Jazz Pharmaceuticals plc (NASDAQ: JAZZ) is a global biopharmaceutical company whose purpose is to innovate to transform the lives of patients and their families. We are dedicated to developing life-changing medicines for people with serious diseases - often with limited or no therapeutic options. We have a diverse portfolio of marketed medicines and novel product candidates, from early- to late-stage development, in neuroscience and oncology. We actively explore new options for patients including novel compounds, small molecules and biologics, and through cannabinoid science and innovative delivery technologies. Jazz is headquartered in Dublin, Ireland and has employees around the globe, serving patients in nearly 75 countries. For more information, please visit www.jazzpharmaceuticals.com and follow @JazzPharma on Twitter.
Jazz Pharmaceuticals is looking for an experienced Manager– Third Party Information Security Risk Management – to maintain and improve Jazz’s TPRM framework and continuously manage third-party Information security risks throughout the lifecycle of the vendor’s engagement with Jazz.
We welcome an innovative individual that embraces challenges and offers creative solutions. This manager is expected to possess strong process management and communication skills. A sound knowledge of the firm and the industry, particularly within legal, compliance, and other control-focused departments, is preferred.
Essential Functions
- Maintain and improve Jazz’s third-party information security risk management framework
- Act as a Subject Matter Expert and serve as the primary point of contact to manage, mitigate and oversee third-party information security risks
- Perform due diligence on third-party vendors at the contracting stage
- Identify and assess risk, determine applicable controls which mitigate risk, and communicate opportunities for control improvements to third-party vendors on an ongoing basis
- Communicate and escalate third-party risk and control issues identified
- Track and manage remediation items and/or findings to completion
- Provide oversight for all key deliverables from Third Party Information Security risk assessment and remediation
- Manage third-party operational (KPI) and risk (KRI) metrics for Third Party Information Security Risks
- Collaborate with internal business partners to manage the Information Security needs of Jazz for Third Parties
- Actively participate in internal forums for developing and providing thought leadership in third-party risk management
- Cultivate robust and sustainable working relationships between Information Security, Quality Assurance, Legal, Procurement teams, and other IT and business functions to foster a cross-functional team environment.
- Collaborate with other Risk Functions and strive for continuous improvement and integrated risk management across all the risk functions
- Lead and support Jazz’s outsourced TPRM team, provide training, monitor their performance and ensure the contractual obligations, SLAs are met
Qualifications:
- Three (3) to five (5) years of experience working in a risk or control or audit function, 1 – 3 years of experience in Third Party Risk Management preferred
- Excellent written and verbal communication skills; ability to convey security concepts to non-technical audiences (e.g. senior and executive management, internal customers)
- Ability to see the bigger picture of overall Information Security and understand the impact of Third-Party Risk Management on Information security
- Ability to articulate and demonstrate a risk-relevant approach for Third Party Information Security Risk Management
- Understanding of IT Systems, Network Security Concepts, Cloud Security concepts, Virtualization, Threat and Vulnerability Management etc.
- Ongoing familiarity with emerging and prevalent technologies and IT systems
- Experience in leading global cross-functional project teams, along with strong technical expertise, is highly desirable
- Must have strong analytical, risk-based problem solving and critical thinking skills and the ability to support decisions that balance Information security while also enabling business objectives
- Demonstrated vendor relationship management skills, with the ability to build a strong rapport.
- Ability to work independently with little direction and/or supervision
- Bachelor's degree required
Optional Skills and Certifications:
- Pharmaceutical industry experience
- Ability to travel for 10-15%
Jazz Pharmaceuticals is an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any characteristic protected by law.