Security Application Controls Director
Security Application Controls Director
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Use Your Power for Purpose
At Pfizer we believe that every role contributes to our mission of improving patients lives. You will play a pivotal role in ensuring the financial integrity and operational efficiency of our global business. Your work will directly impact our ability to deliver lifesaving medicines to patients around the world making a tangible difference in their lives.
Pfizers Global Business Services organization delivers bestinclass business accounting finance and compliance operations globally for the Pfizer enterprise. This organization is a high performing team comprised of more than 1600 colleagues primarily located in 6 centers around the world. The industryleading value proposition is to centralize standardize and optimize complex processes and in delivering a quality service at a reasonable cost with a compliance mindset.
The Global Security & Application Control Services Director will drive security and user access controls and strategies across Enterprisewide Applications. They will also own the design and oversight of application controls. They will partner with Corporate Audit Finance Global Business Services and Digital regarding user access provisioning sensitive access segregation of duties risks and controls and emergency access management. The position is responsible for collaborating with all organizational functions to ensure all user access security risks are identified and controlled. This position will be part of a global governance team supporting a diverse user base across multiple business processes and regions.
ROLE RESPONSIBILITIES
- Drive strategy and governance for Enterprise Application Security Control areas including Segregation of Duties Emergency Access Critical Access Sensitive Access and User Access Provisioning
- Drive strategy and governance for Enterprise Application Controls
- Work with Digital Solution Leads and GBS Global Process Owners to design new application and security controls for Finance Enterprise Applications
- Application Owner for GRC Access Control Module
- Lead Organization in following activities:
- Review and approve all new application and security controls in GRC Process Control Tool
- Work with Digital SAP Security Digital RM&C GBS RM&C and Corporate Audit to ensure a coordinated approach to identification design and implementation of new application and security controls
- Coordinate with Digital teams to drive security projects including security role changes SOD rule set changes security controls and programming changes.
- Coordinate with Global Process Owners to drive optimized security controls including security role restrictions SOD Rule Set definitions and privacy requirements.
- Ensure application and security controls are in compliance with Pfizer policies and procedures as related to normal business use.
- Support internal and external audits and collaborate with auditors
- Provide technical expertise and set strategy for the GRC Access Control and Process Control modules Relationship manager for Industry Special Interest Group for SAP GRC tool working with key contacts at external companies to influence Product Strategy with SAP Vendor
- Manage work for the operational team by assigning work managing task list building business cases find funding develop & review metrics and working with Solutions team to determine scope.
- Provide routine reporting and risk analysis to GBS leadership
- Drive strategy and efficiencies within team including designing and developing resource plans for leads and staff members to maximize risk mitigation and complete required monitoring activities
- Drive simplification and standardization of processes and controls; with emphasis on adoption of global processes where possible
- Provide expertise and guidance to business process owners in the development execution and documentation of remedial actions for any deficiencies in ICOFR/ SOX design operating effectiveness or process enhancements and Corporate Audits; drive and consider global standardization for changes resulting from deficiencies
- Lead talent development and colleague engagement for RM&C colleagues
- Support Pfizer Blueprint and GBS Strategy Changing Lives Together; Global Reward and Recognition programs; Driving operational excellence through Pfizer Purpose Values and Behaviors
OTHER JOB SKILLS
- Experience influencing and executing complex solutions involving multiple groups and countries
- Experience in developing and executing training at all levels of the organization
- Experience leading high performing teams with ability to work in a fastpaced and demanding environment
- Excellent analytical skills with demonstrated ability in risk identification measurement and assessment risk monitoring reporting and escalation
- Strong organization and planning skills
- Ability to communicate well within all levels of Pfizer
- Ability to identify business issues/ opportunities and to frame business questions
- Savvy with industry and Pfizer financial systems and financial reporting processes
- Demonstrate courage excellence equity and joy and embody our values and behaviors
REQUIRED BASIC QUALIFICATIONS
- 10 years of working experience in a risk management/ control environment including experience with risk identification measurement and assessment risk monitoring reporting and escalation
- Bachelors degree in accounting or finance from an accredited college or university
- Experience with SAP or similar ERP systems
- Experience leading global teams
- Experience working in multinational companies in a Risk Assurance Leadership Controller Compliance and/ or Audit role with focus on ICFR SOX and other compliance disciplines
- Experience navigating a large complex organization and managing stakeholders interests using a matrixed organization
PREFERRED QUALIFICATIONS
- CPA or other equivalent education/ certification (e.g. Chartered Accountant)
- Masters degree
- Prior Pfizer experience
- Big 4 public accounting experience
Other Job Details
- Last day to apply: May 22 2025
- Must be able to work in assigned Pfizer office 23 days per week or as needed by the business
- This is not a remote role
Candidate demonstrates a breadth of diverse leadership experiences and capabilities including: the ability to influence and collaborate with peers develop and coach others oversee and guide the work of other colleagues to achieve meaningful outcomes and create business impact.
Relocation assistance may be available based on business needs and/or eligibility.
Sunshine Act
Pfizer reports payments and other transfers of value to health care providers as required by federal and state transparency laws and implementing regulations. These laws and regulations require Pfizer to provide government agencies with information such as a health care providers name address and the type of payments or other value received generally for public disclosure. Subject to further legal review and statutory or regulatory clarification which Pfizer intends to pursue reimbursement of recruiting expenses for licensed physicians may constitute a reportable transfer of value under the federal transparency law commonly known as the Sunshine Act. Therefore if you are a licensed physician who incurs recruiting expenses as a result of interviewing with Pfizer that we pay or reimburse your name address and the amount of payments made currently will be reported to the government. If you have questions regarding this matter please do not hesitate to contact your Talent Acquisition representative.
EEO & Employment Eligibility
Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race color religion sex sexual orientation age gender identity or gender expression national origin disability or veteran status. Pfizer also complies with all applicable national state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA. Pfizer is an EVerify employer. This position requires permanent work authorization in the United States.
Required Experience:
Director
Employment Type
Full-Time
