Director - GRC Business Risk Liaison

3 days ago

Apply Now

Receive Emails with Similar Jobs

Amgen

WebsiteLinkedInAll Job Openings

Amgen is a global leader in biotechnology, focusing on the development and commercialization of innovative medicines made from living cells. The company aims to treat serious illnesses, often targeting diseases with limited therapeutic options. Amgen emphasizes scientific innovation and is committed to ethical research, patient safety, and environmental sustainability. It actively engages in clinical trials and is known for its contributions to the fields of cancer treatment and obesity management among others.

Biologics • Human therapeutics • Development of novel products

10,000+ employees

Founded 1980

🧬 Biotechnology

💊 Pharmaceuticals

🔬 Science

💰 Post-IPO Debt on 2022-12

📋 Description

• Act as the main point of contact for information security within assigned business units, • Develop and implement security programs tailored to the specific needs of business operations, • Assess and manage information security risks, • Collaborate with IT, compliance, legal, and risk management teams, • Conduct security assessments, audits, and compliance reviews, • Facilitate security awareness and training programs, • Monitor security incidents, coordinate response efforts, • Work with third-party vendors, partners, and suppliers, • Stay updated on emerging cybersecurity threats, trends, and best practices, • Develop metrics and reporting mechanisms to communicate security risks and compliance status to business partners

🎯 Requirements

• Doctorate degree and 4 years of information security or risk management experience • Or Master’s degree and 8 years of information security or risk management experience • Or Bachelor’s degree and 10 years of information security or risk management experience • At least 4 years experience directly managing people and/or leadership experience leading teams, projects, programs, or directing the allocation or resources • Industry certifications: Certified Information Security Manager (CISM), CompTIA Security, Certified Information Systems Security Professional (CISSP), SANS Global Information Assurance Certifications (GIAC) • 7+ years of experience in information security, risk management, or a related field, with at least 3 years in a leadership or advisory role. • Solid understanding of cybersecurity frameworks, including NIST, ISO 27001, and CIS Controls. • Experience with regulatory compliance requirements such as GDPR, HIPAA, NIS2, or SOX. • Demonstrated ability to work with business leaders to integrate security into business operations without compromising efficiency. • Superb communication and stakeholder management skills, with the ability to convey complex security concepts to non-technical audiences. • Strong analytical, problem-solving, and decision-making skills. • Experience in managing security incidents and implementing risk mitigation strategies. • Experience working in highly regulated industries such as finance, healthcare, or government. • Familiarity with business continuity and disaster recovery planning. • Ability to independently manage priorities and meet deadlines in a fast-paced, virtual team environment • Technical curiosity with strong logical, problem solving, and decision-making skills • Driven and thorough with the ability to deal with complexity and ambiguity • Working experience in Agile / DevOps environment • Must be team-oriented, placing priority on the successful completion of team goals

🏖️ Benefits

• A comprehensive employee benefits package, including a Retirement and Savings Plan with generous company contributions, • group medical, dental and vision coverage, • life and disability insurance, • flexible spending accounts • A discretionary annual bonus program, or for field sales representatives, a sales-based incentive plan • Stock-based long-term incentives • Award-winning time-off plans • Flexible work models, including remote and hybrid work arrangements, where possible