Manager, Information Protection
Thessaloniki - Greece
Job Summary
ROLE SUMMARY
Our Global Cybersecurity Governance Risk and Compliance (GRC) team provides comprehensive blueprints for cybersecurity excellence by embedding governance risk management and compliance into every layer. The team is responsible for ensuring risk-based decision-making is used and that security privacy and regulatory compliance is integrated seamlessly with Pfizers organization.
We are seeking a Manager Information Protection & Technology Privacy to lead and oversee the enterprise information protection program and serve as the primary Technology & Cyber Privacy Advisor within the Cyber GRC organization. This role ensures that sensitive data across intellectual property regulated data and confidential business information is appropriately classified protected and handled in alignment with Pfizer policies regulatory expectations and risk tolerance.
This role partners closely with Data Protection Engineering Privacy Legal IT Security Operations and the DPO office to operationalize controls drive adoption of data protection standards ensure ongoing compliance across a complex regulated pharmaceutical environment and support Business Units in navigating privacy obligations across multiple jurisdictions.
ROLE RESPONSIBILITIES
Define and maintain the enterprise information protection strategy standards and control framework aligned to business risk and regulatory requirements.
Establish and govern data classification schemas handling requirements and control expectations across all data tiers.
Translate regulatory and legal obligations (e.g. privacy IP protection data residency) into enforceable enterprise policies and standards.
Define minimum control expectations for data protection technologies (e.g. DLP encryption access controls) in partnership with engineering teams.
Maintain traceability between risks controls and regulatory requirements to support audit and compliance activities.
Identify assess and track information protection risks within the enterprise risk register; partner with business units to drive mitigation and remediation.
Provide oversight of data protection control implementation and effectiveness leveraging metrics control testing and assurance activities.
Define roles and responsibilities across business units IT and security teams ensuring clear accountability for data ownership and protection.
Act as Data Steward for the Digital function and serve as the primary privacy contact for all Business Units on Technology and Cyber topics providing consultancy and engaging relevant stakeholders across Cyber Technology and AI teams.
Support Business Units in completing privacy risks assessments for a new or changed business process project or technology across several jurisdictions (such as EU UK US Canada) acting as an approver where required.
Participate in Works Council discussions on Technology and Cyber matters and work closely with Legal and the DPO office to ensure privacy obligations are met.
Engage business stakeholders to promote adoption of data classification handling and protection practices.
Develop communication materials training inputs and executive reporting to drive awareness and accountability.
BASIC QUALIFICATIONS
Bachelors degree in information technology cybersecurity computer science or a related field.
4 years of experience in cybersecurity risk management data protection or information security governance.
Experience with frameworks and standards such as NIST Cybersecurity Framework or ISO 27001.
Experience developing and maintaining cybersecurity risk policies SOPs and compliance frameworks.
Ability to manage multiple priorities work with cross-functional teams and deliver high-quality outputs.
Capability to align cybersecurity strategy with business objectives and operational resilience goals.
Strong leadership communication and presentation skills with the ability to translate complex security concepts into business-focused insights for senior executives.
Excellent communication and interpersonal skills; ability to influence across levels and functions.
Ability to translate technical controls into risk compliance and business impacts.
Demonstrated experience in an agile work environment possessing qualities such as a collaborative mindset adaptability to change and a proactive problem-solving approach.
PREFERRED QUALIFICATIONS
Demonstrated experience working in pharmaceuticals industry and large complex or regulated environments.
Professional certifications such as CISSP CISM CRISC CISA PMP or similar.
Handson experience with GRC platforms (e.g. Archer).
Familiarity with privacy intellectual property protection and regulated data environments.
NON-STANDARD WORK SCHEDULE TRAVEL OR ENVIRONMENT REQUIREMENTS
Travel as required by the business (less than 20% domestic and/or international)
Work Location Assignment: Must be able to work in assigned Pfizer office 2-3 days per week or as needed by the business
Work Location Assignment:Hybrid
Please apply by sending your CV and a motivational letter in English
Purpose
Breakthroughs that change patients lives... At Pfizer we are apatient centric company guided by our four values: courage joy equity and excellence. Our breakthrough culture lends itself to our dedication to transforming millions of lives.
Digital Transformation Strategy
One bold way we are achieving our purpose is through our company wide digital transformation strategy. We are leading the way in adopting new data modelling and automated solutions to further digitize and accelerate drug discovery and development with the aim of enhancing health outcomes and the patient experience.
Flexibility
We aim to create a trusting flexible workplace culture which encourages employees to achieve work life harmony attracts talent and enables everyone to be their best working start the conversation!
Equal Employment Opportunity
We believe that a diverse and inclusive workforce is crucial to building a successful business. As an employer Pfizer iscommitted to celebratingthisin all itsforms allowing for us to be as diverse as the patients and communities we serve. Together we continue to build a culture that encourages supports and empowers our employees.
Disability Inclusion
Our mission is unleashing the power of all our people and we are proud to be a disability inclusive employer ensuring equal employment opportunities for all candidates. We encourage you to put your best self forward with the knowledge and trust that we will make any reasonable adjustments to support your application and future career. Your journey with Pfizer starts here!
To learn more about acceptable and prohibited uses of AI during the recruitment process please review our candidate AI-use guidelines available onPfizer Careers.
Information & Business TechRequired Experience:
Manager
About Company
Erfahren Sie mehr über uns als forschendes und produzierendes Pharmaunternehmen: Von unserem Beitrag zum medizinischen Fortschritt bis zur nachhaltigen Produktion.