By clicking the “Apply” button, I understand that my employment application process with Takeda will commence and that the information I provide in my application will be processed in line with Takeda’s Privacy Notice and Terms of Use. I further attest that all information I submit in my employment application is true to the best of my knowledge.

Job Description

OBJECTIVES/PURPOSE

Execute the full lifecycle of information security and data privacy third-party risk assessments as needed, either individually or through available resources, within the region.Lead and execute control assessment activities to identify control effectiveness, maturity and areas for improvements within region.Collaborate with internal third-party relationship owners and third-party representatives to recommend necessary security and privacy controls to effectively mitigate risks to Takeda.Evangelize third-party risk management processes across business lines to help influence a strong culture of proactive awareness for third-party security risks.Lead and help foster a positive end user experience with business stakeholders by enhancing our program to accommodate an agile business environment.

ACCOUNTABILITIES

Lead and mature the third-party risk management process framework for security and privacy risk, including necessary standards, procedures, and technologiesExecute the full lifecycle of information security and data privacy third-party risk assessments as needed, either individually or through available resources.Provide leadership to internal third-party relationship owners or third-party representatives in their efforts to provide responses to the security and privacy risk assessment questionnaire.Lead and execute regional control assessment activties to identify control effectiveness, maturity and areas for improvementsEffectively translate third-party responses to assessment questionnaire, using sound judgement, into concise risk exposure reporting for delivery to internal stakeholdersPartner with internal third-party relationship owners and third-party representatives to recommend necessary security and privacy controls to effectively mitigate risks to TakedaEnsure robust tracking and remediation of third-party security and privacy risk exposures identified through assessment processesEvangelize third-party risk management processes across business lines to help influence a strong culture of proactive awareness for third-party risksProvide any necessary training and awareness related to the third-party security and privacy risk assessment processContribute to the gathering and distribution of periodic program metrics and/or dashboardsProvide insights on other security risk management matters, as necessary, in collaboration with the broader Information Risk Management and Complaince teams.Mentor and train new risk assesors and risk coordinators

Technical/Functional (Line) Expertise

Experience in evaluating third-parties for the presence of fundamental information security and data privacy controls.Experience conducting risk assessments and applying concepts of inherent and residual risk to draw appropriate conclusions and articulate the same to non-technical audiences.Ability to effectively negotiate appropriate remediation of security gaps with third party representatives to ensure protection of Takeda information.

Leadership

Identify, plan and help lead future third party risk management continuous monitoring and enhancements.Influencing action across various business lines and geographies to achieve program objectives.Ability to effectively manage conflicting priorities in alignment with overall business and departmental strategies.Developing strong relationships with leaders of complementary programs (e.g. Business Stakeholders, Procurement, Legal, Ethics & Compliance) to ensure harmonization.

Decision-making and Autonomy

Assists the Head of Risk & Control Assurance with global risk and control assurance activities and regional executionOperates autonomously in the execution of the third-party security risk program framework within the region.Serves as central point-of-contact for evaluating security risks associated with all third-party engagements within the region.Recommends and agrees with Line Manager the need for shifts in program strategy.

Interaction

Excellent project management skills to effectively balance unexpected and conflicting priorities as they ariseExperience operating effectively across matrixed organizationsIntercultural sensitivity

Innovation

Understand innovations and evolving best practices amongst industry practitioners of third-party security risk management to continually mature Takeda’s program.Ability to apply innovative approaches to balancing business constraints with program goals to identify win-win solutions.

Complexity

Regional strategic role, but with coordination to the global program.Operate across geographies within a region and across business lines.Collaborate effectively with relevant third parties.

EDUCATION, BEHAVIOURAL COMPETENCIES AND SKILLS:

Bachelor’s degree or equivalent.8+ years of proven experience in information security and/or third-party risk managementExperience leading a team of risk analystsDemonstrated experience understanding of security principles, IT security controls, and related technologies and productsStrong verbal/written communication, with ability to effectively interact with professionals at all levels and to translate complex risk matters into concise messagingCapable of effectively managing shifting prioritiesExcellent communication, interpersonal, presentation and organizational skillsExperience effectively operating in and navigating a global organization with teams located across geographiesAble to prioritize, delegate, and foster the development of high-performance teams to lead/support an environment driven by customer service and team work

Desired –

CISSP or CISM certificationPharmaceutical industry experience is helpfulMBA or advanced degree preferred

More about us:

At Takeda, we are transforming patient care through the development of novel specialty pharmaceuticals and best in class patient support programs. Takeda is a patient-focused company that will inspire and empower you to grow through life-changing work.

Certified as a Global Top Employer, Takeda offers stimulating careers, encourages innovation, and strives for excellence in everything we do. We foster an inclusive, collaborative workplace, in which our teams are united by an unwavering commitment to deliver Better Health and a Brighter Future to people around the world.

Empowering our people to shine:

Takeda is proud in its commitment to creating a diverse workforce and providing equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, parental status, national origin, age, disability, citizenship status, genetic information or characteristics, marital status, or any other characteristic protected by law.

LocationsMEX - Santa Fe

Worker TypeEmployee

Worker Sub-TypeRegular

Time TypeFull time