Pfizer
VP, Cybersecurity Governance, Risk, and Compliance (GRC)
Pfizer, New York, New York, us, 10261
**ROLE SUMMARY** Our Global Cybersecurity Governance, Risk, and Compliance (GRC) team plays a critical role in safeguarding Pfizer’s digital assets, ensuring regulatory compliance, and protecting sensitive data across all business functions. As part of our strategic commitment to strengthening our cybersecurity posture, we are enhancing and modernizing our GRC program to address enterprise-wide risks across applications, data, vendors, and critical operations.We are seeking an experienced individual of Cybersecurity Governance, Risk, and Compliance to lead this transformation. The ideal candidate will have deep expertise in enterprise cyber risk management, regulatory compliance, audit readiness, and oversight of GRC technologies. This leader will drive enterprise programs across GRC, business security and data protection, application security governance, third-party risk management (TPRM), and business continuity/disaster recovery (BCP/DR).**ROLE RESPONSIBILITIES** Define and execute the enterprise GRC strategy, ensuring alignment with organizational goals and regulatory requirements. **BASIC QUALIFICATIONS**Bachelor’s degree with 15+ years of experience in cybersecurity, risk management, or related fields. At least 8 years of direct leadership experience managing enterprise-wide GRC or risk/compliance functions. Experience leading Application Security Governance and secure development lifecycle practices.Deep knowledge of cybersecurity frameworks (NIST CSF, ISO 27001, SOC 2, PCI DSS, SOX) and data protection regulations (GDPR, CCPA, HIPAA). Strong leadership, communication, and presentation skills, with the ability to translate complex risks into business-focused insights for senior executives and boards. **PREFERRED QUALIFICATIONS**
Experience with RSA Archer as the enterprise GRC platform, including ownership of configuration, workflows, and reporting. Experience overseeing GRC-related technologies, including Data Protection/DLP platforms and Business Continuity/Disaster Recovery solutions. **EEO & Employment Eligibility**Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status.
Pfizer also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA.
Pfizer is an E-Verify employer.
This position requires permanent work authorization in the United States.Pfizer endeavors to make
accessible to all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process and/or interviewing, please email disabilityrecruitment@pfizer.com. This is to be used solely for accommodation requests with respect to the accessibility of our website, online application process and/or interviewing. Requests for any other reason will not be returned. #J-18808-Ljbffr
Experience with RSA Archer as the enterprise GRC platform, including ownership of configuration, workflows, and reporting. Experience overseeing GRC-related technologies, including Data Protection/DLP platforms and Business Continuity/Disaster Recovery solutions. **EEO & Employment Eligibility**Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status.
Pfizer also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA.
Pfizer is an E-Verify employer.
This position requires permanent work authorization in the United States.Pfizer endeavors to make
accessible to all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process and/or interviewing, please email disabilityrecruitment@pfizer.com. This is to be used solely for accommodation requests with respect to the accessibility of our website, online application process and/or interviewing. Requests for any other reason will not be returned. #J-18808-Ljbffr