Job was saved successfully.
Job was removed from Saved Jobs.

Job Details

Bristol Myers Squibb

Ecosystem Risk Specialist

Equipment/Technology Specialist

Equipment and Facilities Specialist

No

Tampa, Florida, United States

Working with Us
Challenging. Meaningful. Life-changing. Those aren’t words that are usually associated with a job. But working at Bristol Myers Squibb is anything but usual. Here, uniquely interesting work happens every day, in every department. From optimizing a production line to the latest breakthroughs in cell therapy, this is work that transforms the lives of patients, and the careers of those who do it. You’ll get the chance to grow and thrive through opportunities uncommon in scale and scope, alongside high-achieving teams rich in diversity. Take your career farther than you thought possible.

Bristol Myers Squibb recognizes the importance of balance and flexibility in our work environment. We offer a wide variety of competitive benefits, services and programs that provide our employees with the resources to pursue their goals, both at work and in their personal lives. Read more: careers.bms.com/working-with-us.

Position Summary

The primary focus of this role is the delivery of the third-party cybersecurity, privacy and quality assessments. This position is responsible for the planning and execution of assigned third-party risk assessments, country risk studies and third-party contract reviews. This job will require orchestrating risk management related efforts across a broad set of stakeholders and sponsors ensuring project commitments are met with the right sense of urgency.

If you want an exciting and rewarding career that is meaningful, consider joining our diverse team!

Key Responsibilities

  • Execute end to end third party risk management cybersecurity, privacy, and quality reviews across the global supplier portfolio.
  • Contribute to the development of third-party IT risk related strategy, policy, projects, and analytics.
  • Implement Third Party Risk Oversight tools development
  • Review third-party contract for Cybersecurity and quality related requirements
  • Deliver third-party risk assessments and contract reviews within the defined SLAs
  • Develop, implement, and analyze assessment reports
  • Guide and assist in the implementation of sound and effective third-party risk processes across the enterprise.
  • Provide counsel on third party related risk issues, ensuring an independent review of policy compliance.
  • Collaborate with other horizontal Risk SMEs (Compliance & Ethics Risk, technology, etc.) as needed to manage risks across the Third-Party Risk Lifecycle
  • Develop risk analytics and reporting related to Third Party lifecycle and concentration risk
  • Facilitate and disseminate best practices across all markets and functions.
  • Champion third party risk awareness and best practice sharing with various stakeholders and aid in the development of third-party risk management training modules.
  • Raise the level of third-party risk awareness among IT and business.

Qualifications & Experience

  • 2-5 years of experience in Information Technology architecture, IT or Security related audits or assessments.
  • Experience with FDAs IT and Quality related requirements for pharmaceutical industry
  • Experience of assessing IT General Controls compliance
  • Experience with SOC 2 Type II, ISO 27001, ISO 9001 audits
  • Experience with basic data management skills including SQL, Microsoft Excel and Microsoft PowerBI
  • Strong understanding of industry leading IT frameworks such as NIST, COBIT and VAL IT
  • Strong verbal and written communication skills
  • CISSP, CISA, CRISC certification plus
  • Knowledge of regulatory requirements related to supplier assessment and management.

#LI-Hybrid

If you come across a role that intrigues you but doesn’t perfectly line up with your resume, we encourage you to apply anyway. You could be one step away from work that will transform your life and career.

Uniquely Interesting Work, Life-changing Careers
With a single vision as inspiring as “Transforming patients’ lives through science™ ”, every BMS employee plays an integral role in work that goes far beyond ordinary. Each of us is empowered to apply our individual talents and unique perspectives in an inclusive culture, promoting diversity in clinical trials, while our shared values of passion, innovation, urgency, accountability, inclusion and integrity bring out the highest potential of each of our colleagues.

On-site Protocol
Physical presence at the BMS worksite or physical presence in the field is a necessary job function of this role, which the Company deems critical to collaboration, innovation, productivity, employee well-being and engagement, and it enhances the Company culture.

BMS is dedicated to ensuring that people with disabilities can excel through a transparent recruitment process, reasonable workplace accommodations/adjustments and ongoing support in their roles. Applicants can request a reasonable workplace accommodation/adjustment prior to accepting a job offer. If you require reasonable accommodations/adjustments in completing this application, or in any part of the recruitment process, direct your inquiries to adastaffingsupport@bms.com. Visit careers.bms.com/eeo-accessibility to access our complete Equal Employment Opportunity statement.

BMS cares about your well-being and the well-being of our staff, customers, patients, and communities. As a result, the Company strongly recommends that all employees be fully vaccinated for Covid-19 and keep up to date with Covid-19 boosters.

BMS will consider for employment qualified applicants with arrest and conviction records, pursuant to applicable laws in your area.

Any data processed in connection with role applications will be treated in accordance with applicable data privacy policies and regulations.

Share