Job Details
Site Name: Bengaluru Luxor North Tower Posted Date: Apr 3 2023 Ready to help shape the future of healthcare GSK is a global biopharma company with a special purpose - to unite science, technology and talent to get ahead of disease together - so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns - as an organization where people can thrive Getting ahead means preventing disease as well as treating it, and we aim to impact the health of 25 billion people around the world in the next 10 years Our success absolutely depends on our people While getting ahead of disease together is about our ambition for patients and shareholders, it's also about making GSK a place where people can thrive.
We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be A place where they can be themselves - feeling welcome, valued and included Where they can keep growing and look after their wellbeing So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together Role responsibilities and requirements Development Identifying risk and mitigation, process improvements, pulling together information that team reports out to larger audience Conduct risk assessments to identify potential security threats and vulnerabilities Develop and implement security plans and protocols to mitigate identified risks Conduct regular security audits and assessments to identify potential weaknesses in existing security measures and make recommendations for improvements Stay up to date with emerging security threats and trends, and make recommendations for proactive measures to prevent potential risks Ensure compliance with all relevant legal and regulatory requirements related to security and risk management Develop risk management capabilities (e.
g, risk assessments, audits) for infrastructure/Network Conduct risk assessments to identify risks and recommend how to mitigate risks Monitor risk landscape and identify emerging and future risks Analyze the GSK's cyber security infrastructures to enable targeted and data-driven enhancements Assess cyber security policies and procedures to analyze compliance with regulatory requirements and evaluate overall operational efficiency provides GSK business owners with mitigating solutions Proficient with multiple domain-specific cyber security technology solutions and can effectively integrate them to meet and exceed GSK's requirements Enable sustainability and continuous improvement of cyber security solutions by assessing and enhancing GSK's cyber security governance infrastructures Test the effectiveness of GSK's cyber security technologies to identify and articulate opportunities for improvement across the digital, physical, and social elements of GSK Understand the interaction of business and technology processes / risks and can explain it in business terms to both technical and non-technical audiences Provide advice on security best practices, and guide GSK in developing and implementing security policies aligned to network/infrastructure Evaluate and recommend emerging security products that enable and optimize network/infrastructure Prepare monthly dashboards, statistics, and executive reports for the management Delivery Ensure project goals are achieved with quality and on time in alignment with the stakeholders' expectations.
Ability to work on complex projects and in a distributed environment Escalate when necessary and promptly Work in close collaboration with other team members in the Infrastructure and Network Enterprise team to ensure Development/Delivery aspects are well represented in the project's requirements and deliverables Ownership Take ownership of the end-to-end cyber risk assessments and help steer until completion Governance Maintain governance that allows projects and stakeholders to manage overall project performance and manage program risks within the global nature of some of the programs Forward looking Remain flexible towards technology approaches to ensure we are taking advantage of new technologies.
Stay up to date with emerging security threats and trends, and make recommendations for proactive measures to prevent potential risks Keep abreast of industry developments in analytics and interpret how these would impact services and present new opportunities Quality, Risk & Compliance Ensure all risks and issues associated with owned projects are promptly recorded and managed in the appropriate Risk & Issue logs Ensure all Risks and Issues have clear action/mitigation/contingency plans defined, named action owners, and timelines for completion Technical Architecture Be conversant with technical architecture to contribute to design discussions in partnership with the Delivery/Development Lead and dedicated Analytics & Data Architect Key Technical skills and experience required MS/BS degree in Computer Science, Engineering, Data Science, or equivalent experience, with a preference on experience and proven track record.
An ideal candidate would have an impressive hands-on work history in an advanced, recognized, and innovative environment 6 - 10 years of experience in IT risk and technology in a large organization of which 5 years in information security experience in cyber risk and relevant experience with Infrastructure/Network 5+ years of experience integrating and supporting various enterprise security tools, Risk assessment tools Subject matter expertise in conducting security risk assessments for technology infrastructure and network Experienced with vulnerability scanning and penetration testing tools and technologies Understanding of control and risk management concepts and knowledge of the operational aspects of the information risk business Display an understanding of the risk management in its relation to the real world by expressing complex subject matter in terms accessible to a wider public and senior management, both verbally and in writing Knowledge of risk management policies, methods, standards, processes, governance models, and industry-standard risk analysis approaches Knowledge of current industry trends in information risk management Knowledge of LAN, WAN and Data Centre network & Security industry standards relevant to data communications / networking and computing Knowledge on Security best practices and experience in Network solutioning, Operations and Project Management The ideal candidate possesses excellent communication skills and the ability to communicate inherently complicated technical concepts to non-technical stakeholders of all levels.
At GSK we value diversity (Gender, LGBTQ +, PwD etc) and treat all candidates equally We aim to create an inclusive workplace where all employees feel engaged, supportive of one another, and know their work makes an important contribution GSK is a global biopharma company with a special purpose - to unite science, technology and talent to get ahead of disease together - so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns - as an organisation where people can thrive Getting ahead means preventing disease as well as treating it, and we aim to impact the health of 2.
5 billion people around the world in the next 10 years Our success absolutely depends on our people While getting ahead of disease together is about our ambition for patients and shareholders, it's also about making GSK a place where people can thrive We want GSK to be a workplace where everyone can feel a sense of belonging and thrive as set out in our Equal and Inclusive Treatment of Employees policy We're committed to being more proactive at all levels so that our workforce reflects the communities we work and hire in, and our GSK leadership reflects our GSK workforce.
Important notice to Employment businesses/ Agencies GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.
It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way GlaxoSmithKline does not charge any fee whatsoever for recruitment process Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location Even if they claim that the money is refundable.
If you come across unsolicited email from email addresses not ending in gskcom or job advertisements which state that you should contact an email address that does not end in 'gskcom', you should disregard the same and inform us by emailing [HIDDEN TEXT], so that we can confirm to you if the job is genuine