Associate Director for Information Security and Compliance, M&A TeamJob ID: REQ-10016875
Aug 20, 2024
SummaryAssociate Director for Information Security and Compliance, M&A Team
Location: Prague, Czechia; Barcelona, Spain
About the role:
Novartis Mergers and Acquisitions (M&A) as well as Business Development and Licensing (BD&L) are key contributors to our strategy and mission. We are typically engaged to support the security of billion-dollar transactions with the potential to improve the lives of millions of patients worldwide. Our team now seeks to strengthen its ability to support these patient life-changing transactions via the appointment of an Associate Director for M&A ISC.
Our objective is to ensure that Novartis M&A and BD&L transactions comply with Novartis policies designed to protect deal value so that acquisitions can be rapidly integrated whilst ensuring compliance is maintained. This is a high profile role and the successful candidate will benefit from exposure to and partnering with senior IT and Business leads to implement and support a broad range of Information Security and Risk Management (ISC) topics including information security, compliance and/or information risk management within M&A and BD&L areas.
About the RoleKey Responsibilities: Ensure Novartis M&A and BD&L transactions are planned and driven in a secure and compliant manner.Maintain and continually develop Information Security and Compliance guidelines we deliver to M&A and BD&L.Provide governance/risk advisory into the M&A IT Function Leadership and their respective delivery team leads.Take ownership and accountability for the Information Security oversight and governance of a specific global governance/risk area.Ensure M&A IT transaction (project) risks are managed in line with ISC strategy, the policy framework, industry standards and applicable legal requirements.Ensure monitoring of information risk and proactive mitigation of issues in accordance with Novartis policy, including the identification of points of improvement or gaps in the service delivery of the central ISC teams and work together with them to resolve them.Ensure good communication and collaboration with key stakeholders across IT and the business.Maintain strong knowledge of internal controls and internal risk and control frameworks/standards or the Information Management Policy Framework.Minimum Qualifications: University level degree in business/IT technical/scientific area or comparable education/experience.Strong professional experience in a comparable role, for example Audit, Compliance or Legal.Good knowledge of GxP regulated business processes in the pharmaceutical industry.Experience with supporting projects from the Information Security and Risk Management perspectives.Experience in a complex international matrix organization.Experience of assessing control suitability and proposing pragmatic mitigation activity where controls come up short.Experience of working with security-related frameworks such as ISO 27XXX, COBIT, CIS, SOC and NIST.Strong experience in communicating with and managing senior management (both from IT and the Business) on information security topics.Experience in the practical application of Information Security Risk Management.Proficient in English (written and spoken).Experience with M&A projects.Professional information security, risk or audit certification, such as CISSP, CISM, CIA, CISA, CRISC or ISO 27001 auditor/practitioner.Flexible approach (prioritize according to workload) with an ability to work to tight deadlines.Commitment to Diversity & Inclusion: We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve. You'll receive (Czechia only):
Monthly pension contribution matching your individual contribution up to 3% of your gross monthly base salary; Risk Life Insurance (full cost covered by Novartis); 5-week holiday per year; (1 week above the Labour Law requirement); 4 paid sick days within one calendar year in case of absence due to sickness without a medical sickness report; Cafeteria employee benefit program – choice of benefits from Benefit Plus Cafeteria in the amount of 12,500 CZK per year; Meal vouchers in amount of 105 CZK for each working day (full tax covered by company); Car Allowance; MultiSport Card.
Why Novartis?
Our purpose is to reimagine medicine to improve and extend people's lives and our vision is to become the most valued and trusted medicines company in the world. How can we achieve this? With our people. It is our associates that drive us each day to reach our ambitions. Be a part of this mission and join us!
#J-18808-Ljbffr