Sr. Manager Security Compliance, Audit and Assurance

Thank you for your interest in working for our Company. Recruiting the right talent is crucial to our goals. On April 1, 2024, 3M Healthcare underwent a corporate spin-off leading to the creation of a new company named Solventum. We are still in the process of updating our Careers Page and applicant documents, which currently have 3M branding. Please bear with us. In the interim, our Privacy Policy here: https://www.solventum.com/en-us/home/legal/website-privacy-statement/applicant-privacy/ continues to apply to any personal information you submit, and the 3M-branded positions listed on our Careers Page are for Solventum positions. As it was with 3M, at Solventum all qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Job Description:

3M Health Care is now Solventum

At Solventum, we enable better, smarter, safer healthcare to improve lives. As a new company with a long legacy of creating breakthrough solutions for our customers’ toughest challenges, we pioneer game-changing innovations at the intersection of health, material and data science that change patients' lives for the better while enabling healthcare professionals to perform at their best. Because people, and their wellbeing, are at the heart of every scientific advancement we pursue.

We partner closely with the brightest minds in healthcare to ensure that every solution we create melds the latest technology with compassion and empathy. Because at Solventum, we never stop solving for you.

The Impact You’ll Make in this Role
Solventum is seeking a dynamic and talented Senior Manager for Cyber Security Governance, Risk & Compliance. This position will report into the Director of Security Compliance, Audit and Assurance and will provide support for critical efforts across the GRC scope of work, and partners with other departments. This position will lead standard security related audit teams to complete assessments timely in accordance with customer requirements. As a key member of the security team, the GRC security analyst must focus on strong risk management and corporate resiliency, and not be driven solely by compliance.

Responsibilities

• Conduct security-related audits, compliance checks and external assessment processes, including but not limited to the

• NIST 800-53, StateRAMP, NIST CSF, ISO 27001, Sarbanes-Oxley (SOX), Service Organization Controls (SOC) 2, Payment Card Industry Data Security Standard (PCI-DSS), ENS, C5, CTPAT and other applicable industry standards.

• Facilitate IT compliance of identified controls – for example, IT general controls (ITGCs), application, …