• Job Description

  Req#: 372475

  With our new CDTO mandate to elevate the GRC Tech function to lead across all Tech, providing active Governance, Risk Management and Compliance Management and set modern strategies, policies and build capabilities to enable Tech to accelerate our pivot to be more Business focused, Digital enabled and Cloud-first organization.

  The Sr. Director, GRC shall provide thought leadership and shape the future and set the right risk tone & tolerance aligned to GSK enterprise risks and frame risk as both opportunities to exploit and risks to be mitigated.

  The Sr. Director GRC will need to have equal and credible Leadership capability, standing shoulder to shoulder with GSK Tech LT members and their direct reports, Business partners in Quality management, GSK Legal & Compliance, Audit & Assurance, Finance Controller and GSK’s external auditor.

  Executive Leadership, Teamwork, Agility, and negotiating & influencing skills will be critical to transform GRC, Tech and advancing GSK into Digital Enterprise with the right risk framework, tolerance, and tone, managed effectively

  Key Responsibilities

  1) Global Products and Technology (GP&T) BU Business Partner – provide the leadership and management of GRC initiatives and be recognized as a critical leader to the Global Products and Technology (GP&T) Business Unit (BU) leadership and staff. Through a deep understanding of the various business strategies and needs, deliver GRC Services to enable the GP&T Tech BU to achieve their goals. Provide expert consultation to the GP&T Tech BU on best practices in the execution of ITMS, Smart Controls, and Software Development Methodologies.

  2) Governance of Risk and Compliance - lead the GP&T Tech BU Risk Management Compliance Board (RMCB). Ensure GP&T Tech BU RMCB is aligned to the Global Tech RMCB and operates effectively. Ensures priority actions, findings and Corrective and Preventive Actions (CAPAs) for the Global Products and Technology is managed with clear accountabilities and tracking.

  3) Risk Management – aligned with Enterprise Risks and ROCC; identify, mitigate, and manage all critical and major risks across GP&T Tech BU both strategic and operational. Provide Risk and Compliance Consultancy on strategic GP&T programs.

  4) Compliance – enable GP&T Tech BU through clear and simplified policies and methods to ensure compliance with all world-wide internal & external regulatory, legal, and corporate policies. Responsible for oversight of all Privacy laws impacting GP&T. Provide GRC support and oversight during application development and maintenance. Partner with Business Quality Assurance teams to ensure GxP compliance across all GP&T related systems, platforms, and infrastructure.

  5) Accountable for developing and managing GSK Global Digital & Tech Policies, SOPs, Standards - GRC is the owner and custodian of GSK Global Tech Policies, SOPs, standards, and controls (ITMS, et al). Partner with VP of GRC and peers to execute on authoring and publishing of new and modified Global Tech policies, SOPs, Standards and Risk Processes including incorporating all Security Policies and standards into Tech ITMS/Master Controls, then deploy, train and change manage across the Global Products and Technology Tech BU.

  6) Quality – Accountable for developing and integrating Quality by design into Tech ITMS and Ways of Working. Develop, publish, and promote Tech-wide Quality metrics, ensure process adherence and compliant state of operations.

  7) Training & Awareness – Train the GP&T Tech BU on all applicable external Regulation, SOX, GxP and Enterprise Policies and Risk. Build a culture within GP&T Tech BU of continuous Learning and agile adoption of new SOPs and smart controls.

  8) Digital & Cloud – build capability to pivot Tech ways of working, including risk oversight into a cloud-first, Digital ML/AI capable function, using data & analytics and automation to enable appropriate posture in an environment of agile ways of working. Ability to evaluate and recommend appropriate usage of modern digital tools.

  9) Leadership - provide leadership and motivation to the team of GRC professionals to deliver work effectively across geographies across employees and service providers.

  Grow the next generation of GRC talent with appropriate succession planning and digital expertise. Develop strong relationship with the following internal and external organizations: Business Quality organizations, Finance Controller for SOX, Corp Compliance & Legal and GSK Privacy Officer – Be an active enterprise leader in all Quality / Compliance matters. Develop Partnership and influence to drive reasonable findings and outcomes with the GSK external auditor.

  Knowledge/Education Required

  MS Information Tech, MS Computer Science / Engineering or related field

  This job requires a high degree of Pharma Industry Regulation, modern Computer Science technologies (AI/ML. Cloud) and deep understanding Risk Analysis

  Minimum Level of Job-Related Experience Required

  8- 10 Years in Pharma / high regulated Compliance / Risk Leadership

  Why Us?

  GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organization where people can thrive. Getting ahead means preventing disease as well as treating it, and we aim to positively impact the health of 2.5 billion people by the end of 2030.

  Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a workplace where everyone can feel a sense of belonging and thrive as set out in our Equal and Inclusive Treatment of Employees policy. We’re committed to being more proactive at all levels so that our workforce reflects the communities we work and hire in, and our GSK leadership reflects our GSK workforce.

  As an Equal Opportunity Employer, we are open to all talent. In the US, we also adhere to Affirmative Action principles. This ensures that all qualified applicants will receive equal consideration for employment without regard to neurodiversity, race/ethnicity, colour, national origin, religion, gender, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class*(*US only).

  We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.

  Should you require any adjustments to our process to assist you in demonstrating your strengths and capabilities contact us on Ukdiversity.recruitment@gsk.com or 0808 234 4391. Please note should your enquiry not relate to adjustments, we will not be able to support you through these channels

  As you apply, we will ask you to share some personal information which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially.

  Important notice to Employment businesses/ Agencies

  GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.

  Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit GSK’s Transparency Reporting For the Record site.

  We’re moving towards a more sustainable future with our new headquarters. With better public transport links and proximity to world-class science and technology institutions, we’re excited for our move to the vicinity of Earnshaw Street, London WC1A (“the New HQ”) by end H1 2024.

• About the company

  GlaxoSmithKline plc is a British multinational pharmaceutical company headquartered in Brentford, England.

Notice