The role Senior GRC Manager is responsible for providing management and day to day support to the GRC Principal for Governance, Risk & Compliance activities across the assigned product tower ensuring that Tech risks & controls from project inception to support are identified, prioritised, effectively managed, and monitored. Additionally, this role should work within the product tower to ensure Tech follows the required internal and external compliance standards and delivers a reduction in the overall risk profile for our customers. This role description forms a generic outline of the GRC Senior Manager role. Particular roles could encompass some, but not all elements and may focus on particular areas, e.g., Programme rather than Operations. The GRC Senior Manager may support one or more Tech Product Towers. Some of the Key Responsibilities for the role includes the following: Contribute to identification and initiation of Risk mitigation projects to address significant risks impacting a product tower, using Smart Controls assessments Facilitate risk identification and risk discussions within the business unit, both operational risk, product/project and strategic risk Contribute to maintenance of the product tower delivery and operational frameworks (Activities, deliverables, roles and responsibilities) and ensure alignment to IT Management System (ITMS) Monitor deliverable quality, ensure quality standards are being met for products/ projects, programmes or operations within their remit, following a risk-based approach, according to ITMS, Smart Controls assessments, local SOPs and projects PQPs Execute relevant self-inspection programmes within remit through Management monitoring and Independent Business monitoring where required Support implementation of relevant Management monitoring programmes in product tower for processes not owned by GRC Contribute to ensuring product tower is ready to host external inspections from regulatory bodies (FDA, EMEA, tax authorities, external (Deloitte/KPMG) and internal auditors (A&A, eCompliance) Support management of overall product tower inspection readiness activities and Corrective and Preventative Actions (CAPAs) in liaison with the business Work with the GRC GxP lead/Controls owners and ITMS team to review and approve the policy, standards, procedures, guidance and training for compliance with relevant legislation and Haleon Requirements. Support reviews of the information systems for compliance with legislation and specifies any required changes within their product tower Why you Basic Qualifications We are looking for professionals with these required skills to achieve our goals: Minimum of 8 years' experience in a combination of Risk Management, Quality Assurance and Compliance function in a Pharmaceutical/Consumer Healthcare environment Good understanding of emerging technology risks e.g. cloud (SAAS, PAAS and IAAS), Automation etc Knowledge of Tech support processes, such as ITIL Awareness of the regulatory trends within the Consumer Health industry including: Cyber - NIST, CSA, Information security standards (e.g. ISO27001), GxP - FDA, Code of Federal Regulations Title 21 Part 210 (Current Good Manufacturing Practice in Manufacturing Processing, packing, or Holding of Drugs) & 211 (Current Good Manufacturing Practice for Finished Pharmaceuticals) and MHRA - rules and guidance for pharmaceutical distributors, Sox - Sarbanes Oxley Act of 2002, Privacy - EDPB guidelines (Data Protection by Design and by Default), GDPR Preferred Qualifications If you have the following characteristics, it would be a plus: Understanding of Agile, Kanban and Scrum basics Good knowledge of Software Quality Assurance Certifications such as CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), CGEIT (Governance of Enterprise IT), CPA (Certified Public Accountant), Information Security CISSP, CISM (Certified in Information Security Management). Opportunities For Growth None of us should ever feel like we are standing still. Instead, we want Haleon to be a place where we feel like we are always progressing. Improving everyday health takes dedication. Energy. Effort. So we look to reward your contribution with a benefits package that includes: A competitive base salary Contract of employment Annual bonuses that reflect Haleon's performance Company Car or Car Allowance Long term incentives Life insurance and pension plan Private medical package with additional preventive healthcare services for employees and their eligible Sports cards (Multisport) Health and wellbeing programmes that take care of you physically and mentally Pension plan membership and savings programmes Possibilities of development within the role and company's structure Childcare support Recognition programmes that reward incredible contributions Hybrid@Haleon our philosophy to hybrid work - performance with choice Diversity, Equity, And Inclusion Care to join us. Find out what life at Haleon is really like www.haleon.com/careers/ Care to join us. Find out what life at Haleon is really like www.haleon.com/careers/ At Haleon we embrace our diverse workforce by creating an inclusive environment that celebrates our unique perspectives, generates curiosity to create unmatched understanding of each other, and promotes fair and equitable outcomes for everyone. We're striving to create a climate where we celebrate our diversity in all forms by treating each other with respect, listening to different viewpoints, supporting our communities, and creating a workplace where your authentic self belongs and thrives. We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are. As you apply, we will ask you to share some personal information, which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially. Haleon is an Equal Opportunity Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class. Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, Haleon may be required to capture and report expenses Haleon incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure Haleon's compliance to all federal and state US Transparency requirements.
