Snr. Spec. Ddit Isc Ies

391465BR

**Snr. Spec. DDIT ISC IES**:
India

**About the role**

Location : #L1 Hybrid
The role of supported services is “Global” in nature in the areas around Campus Network (Wire and Wireless), WAN (Internet and Global Inter-Office Connections), Cloud (Network connecting to and in public cloud platforms), IP Telephony and Contact Centers, Network Security (VPN, Proxy), enabled with the underlying next-gen technology stack for each of these identified areas.
Your responsibilities include but not limited to:

- Provide governance/ risk advise and support for an IT functional team’s global network services tower for all aspects of information security and compliance governance globally.
- Strong knowledge of internal controls, internal risk and control frameworks/standards or the Information Management Policy Framework and ensure risks are handled in line with ISRM strategy, the policy framework, laws and regulations and outstanding industry standards.
- Ensure monitoring of information risk and proactive mitigation of issues - May deliver global information governance programs, e.g., risk management processes, information security awareness programs, data classification, storage and transmission guidelines, audit coordination and management, or development and maintenance of the Information Management Policy Framework.
- Ensure good communication and collaboration with the service owners of the IT Function for Risk Management and provide Risk Mitigation guidance and support in understanding the risk exposure and technical safeguards for IT Risk Management there by ensuring their compliance with Information Management Policy Framework and IT controls
- Ensure Novartis information assets (including Crown Jewels) are secured by working with security SMEs in deploying appropriate security measures; and identified vulnerabilities are analyzed, prioritized, and treated for in-scope services
- Provide governance and remediation of threats, vulnerabilities, and risks in the ISRM risk register in the IT function and Analyze impact of new technologies and regulatory changes on information security considering Cyber Security and Data Privacy Acts, Laws, and Regulations and initiate necessary conversations/engagements.
- Systematically supports implementation and monitoring of the ISRM Policy Framework within the IT Functions and business organization. Analyze risks to information assets, identify potential issues and support & track risk remediation activities based on agreed risk mitigation solutions.
- Develop and Present operational metrics based on industry best practices. Enhance existing metrics and reporting on risk management. Develop governance dashboards and reports showcasing IT Risk management improvements at the function level and identifies points of improvement or gaps in the service delivery of the central ISRM teams and works together with the central ISRM Compliance Services to resolve them.

**Commitment to Diversity & Inclusion**:

- We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve._

**Role Requirements**
- Over 5 years’ experience in the areas of Business Information Security and Compliance, IT risk management, Audit management’ Information Governance and Management
- University degree in business/ technical/ scientific area or comparable education/experience.
- Focused approach in handling the functional & operational risks, successful engagement with everyone, advocacy to drive Information Security Compliance activities.
- Experience with Good Practice quality guidelines and regulations (GxP)
- Collaboration and successful engagements with stakeholders, vendors, support teams, internal team members, etc.

Commitment to Diversity and Inclusion:
Novartis is committed to building an outstanding, inclusive work environment and diverse teams' representative of the patients and communities we serve.

Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Novartis and our career opportunities, join the Novartis Network here:
**Division**

Operations

**Business Unit**

DATA, DIGITAL & IT

**Work Location**

Hyderabad, AP

**Company/Legal Entity**

Nov Hltcr Shared Services Ind

**Functional Area**

Technology Transformation

**Job Type**

Full Time

**Employment Type**

Regular

**Shift Work**

No

**Early Talent**

No