Manager, Technical Information Security Lead

ROLE SUMMARY

Our Global Governance Risk and Compliance (GRC) team provides comprehensive blueprints for cybersecurity excellence by embedding governance risk management and compliance into every layer. The team is responsible for ensuring risk-based decision-making is used and that security privacy and regulatory compliance is integrated seamlessly with Pfizers organization.

We are seeking a motivated Manager Technical Information Security Lead who will serve as a senior businessaligned cybersecurity leader responsible for partnering with business and technology stakeholders executing and overseeing technical risk assessments and driving riskinformed decisions across complex initiatives and platforms.

ROLE RESPONSIBILITIES

• Serve as the Technical Information Security Lead for assigned business units programs or technology domains.

• Act as the primary interface between Cybersecurity/GRC and business stakeholders ensuring security considerations are embedded early and effectively.

• Build trusted relationships with Business Leaders IT Engineering Cloud Services Privacy Legal and other key stakeholders and teams.

• Translate technical findings into clear actionable risk statements and recommendations tailored to business audiences.

• Partner with technology and business owners to define risk mitigation strategies remediation plans and compensating controls.

• Support audit and inspection readiness by providing defensible risk narratives assessment artifacts and evidence.

• Review and provide quality oversight of risk assessments and documentation.

• Contribute to the evolution of risk assessment methodologies standards templates and engagement models.

• Identify opportunities to improve consistency scalability and efficiency across security risk engagement.

• Prepare concise executivelevel summaries for risk committees governance forums and senior leadership.

• Provide thought leadership on emerging risks (e.g. cloud AI thirdparty dependencies).

BASIC QUALIFICATIONS

• Bachelors degree in Cybersecurity Information Systems Computer Science Risk Management or related field or a related field.

• 5 years of experience in information security risk compliance information protection or related disciplines.

• Demonstrated experience leading technical risk assessments and stakeholder engagement.

• Proven ability to communicate complex technical risks to senior business stakeholders.

• Strong documentation analytical and decisionmaking skills.

• Experience operating in a highly regulated matrixed enterprise environment.

• Demonstrated experience in an agile work environment possessing qualities such as a collaborative mindset adaptability to change and a proactive problem-solving approach.

PREFERRED QUALIFICATIONS

• Demonstrated experience working in the pharmaceuticals industry.

• Professional certifications such as CISSP CISM CRISC CISA or similar.

• Familiarity with GRC platforms (e.g. Archer).

• Experience supporting regulatory inspections or major audits.

Please apply by sending your CV in English.

Work Location Assignment:Hybrid