Our Client unite caring with discovery to make life better for people around the world.
We are a global healthcare leader headquartered in Indianapolis, Indiana. Our 39,000 employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.
We make a difference for people the world over by discovering, developing and delivering medicines that help people live longer, healthier and more active lives. Central to all that we do are our talented and motivated professionals, circa 850 of whom are based at our Global Business Solutions centre in Little Island, Cork. There we boast vibrant workforce made up of over 44 nationalities.
Our client works with an extensive network of third party organizations to perform a vast range of activities across the enterprise. Known internal risks that impact our client such as privacy, information security, compliance, pricing, IT, etc. are amplified or compounded with the use of third parties. Today, third party oversight is decentralized. There are many functions working with third parties in some capacity including, but not limited to: Procurement, Third Party Management Organizations (TPMOs), Risk Domain Partners including Audit/Assessment Teams.
The TPRM organization is implementing a holistic program to support consistent, efficient, and effective decision making and determining potential inherent risk. The central team’s scope encompasses priority business and risk areas across all stages of the third party collaboration lifecycle.
Successful execution of this strategy will reduce third party risk, strengthen capabilities, drive consistency and efficiency, and reduce cost.
The scope of the TPRM hub team will include the following:
Create and maintain policies, procedures, and training to drive consistent TPRM for third party use. Liaise with Risk Domain Partners to create and maintain Risk Definitions, Tolerances, and Required Training for TPMOs, Engagement Owners, and Third Parties. Construct and own the overall TPRM Program. Own the enterprise TPRM technology solution. Provide oversight of the TPRM initial and on-going monitoring due diligence processes. Report progress and results to Senior Leadership including, but not limited to, the CPO, the SVP of Ethics & Compliance, and the Compliance & Enterprise Risk Management Committee (CERMC).
The Risk Assessor teams will work in partnership internally, cross functionally and externally with third parties, and to assess and mitigate third party risk. Current risk domains in scope are Anti Corruption, Privacy, Information Security and Information Systems Quality, which will expand as we grow the programme. The Risk Assessor Team Manager will have oversight of team tasks and activities ensuring that all work is performed with excellence. The manager will also actively connect with the team and drive engagement to ensure a high performing team and culture.
People & Engagement
Overall responsibility for the ongoing monitoring activities that these scheduled and completed as per schedule