Who You Are
As Compliance and Information Security Manager, you will be a key member of the Global Compliance and Information Security team who is responsible for C Space's global compliance, privacy, and information security. Reporting to the Global Senior Director of Compliance and Information Security, you'll collaborate closely with Senior Management, Sales, Product Technology, Engineering, Product teams and other internal and external stakeholders.
What You Will Do
Under the direction of the Senior Director of Compliance and Information Security you will:
Work closely with Senior Director of Compliance and Information Security to advocate for all company compliance and security related issues, including the planning and development of the compliance, privacy and information security strategy and plans and their effectiveness, in support of the company's mission and strategic plan
Responsible for internal compliance and pharmacovigilance (PV) audits, reviews and analyses against regulations and standards such as ISO27001/2, SOX, HIPAA, PCI-DSS, GDPR, MA 201 CMR 17
Work with key business and IT leaders to develop policies, standards, guidelines, and procedures to ensure the confidentiality, integrity, and availability (CIA) of company's systems and data
Own, update and implement C Space Health Pharmacovigilance (PV) and client policies and procedures (P&P) and standard operating procedures (SOP) and all related documentation and processes
Own and evolve PV Compliance training and on-boarding of Content Monitor contractors
Oversee proper PV processes, documentation, record retention, and training refreshers and the implementation of applicable corrective action plans (CAPs)
Serve as the point of contact and subject matter expert for all PV related matters across C Space Health
Assist with providing leadership and direction during incident response, investigations, and reporting
Maintain and implement risk management program and strategies and conduct internal risk assessments to validate compliance and manage risk assessment of current and new technologies and processes and implement strategies to mitigate prioritized risks
Manage external compliance, privacy, and security, assessments and audits and coordinate with the appropriate entities or authorities
Review contracts and assist in relevant compliance, privacy, and security negotiation during contracting phase
Build and maintain relationship with client contacts including in drug safety and quality departments
Skills and Experience
Minimum of 3+ experience in a risk management, information security, privacy, and/or compliance role
Bachelor's degree or higher in Law, Informatics, Computer Science, Information Technology or similar
Experience in developing, reviewing, and implementing relevant policies and procedures and programs that meet compliance, privacy, and security requirements
Knowledge and understanding of relevant regulations and standards such as GDPR, HIPAA, SOX, MA 201 CMR 17, PCI-DSS, ISO/IEC 27001/2 and NIST, and sound knowledge of information security management systems (ISMS)
Knowledge of information security processes such Change Management, SDLC, DRP, BCP, and IRP and experience in managing compliance, privacy incidents and participating in Security Incident Response Team (SIRT) activation in the course of a rapidly evolving incident is a plus
Excellent analytical skills and demonstrated experience in communicating effectively in written and spoken form to broad internal and external entities
Experience with PV compliance and/or health industry compliance is strongly preferred
Keen ability to manage multiple projects under strict timelines, with exceptional attention to detail
Self-starter and able to work both independently and in a team setting and maintain positive attitude, strong work ethic and a focus on creative problem-solving
Proficient in MS Office, with emphasis on Outlook, Word and Excel required
About C Space
Our clients call us their customer agency.
We create rapid insight and business change, putting customers at the heart of companies and solving problems from the customer's perspective. We keep our clients relevant by building real, ongoing relationships with customers that in turn help them deliver superior experiences, launch successful products and build loyalty. Our customized approaches are tailored to specific business needs and include online insight communities, immersive storytelling, data and analytics, activation events, innovation projects and business consulting. We do this for many of the world's best-known brands like Bose, Walmart, Jaguar Land Rover, Mars, Samsung, IKEA and more to create "Customer Inspired Growth".
We are passionate about our people and proud of our culture. We co-created a set of values to ensure that we are delivering fantastic work, continuing to learn and developing and building a high-performance culture which creates opportunities for those who work here:
I've got this: taking responsibility, doing what we say we will
Only accept awesome: delivering high quality work that we are proud of and has impact
Show the love: celebrating successes and ensuring everyone has a voice
Do what scares you: challenging ourselves, taking risks and learning more
Tell it like it is: being honest and freeing ourselves from "office politics" and "hidden agendas"
Open up and listen: listening first and fully before we respond or react
Find what fascinates: being passionate about the world and our clients' worlds
We before me: putting the team first
Leave your mark: everyone has an opportunity drive change in our business and for our clients
To learn more, visit www.cspace.com or follow us on Twitter @CSpaceGlobal and Instagram @c_spaceglobal. C Space is a part of DDB, a division of Omnicom Group Inc.
Interested? We look forward to receiving applications from people with diverse backgrounds talented, creative people with their own voice, ideas and perspectives.
Headquartered in Boston, C Space has offices in London, New York and San Francisco.
C Space is an Equal Opportunity Employer. All applicants will be considered without regard to race, color, religion, sex, age, national origin, citizenship status, sexual orientation, disability, veteran status or any category or class of person protected by law.