IQVIA Director, Information Security Compliance in Warsaw, Poland
Director, Information Security Compliance
Flexible location : UK/ France/ Poland
Department: Information Security
Reporting to: Chief Information Security Officer (CISO)
Role and Responsibilities
The Head of Information Security Compliance role presents a dynamic opportunity to ensure the secure operation of the IQVIA global information technology (IT) infrastructure and processes through identifying potential gaps and enforcing compliance with external and internal requirements.
This role plays a large part in our global Information Security team and will provide an excellent opportunity to liaise with key external and internal stakeholders while strengthening our Information Security function.
You will work closely with both the CISO and our Chief Information Officer (CIO) and their direct reports within IQVIA. You will be part of a global CIO organization structure partnering with the Business Units community and their related teams, as well as communicating directly with IQVIA customers as part of applicable compliance processes.
You will also find yourself working together with other IQVIA Information Security managers and staff, and liaising regularly with senior management at IQVIA, including Business Units leadership teams. This is an opportunity to join and progress with a forward-thinking department.
Principal responsibilities will include:
Direct and deliver global Information Security Compliance activities, including both business-as-usual processes and improvement initiatives as planned on an annual basis
Develop, implement, maintain, and oversee processes aimed at ensuring compliance with IQVIA security policies and procedures defined in IQVIA Integrated Information Security Framework (IISF)
Identify and suggest applicable revisions, updates and amendments to IISF as and when becomes necessary to be processed by the IQVIA Information Governance team
Direct and provide support to regularly scheduled audits on IQVIA internal IT systems and supporting third-party or customer audits as required in order to maintain certifications, attestations and other Information Security compliance-related status attributes for IQVIA
Ensure provision of Information Security support for annual compliance audits, attestations and certification programs as applicable to IQVIA IT infrastructure and systems, including: Service Organization Controls (SOC1 and SOC2 Type II), Sarbanes-Oxley (SOx), HIPAA, GDPR, GxP, ISO27001 and other applicable regional frameworks
Direct the Corrective and Preventive Actions (CAPA) coordination process to ensure both regulatory issues and compliance-related information security issues identified from a number of sources are resolved and closed in a timely manner delivering a sustainable solution
Engage with and direct activities of third-party specialist service providers where necessary to support Information Security Compliance related activities, including carrying out of special reviews, analyses or assessments
Direct activities of the Program Management Office to ensure effective and efficient execution of projects across all CIO teams in compliance with established project intake, prioritization, tracking, reporting as well as provision of project methodology and guidance to the CIO project management community
Direct improvement and transformational initiatives on selected IT Service Management processes in the CIO organization as periodically identified based on the requirements to improve process compliance and improve efficiency
Report regularly to the CISO and CIO on the status of all Compliance-related activities including compliance processes metrics, issues and remediation actions
Develop talent in the Information Security Compliance team through directing, coaching and mentoring direct reports and other Information Security team members where applicable, and supporting team recruitment objectives
Direct or support as necessary deployment, management, and maintenance of information security safeguards and their corresponding or associated software tools related to Information Security Compliance processes
Manage Information Security Compliance budget within annual plan
Required Experience and Qualifications
Minimum of 12 years of professional experience in Information Security Compliance, Risk Management, IT Controls or other related areas, including minimum of 4 years in Information Security related roles
Bachelor's degree in Business Administration, Computer Sciences or related areas is mandatory
A CISSP, CISM or equivalent professional certificate is mandatory
An ITIL, project management, or other related certificates are preferred
Working knowledge of IT governance frameworks and standards such as CobiT, ITIL, ISO27001
Working knowledge of regulatory and legal requirements frameworks related to information security for healthcare data, such as HIPAA, GDPR and/or equivalent regional frameworks
SOX controls implementation, maintenance or operation experience is preferred
Experience in information technology related positions with working knowledge of IT infrastructure, networks, databases, processing systems, web applications, and mobile technology is preferred
Strong leadership, people management and talent development skills
Excellent communication skills, including ability to communicate across countries and cultures, and at all levels of the organization including internal and external stakeholders
Relationship building skills and ability to influence change without direct authority
Attention to detail combined with strategic perspective
Excellent staff and supplier management skills, including performance management
Ability to work under own initiative, and enthusiasm to drive through change and multitask
Ability to maintain high level of confidentiality when dealing with sensitive information
- The position may require occasional domestic and international travel
Learn more here: https://www.youtube.com/watch?v=G9HJfI2Iav0
At IQVIA, we believe in pushing the boundaries of human science and data science to make the biggest impact possible – to help our customers create a healthier world. The advanced analytics, technology solutions and contract research services we provide to the life sciences industry are made possible by our 67,000+ employees around the world who apply their insight, curiosity and intellectual courage every step of the way. Learn more at jobs.iqvia.com .
IQVIA is a world leader in using data, technology, advanced analytics, and expertise to help customers drive healthcare – and human health – forward. Together with the companies we serve, we are enabling a more modern, more effective and more efficient healthcare system, and creating breakthrough solutions that transform business and patient outcomes.
To get there, it takes diverse skills and a curiosity to explore new possibilities. No matter your role, everyone at IQVIA, including our colleagues at Q² Solutions, contributes to our shared goal of improving human health. Thank you for your interest in growing your career with us.
EEO Minorities/Females/Protected Veterans/Disabled