Senior Manager, Security Compliance (Remote)

If you are a current Jazz employee please apply via the Internal Career site

Jazz Pharmaceuticals plc (NASDAQ: JAZZ) is a global biopharmaceutical company whose purpose is to innovate to transform the lives of patients and their families. We are dedicated to developing life-changing medicines for people with serious diseases - often with limited or no therapeutic options. We have a diverse portfolio of marketed medicines and novel product candidates, from early- to late-stage development, in neuroscience and oncology. We actively explore new options for patients including novel compounds, small molecules and biologics, and through cannabinoid science and innovative delivery technologies. Jazz is headquartered in Dublin, Ireland and has employees around the globe, serving patients in nearly 75 countries. For more information, please visit www.jazzpharma.com and follow @JazzPharma on Twitter.

Job Description

Brief Description:

We are seeking a highly skilled and experienced Senior Manager of Information Security Compliance to lead our information security compliance team. This role involves managing internal and external security assessments, performing security audits, overseeing the ISO 27001 program, and ensuring compliance with information security policies and standards. The ideal candidate will have experience leading audits and assessments and a deep understanding of ISO 27001, NIST, industry best practices, and relevant laws and regulations such as SOX and privacy laws. They will be responsible for developing and implementing compliance strategies, conducting thorough security assessments, managing audit processes, and fostering a security-conscious culture within the organization. This position requires strong leadership skills, excellent communication abilities, and a proven track record in information security compliance.

Essential Functions/Responsibilities

Assessment Programs

• Management of Security Assessments: Manage, oversee and enhance the process for execution of hands-on gap or risk security assessments to identify security risks and mitigating controls for third party applications and integrations. Facilitate collaborative meetings with InfoSec, IS Team leads, IS architects, and business requestors as needed. Prepare detailed reports on assessment findings and track remediation efforts to ensure timely resolution of identified issues.

• Perform Security Audits: Develop and implement comprehensive audit plans and schedules for internal and external audits (audit scope can include applications, database, systems, infrastructure, etc.). Conduct thorough internal audits to assess compliance with policies and standards, ISO 27001 Annex A controls, and other relevant regulations. Facilitate external audits by coordinating with third-party auditors, providing necessary documentation, and addressing any audit findings. Prepare detailed audit reports, highlighting areas of non-compliance and recommending corrective actions. Track and monitor …