MANAGER, INFORMATION RISK & SECURITY
This fortune 500 company is a leading multinational sales and distribution services supplier in the pharmaceutical industry.
Job Responsibilities:
• provide leadership in both project and operational initiatives in the security & risk realm
• identify and drive mitigation of information security risks to ensure the integrity of cardinal health solutions
• act as security operations, virtual CERT team member for cardinal health China
• make continuous process improvement efforts to ensure the delivery of quality deliverables
• set security requirements for threat and vulnerability, security operations, and project initiatives
• professional senior individual contributor role
• in-depth experience, knowledge and skills in information security and risk management approaches, control frameworks and methodologies
• applies knowledge and skills to a wide range of standard and non-standard situations
• works independently with minimal guidance
• usually determines own work priorities
• ability to learn new concepts and technologies
• acts as a resource for colleagues with less experience
• create and articulate information security requirements
• assess technology for security risks/exposures
• test adherence to security requirements pre and post implementation
• have a breadth of security experience to relate to situations, both standard and non-standard
• have experience preparing risk assessments of infrastructure, application design, and outsourced services
• drive remediation and mitigation activities across, providing updates to cardinal health ISO
• present assessment findings and influence organizational partners at multiple levels in the organization
• handle information security incidents including solution risks, enterprise threat and vulnerably, work with confidential breach information and forensics
Key Requirements:
• bachelor of science (BS) in computer science, business or related field preferred or equivalent work experience
• minimum of six years of experience required in information security related function
• self motivated individual that can drive to issue resolution
• strong written and oral interpersonal skills
• strong analytical, problem solving, organizational, and planning skills
• proficient PC skills; including working knowledge of Microsoft Office products
• certified information systems security professional (CISSP), certified information systems auditor (CISA) or China equivalent preferred
If you would like to apply for this role or find out more, please contact Steve Shen at Robert Walters on sha.it@robertwalters.com.cn quoting the Job Reference SIA0/ATW/157660.