This role serves as the primary human accountability layer for complex, high-tier, and exception-level risk determinations while providing advisory support to leadership
Job Summary
This role serves as the primary human accountability layer for complex, high-tier, and exception-level risk determinations while providing advisory support to leadership.
The position requires deep knowledge of NIST frameworks, privacy regulations like GDPR, and experience with advanced GRC platforms such as ServiceNow.
Bristol Myers Squibb offers a wide variety of competitive benefits and programs that provide employees with resources to pursue goals both at work and in their personal lives.
Matching Summary
This role serves as the primary human accountability layer for complex, high-tier, and exception-level risk determinations while providing advisory support to leadership.
Skills & Requirements
Must-have
5-10 years IT risk management experience
NIST Cyber Risk Management Framework knowledge
ServiceNow GRC platform proficiency
GDPR or EU AI Act regulatory expertise
Independent senior-level risk judgment
Nice-to-have
Experience with AI/ML emerging technology risk
Strong executive communication skills
Advisory mindset as trusted partner
Comfortable with automation-driven workflows
Passion for healthcare patient outcomes
Key Requirements
5-10 years progressive experience in IT risk or cybersecurity
Deep knowledge of NIST 800-53 controls library
Experience with major privacy regulatory frameworks (GDPR, CCPA)