Senior Manager, GRC

As a Senior Manager - Governance, Risk and Compliance, you will be responsible for providing management and day to day support to the Senior Director for Governance, Risk & Compliance. You will support the activities across the assigned business unit ensuring that Tech risks & controls from project inception to support within their business unit are identified, prioritized, effectively managed, and monitored.Additionally, this role should work within the business unit to ensure Tech follows the required internal and external compliance standards and delivers a reduction in the overall risk profile for our customers. The primary responsibility of this position will be R&D Tech.

This role will provide YOU the opportunity to lead key activities to progress YOUR career, these responsibilities include some of the following…

Risk Management

• Contribute to identification and initiation of Risk mitigation projects to address significant risks impacting a Business unit, using Smart Controls assessments
• Facilitate risk identification and risk discussions within the business unit, both operational risk, product/project and strategic risk
• Assist Tech Business Unit management to make risk informed decisions through a comprehensive Risk Dashboard
• Raise and approve (where necessary) Policy Exceptions and significant Risks through the GSK integrated risk management tool (i.e., Archer).
• Input into, review and enforce compliance within Tech Policies and Standards as required within Business Unit

• Ensure emerging risks are identified and escalated appropriately and in a timely manner

• Support Product owners in the management of their project risks, ensuring risk identification process is embedded and operational
• Ensure awareness of security incident response process and report suspected security breach
• Partner with other GRC and Security staff to deliver a continuous training and education program to ensure ongoing awareness on new and updated Policies and Standards within their Business Unit.

Governance & Compliance

• Contribute to maintenance of the Business Unit delivery and operational frameworks (Activities, deliverables, roles and responsibilities) and ensure alignment to ITMS
• Monitor deliverable quality, ensure quality standards are being met for products/ projects, programs or operations within their remit, following a risk based approach, according to ITMS, Smart Controls assessments, and local SOPs.
• Contribute to providing Project Quality assurance oversight depending on the specific project risk profile, including specific assurance reviews as requested by stakeholders
• Ensure Business Unit activities align with Regulatory requirements and liaise with Business Quality Groups to contribute to the overall GxP validation status of the business facing application systems or services
• Contribute to ensuring Business Unit is keeping up with regulatory and legal requirements through a pro-active knowledge management program
• Quality assurance over the system change control within the Business Unit
• Supporting Product teams to maximize their velocity by right sizing their governance approach

Audit Support

• Contribute to ensuring Business Unit is ready to host external inspections from regulatory bodies (i.e., FDA, EMEA, tax authorities) as well as external and internal auditors.
• Support management of overall Business Unit inspection readiness activities and CAPAs in liaison with the business
• Report status on CAPA’s to Business Unit RMCB

Information Policy Formation

• Work with the GRC GxP lead/Controls owners and ITMS team to review and approve the policy, standards, procedures, guidance and training for compliance with relevant legislation and GSK Requirements.
• Support reviews of the information systems for compliance with legislation and specifies any required changes within their Business Unit
• Support the GRC Director to implement policies, standards and procedures with aligned Tech Business

GRC Consulting

• Support various GRC planned or remediation activities consulting with BU Tech staff to deliver
• Support implementation of relevant Management monitoring programs in Business Unit for processes not owned by GRC

Why you?

Basic Qualifications

We are looking for professionals with these required skills to achieve our goals:

• Bachelor’s Degree
• 5+ years’ professional work experience
• Experience in Risk Management/Analysis, Quality Assurance and Compliance
• 1+ years’ experience in leadership

Preferred Qualifications

If you have the following characteristics, it would be a plus:

• Pharmaceutical experience
• Cloud experience
• AI/ML experience
• Certifications in CISA, CISM, CISSP, CRISC
• Experience with GXP, SOX and Data Privacy Regulations

GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. Getting ahead means preventing disease as well as treating it, and we aim to positively impact the health of 2.5 billion people by the end of 2030.

Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a workplace where everyone can feel a sense of belonging and thrive as set out in our Equal and Inclusive Treatment of Employees policy. We’re committed to being more proactive at all levels so that our workforce reflects the communities we work and hire in, and our GSK leadership reflects our GSK workforce.

If you require an accommodation or other assistance to apply for a job at GSK, please contact the GSK Service Centre at 1-877-694-7547 (US Toll Free) or +1 801 567 5155 (outside US).

GSK is an Equal Opportunity Employer and, in the US, we adhere to ...

Important notice to Employment businesses/ Agencies

GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site...

Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit GSK’s Transparency Reporting For the Record site.