Amgen Director, Information Security Governance, Assurance and Compliance in Thousand Oaks, California
Amgen is seeking a Director, Information Security Governance, Assurance and Compliance who will report to Amgen's Chief Information Security Officer and is responsible for the oversight and execution of the Amgen Information Governance, Assurance, and Compliance Management programs with the Global Information Protection group. The Director will be increasingly important to the future strategy and operations of the Information Protection organization and plays a central role in the management of and board level reporting for enhancements to Amgen's global information management and protection programs. At Amgen, our mission is simple: to serve patients.
Additionally, the Director will be fully accountable for enhancing information governance, compliance, audit response, information and records management, and assurance capabilities at Amgen, as well as, improving stakeholder confidence, maintaining situational awareness and organizational alignment across the Information Systems (IS), Global Business Solutions (GBS), and Global Information Protection (GIP) organizations.
PRINCIPAL ACCOUNTABILITIES FOR THE DIRECTOR, SECURITY GOVERNANCE, ASSURANCE AND COMPLIANCE:
Technical Expectations/Professional Practices
Directs the evolution of Amgen information governance, security control management, audit response, and compliance efforts in support of the CISO, CIO and SVP of GBS
Works directly with the CISO and CIO to develop management and board reports on the Information Protection Program (IPP), Information Management, and Information Governance maturity
Develops reports to the CISO, Chief Compliance Officer and the board of directors on records and information management practices, outcomes and enhancements
Operationalizes industry leading records and information management lifecycle practices globally at Amgen, including retention, destruction policies, schedules, standards and guidance while working cross-functionally with Quality, Law, Privacy and other global organizational leaders to ensure Information Protection policies continually complying with appropriate global laws and regulations
Works closely with senior IS, GBS and Amgen Global Quality program leadership to develop and manage IS/GBS policies and standards, ensuring consistent monitoring for adherence to security related controls as technology changes are made, and IPP maturity and effectiveness is maintained
Develops strategic plans for information governance, policies and standards; maps regulatory requirements across functions to identify compliance and audit response efficiencies while liaising with senior IS/GBS and Business Unit management to ensure information protection and governance control processes are mature, and outcomes are effective by appropriately addressing and escalating relevant risks to policy and regulatory compliance
Directs staff to ensure inventories of PCI, HIPAA, GDPR, Sarbanes-Oxley (SOX), administrative and information protection requirements are up to date and cross-functionally mapped while ensuring staff develop and maintain inventories of validated controls which map directly to, and ensure compliance with all regulatory and legal administrative and technical requirements
Guides information systems compliance efforts for identified risk areas; aligns management responses to strategic IS/GBS plans and tracks corrective action in response to key audit findings while supporting IS, GBS and Quality in their readiness and response to audit and inspection activities including Federal Drug Administration (FDA), external/internal audits and assessments
Maintain leading expertise on security, compliance and risk trends through training, research and development in order to mitigate potential security exposures, then develop, lead, and coach a staff of Governance, Information Assurance, and Compliance personnel while assuring training to other staff and external clients
Doctorate degree and 4 years of Information Systems Management, Compliance or Audit experience
Master's degree and 8 years of Information Systems Management, Compliance or Audit experience
Bachelor's degree and 10 years of Information Systems Management Compliance or Audit experience
4 years of managerial experience directly managing people and/or leadership experience leading teams, projects, programs or directing the allocation of resources
Demonstrated experience managing teams of 20 or more in a global BioPharmaceutical organization
Professional security management certification in one or more of the following: CISSP, CISA, CISM, GISO, GCIH, CIPP
Expert knowledge of the international standard for information security ISO/IEC 27002
Proven ability to work independently with or without direction while demonstrating the capability to prioritize and multitask in a high pressure and results-oriented environment
Proven leadership and mentorship skills while displaying a team-oriented interpersonal approach displaying the ability to effectively interface with a broad range of people and roles
Strong written and verbal communication skills demonstrating flexibility and adaptability in work approach, particularly in ambiguous circumstances
Amgen is committed to unlocking the potential of biology for patients suffering from serious illnesses by discovering, developing, manufacturing and delivering innovative human therapeutics. This approach begins by using tools like advanced human genetics to unravel the complexities of disease and understand the fundamentals of human biology.
Amgen focuses on areas of high unmet medical need and leverages its expertise to strive for solutions that improve health outcomes and dramatically improve people's lives. A biotechnology pioneer since 1980, Amgen has grown to be one of the world's leading independent biotechnology companies, has reached millions of patients around the world and is developing a pipeline of medicines with breakaway potential.
The invaluable contributions of our talented Tampa team will help us develop the vital and innovative medicines that treat serious illness and unmet medical needs around the globe.
Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.