Associate, Risk Management, Exception Management

ROLE SUMMARY
- The Digital Risk Management (DRM) organization works with a global stakeholder community to incorporate legal, regulatory and corporate policy requirements into solutions, services and daily Digital operational activities. DRM strives to make compliance simple and to develop logical, robust and cost-effective compliant processes and services across Digital.
- The Associate Risk Management Exception Management role will ensure that all risk exceptions to Pfizer's standard policies are evaluated against agreed criteria, properly documented, and executed upon. They will partner closely with Pfizer Users to comply with Cybersecurity requirements and Digital policies, and will seek to identify opportunities to streamline organizational processes and bring forward ideas for automation where appropriate.
- The position is an individual contributor role with leadership and engagement with cross functional internal colleagues and external partners (under direct oversight).
- ROLE RESPONSIBILITIES
- Under direct oversight this role will have the following primary responsibilities:
- Manage new requests related to exceptions with a Compliance or Security risk. Execute transaction processing with quality and attention to detail.-
- Evaluate business requirements and justification for exceptions. Analyze security details to ensure requests include comprehensive documentation of the requirements.-
- Partner with Pfizer Users to comply with Cybersecurity requirements and Digital policies.-
- Liaison with Users to research the global cyber impact of requests and processes to facilitate integration into a proposed solution.-
- Monitor for global Cybersecurity risks to reduce the probability of the risk exposure to sensitive Pfizer data.-
- Partner with cross functional Pfizer teams to understand organizational needs and identify Pfizer Digital operating processes that can satisfy the requests.-
- Analyze requests, research and suggest Cybersecurity/Digital solutions.-
- Perform Cybersecurity analytical research and support department initiatives.-
- Document and Report impact assessment to processes impacted by new exceptions.-
- Document and Present Remediation Gap recommendations and decisions.-
- Perform periodic reviews of active exceptions.-
- Revoke exceptions as needed.-
- Participate in routine reporting to Digital lines on Compliance & Security exceptions.-
- Support audits and inspections of Digital.-
- Assist with defined compliance strategic projects/initiatives, and manage the associated records and activity tracking- BASIC QUALIFICATIONS- BS in Information Technology, Cybersecurity, Software Development, Information Architecture or a directly related field.-
-