Compliance

• Support risk assessments, validation testing, compliance reviews, and audits in accordance with NIST standards and regulations
• Help manage compliance programs, promote implementation of industry standards, and evaluate control improvement opportunities
• Align cybersecurity requirements with IT, procurement, and privacy departments in context of GRC and NIST CSF 2.0 objectives
• Ensure procedures are up-to-date and communicate methodologies to broaden knowledge of cybersecurity risk processes and best practices
• Contribute to security standards, policy reviews, and update GRC processes and practices annually or as needed
• Assist in responding to inquiries from business units and ETX partners about operational cybersecurity compliance and risk mitigation
• Review auditor requests for scope and evidence completeness and accuracy
• Collaborate with business and engineering teams to identify and enhance control processes and prepare materials for audit meetings
• Independently lead projects, coordinate cross-functional efforts, escalate issues appropriately, and communicate project status to management
• Provide proactive advice and guidance on process and control enhancements

Governance, Risk & Compliance Analyst

Senior Regulatory Affairs Associate – Labelling

Senior Regulatory Affairs Consultant, CMC, Small Molecules