thirdparty security risks
- Improve and help foster a positive end user experience with business stakeholders by enhancing our program to accommodate an agile business environment
_ ACCOUNTABILITIES _
- Execute the full lifecycle of information security and data privacy thirdparty risk assessments as needed, either individually or through available resources
- Collaborate with internal thirdparty relationship owners or thirdparty representatives in their efforts to provide responses to the security and privacy risk assessment questionnaire
- Assist and execute regional control assessment activties to identify control effectiveness, maturity and areas for improvements
- Effectively translate thirdparty responses to assessment questionnaire, using sound judgement, into concise risk exposure reporting for delivery to internal stakeholders
- Partner with internal thirdparty relationship owners and thirdparty representatives to recommend necessary security and privacy controls to effectively mitigate risks to Takeda
- Ensure robust tracking and remediation of thirdparty security and privacy risk exposures identified through assessment processes
- Provide any necessary training and awareness related to the thirdparty security process
- Contribute to the gathering and distribution of periodic program metrics and/or dashboards
- Mentor and train new risk analysts
Dimensions and Aspects
Technical/Functional
- Experience in evaluating thirdparties for the presence of fundamental information security and data privacy controls
- Ability to effectively negotiate appropriate remediation of security gaps with third party representatives to ensure protection of Takeda information
Leadership
- Ability to effectively manage conflicting priorities
- Develops strong relationships with other teams across the organization
Decision-making and Autonomy
- Assists the Regional Information Risk Assurance Lead with global risk and control assurance activities and regional execution
- Responds to risk stakeholders in a timely manner, engages colleagues when needed, and escalates when necessary
Education, Behavioral Competences and Skills
-
Essential
- Bachelor's degree or equivalent
- 13 years of experience in information security and/or thirdparty risk management
- Ability to manage multiple workstreams simultaneously
- Ability to think critically and analytically
- Capable of effectively managing shifting priorities
- Strong communication, interpersonal, presentation, and organizational skills
- Comfortable operating in and navigating a global organization where risk stakeholders can be located across geographies and time zones
Desired
- Security certification(s) (CISSP)
- ServiceNow GRC experience
Locations:
MEX - Santa Fe
Worker Type:
Employee
Worker Sub-Type:
Regular
Time Type:
Full time
Más ofertas de trabajo de Takeda Pharmaceutical
-
Web Digital Products QA Specialist
Cuajimalpa, México - hace 1 semana
-
Senior Business Analyst
Cuajimalpa, México - hace 1 semana
-
Senior Business Analyst
Cuajimalpa, México - hace 1 semana
-
Citrix Service Delivery Manager
Cuajimalpa, México - hace 17 horas
-
Account Lead
Cuajimalpa, México - hace 1 semana
-
Becario de Producción
Tlahuac, México - hace 2 semanas