Senior Compliance Analyst

Detalles de la oferta

Roche fosters diversity, equity and inclusion, representing the communities we serve. When dealing with healthcare on a global scale, diversity is an essential ingredient to success. We believe that inclusion is key to understanding people's varied healthcare needs. Together, we embrace individuality and share a passion for exceptional care. Join Roche, where every voice matters.The PositionA healthier future. That's what drives us. This position will be located in Mississauga (Canada), Madrid or Sant Cugat del Vallès (Spain).Data security and privacy are key success factors in our digital transformation and essential to reach our ambitions. You are inspired to contribute to the overall Roche vision by applying end-to-end product security and privacy operations to keep our products and services secure and privacy compliant throughout the entire lifecycle. You believe in the potential of science, technology, data and insights to improve the standard of care for humankind and you are eager to help navigate through unchartered territory to lift this potential.The opportunityAs a member of the Compliance Product Team, you are given this opportunity in a team with a strong focus on collaboration and teamwork to support the Digital Products domain with state of the art and innovative security and privacy concepts.You will oversee or consult on technical architecture implementation activities, particularly for new and/or shared solutions. You coordinate compliance activities at a global/regional level.You help others (like engineers, cross functional team members) interpret laws and regulations (like GDPR, HIPAA, HITRUST and other regulations) correctly and ensure consistent adherence.In addition, you will:Help with audit related work internally and externally - check controls compliance, collect evidence and coordinate audit work (like ISO 27001, 27017 and 27018)Coordinate routine activities like Pen Testing, Disaster Recovery and tasks stemming from them, recording of results in tools like Jira, tracking any findings and remediation work,Define and implement security and privacy risk management governance and insights,Assist in drafting new or updated compliance policies and procedures, including specifying actual or potential implications to existing business operations and practices,Help prepare and deliver communication and training materials/sessions to educate others on the evolving compliance landscape and potential new or updated policies and related changes,Leverage your working knowledge of controls for cloud security, mobile application security, data privacy laws, AWS architecture and services,Put in practice your project management skills and ability to manage multiple projects simultaneously to meet objectives and key deadlinesConduct Risk assessments by analyzing the current risks and identifying potential risks that are affecting the business and product groupsWho you are5+ years related work experience in Information Security, Privacy & Risk Management with a min Bachelors in a related field.Conducting or being the subject of security and/or privacy auditsWorking with cloud environments requiredExpert planner with business process definition experience and a strong IT aptitudeSystem hardening, analysis and vulnerability managementUnderstanding of applicable and accepted audit and risk frameworks (such as COBIT, NIST, and ISO), standards (ISO 27000 family, HITRUST) and government guidelines and laws (HIPAA, GDPR)Clinical workflow solutions or in a clinical environment a plusKnowledge of AWS and Cloud Security preferredRelevant certifications like CISA, CISM, CRISC, CISSP preferredHealthcare software experience is strongly preferredRelocation benefits are not available for this position.Who we areAt Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we've become one of the world's leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.Roche Pharma Canada has its office in Mississauga, Ontario and employs over 850 employees. The Mississauga facility is bright, vibrant, fosters collaboration and teamwork, and is reflective of Roche's truly innovative culture.As of January 4, 2022, Roche requires all new employees who work in Canada to be fully vaccinated against COVID-19 on the date they take office. This requirement is a condition of employment at Roche that applies regardless of whether the position is on a Roche campus or remotely. If you have a valid reason for not being fully immunized, which is limited to certain specific medical reasons or other valid reasons protected by applicable human rights laws, you may request an exemption and / or adaptation measures regarding this vaccination requirement.Roche is an Equal Opportunity Employer.SummaryLocation: Mississauga; Madrid; Sant Cugat del VallèsType: Full time


Salario Nominal: A convenir

Fuente: Whatjobs_Ppc

Requisitos

Principal Data Strategist, Rwd - Uk & Selected Eu Locations

.This role can be flexibly based in the UK/selected EU locations.Picture Yourself At Parexel:The Principal Data Strategist leads the development of the scien...


Parexel - Madrid

Publicado 15 days ago

(Wo008) | Senior Consultant Maritime Decarbonisation

.Overview:Role: Senior Consultant Maritime DecarbonisationLocation: Madrid, Athens, London - HybridRole ID: 2024-2536Our vision is to create a safe and susta...


Ricardo - Madrid

Publicado 15 days ago

Oracle Erp Consultant Busqueda Urgente

.Press Tab to Move to Skip to Content LinkAt EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive cul...


Ernst & Young Advisory Services Sdn Bhd - Madrid

Publicado 15 days ago

Sr Consultant Estrategia -Transformación Digital Uwq904

MissionPerfilOTRAS HABILIDADES QUE TE HARÁN FALTA:Excelente capacidad analítica para la definición y redacción de especificaciones de proyecto en colaboració...


Empresa Líder - Madrid

Publicado 15 days ago

Built at: 2024-11-17T13:43:39.054Z