Associate Manager, Privacy and Security Compliance

As a privately-owned, biopharmaceutical company, Ferring pioneers and delivers life-changing therapies that help people build families and live better lives. Our independence helps us cultivate an entrepreneurial spirit and long-term perspective that enables us to achieve growth and scale, while remaining agile and true to our 'people first' philosophy. Built on a 70-year plus commitment to science and research, Ferring is relentless in its pursuit of science that drives powerful discoveries and therapies to help people build families, stay healthy, and stand up to the world's oldest enemy: disease.

With Ferring, you will be joining a recognized leader, identified as one of "The World's Most Innovative Companies" by Fast Company, and honored by Fortune with inclusion on its "Change the World List," for addressing society's unmet needs. Ferring US is also Great Places to Work Certified, distinguishing it as one of the best companies to work for in the country.

Summary:

The Associate Manager, Privacy and Security Compliance will report into Sr. Director, Compliance and Privacy - US. The Associate Manager is responsible for monitoring and assessing information risks in security and privacy processes to ensure data integrity throughout the U.S. organization, and if needed, facilitates the remediation by liaising with Global Security, IT and the Business. The Associate Manager will also work with the Data Privacy and Integrity Committee as well as the Global Privacy Team (CPH) to ensure Ferring's Privacy and Security programs meet federal and state requirements and/or align with Ferring's Global Privacy Policies & Procedures.

• Identifies strengths and weaknesses in the program as they relate to privacy, security and compliance frameworks. Assesses opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios.

• Recommends risk reduction steps to be implemented and maintained through policies, procedures, frameworks and technical controls to senior management/Committee.

• Project manages adopted recommendation and remediation plans as privacy knowledge expert on change in control processes and roll back. Handles and monitors risk remediation tasks and reports on findings to senior management/Committee.

• Works closely with risk management and security leadership, teammates and stakeholders to evaluate and recommend models aligned with organizational risk posture.

• Collaborates with broader response teams to create risk remediation plans, escalating with urgency, as necessary. Liaises with designated in-house legal privacy counsel on needed changes.

• Documents, formulates and enforces security improvements that balance risk with business operations.

• Advocates and promotes awareness of cyber risks to business and technical partners. Conducts training and produces educational materials as needed.

• Maintains data inventory of personal information processes and systems and runs analytics.

• Develops and delivers executive-level reporting and presentations outlining risks, various data sets and status of action plans.

• Performs vulnerability assessments according toIT's security/risk posture within the IT network, systems, and software applications, in addition to assessments within the Vendor Management Program.

• Monitors vendors that process Personal Information on Ferring's behalf regarding the security maintenance of their systems and applications.

• Conducts audits relating to Privacy, IT risk assessments and regulatory compliance.

• Initiates and completes privacy-related assessments and privacy impact assessments.

• Gathers, analyzes and interprets accounts, permissions, entitlements, and metadata effectively to assess and remediate Identity and Access Management security risks.

• Monitors processes and solutions to ensure data integrity, purity and validity.

• Identifies new and changing privacy and regulatory requirements that would impact technology and cybersecurity. Stays current on evolving landscape and proactively communicates trends.

Requirements:

• Bachelor's Degree required in Information Systems, Computer Science, Information Security or related field.

• Proficient computer & technology skills: Office 365 etc. Familiarity with one or more privacy systems, such as OneTrust preferred.

• Prior experience with Navex/GRC platforms and Veeva a plus.

• 3-5+ years IT security or information security experience.

• Proven ability to engage with Senior Management on privacy and IT policy and protocol

• Experience in administering IT security controls in an organization.

• Knowledge of technical infrastructure, networks, databases, and systems in relation to IT Security and IT Risk.

• Holds ISC2, SANS, ISACA, or IAPP certifications preferred.

• Prior experience performing security reviews and risk assessments preferred.

• Position requires excellent communication (verbal/written) and presentation skills.

• Works well across multiple functions/therapeutic areas.

• Travel 10-20%.

Ferring + you

At Ferring, we offer competitive total compensation along with an exceptional range of flexible benefits, personal support and tailored learning and development opportunities all designed to help you realize your full potential both in life and at work. From working hours that respect your lifestyle, a culture that is welcoming and equitable, and the chance to work with the industry's most impressive people, these are just some of the ways we live our "People First" philosophy.

Our Compensation and Benefits

At Ferring, base salary is one part of our competitive total compensation and benefits package and is determined using a salary range. The base salary range for this role is $61,750 to $143,000, which is the reasonable estimate of the base compensation for this role. The actual amount paid may differ based on non-discriminatory factors such as experience, knowledge, skills, abilities, education and primary work location. Additional compensation for this role will be provided based on competitive annual incentive compensation targets in the form of an annual bonus - payouts are based on individual and company performance.

Benefits for this role include: comprehensive healthcare (medical, dental, and vision) with a premium differential, inverse to base salary, to be paid by employees; a 401k plan and company match; short and long-term disability coverage; basic life insurance; wellness benefits; reimbursement for certain tuition expenses; sick time frontloaded yearly of 40 hours, or higher if state or local law requires; vacation time for full time employees to accrue between 112.5 and 150 hours yearly in the first four (4) years of employment, and additional accruals starting in the fifth (5th) year of employment; and 12 to 13 paid holidays per year. We are proud to offer paid parental leave subject to a minimum period of employment at Ferring. For roles that are not field-based, Ferring has a policy that allows employees to work up to two days from home and three at a Ferring site, weekly.

Ferring is an equal opportunity employer. All aspects of employment will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of gender, race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local laws.

Join our team and your voice will be heard, and your contributions will be valued. If you love to come up with new ways to make a positive difference and see them through, you will fit right in.

We are proud to be an Affirmative Action/Equal Opportunity Employer (including Disability/Protected Veterans). We maintain a drug-free workplace.