Merck & Co., Inc
Merck & Co., Inc. Kenilworth, N.J., U.S.A. known as Merck in the United States and Canada, is a global health care leader with a diversified portfolio of prescription medicines, vaccines and animal health products. The difference between potential and achievement lies in the spark that fuels innovation and inventiveness; this is the space where Merck has codified its
legacy for over a century
. Merck’s success is backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare
The IT Risk Management & Security (ITRMS), Service Manager, will: understand the ITRMS core mission, service area capabilities and existing gaps; plan daily activities to assist service area leadership and staff to execute upon that mission in the most cost-effective manner possible while maximizing value to the business functions and minimizing operational disruptions. The Service Manager will continuously monitor service area(s) for quality execution and align future portfolios to deliver ongoing improvements. The Service Manager will play a key role in evaluating the benefit and risk of “doing” or “not doing” proposed platform work.
Planning, Execution and Demand Management
Govern the effort to develop service: road maps, portfolio plans, budget forecasts, metrics, communications, internal guidelines, policy and standards.
Publish business cases (programs and projects) for the quarterly & annual planning cycles articulating clear outcomes and metrics to demonstrate coverage & performance.
Align with service area colleagues, IT application & infrastructure teams, risk liaisons, risk management and cyber security teams, and business stakeholders to deliver compliance and cyber security controls.
Review internal policy(s) and external standards, such as the NIST Cyber security Framework (CSF), with service area leadership to track alignment and gauge maturity.
Lead the creation and initiation of services / related contracts.
Monitor program / project issues and risks ensuring appropriate escalation occurs.
Assist the program and project managers in working with non-ITRMS teams (IT Program Management Office, Procurement, Finance, Business and Supplier Management teams.)
Understand external demand for services and assess impact to portfolio(s).
Communicate ITRMS portfolio impacts to other organizations with service area representatives and Risk Liaisons.
Manage external supplier relationships that are executing work within designated service area(s).
Assist service area leadership to ensure financials are well managed with appropriate financial stewardship.
Provide input into the annual and quarterly forecasting cycles for capital and expense.
Monitor operational spend (program / project financials, services, subscriptions, maintenance) to budget forecast.
Keep ITRMS management informed of financial approvals required.
Operational Support and Metrics Management
Leverage cyber security and compliance expertise to link services to metrics that proof their desired outcomes
Ensure dashboard team is aware of new metrics
Ensure service documentation is appropriately transitioned to operational teams
Policies, SOPs, training content
Assist service area leadership with hardware / software maintenance renewals
Ensure service transition to operational teams is well planned including any financial shift to support uptake
Track response to audits against existing services ensuring outcomes satisfy the improvement(s) requested
Partner with ITRMS LT & stakeholders to define strategy and apply Cyber security best practices to service area
Education Minimum Requirement:
Bachelor's degree or equivalent experience
Required Experience and Skills:
Five (5 ) years of IT-related program / project management experience
Fundamental understanding of the System Development Life Cycle (SDLC)
Fundamental understanding of Cyber security principles and Compliance discipline
Preferred Experience and Skills:
Over seven (7 ) years demonstrated experience leading the planning and delivery of IT projects
Industry certified understanding of cyber security (i.e. CISA, CISM, CISSP, etc.)
Advanced understanding of the System Development Life Cycle (SDLC), in particular, applicability to managing IT risk and quality of delivery
Operational process development experience using industry recognized standards (i.e. ITIL)
Experience in implementing Cyber security technologies across a larger enterprise.
Demonstrated track record for analyzing processes for improvement
Demonstrated ability to execute on multiple high priority tasks and report to all levels of management
Excellent project management, risk management & compliance management skills
Excellent leadership, communication, and team collaboration skills
Experience working effectively with various levels of global IT staff worldwide
Demonstrated ability to generate detailed risk & compliance metric report
Your role at Merck is integral to helping the world meet new breakthroughs that affect generations to come, and we’re counting on your skills and inventiveness to help make meaningful contributions to global medical advancement. At Merck, we’re inventing for life.
If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to
Search Firm Representatives Please Read Carefully:
Merck & Co., Inc. is not accepting unsolicited assistance from search firms for this employment opportunity. Please, no phone calls or emails. All resumes submitted by search firms to any employee at Merck via email, the Internet or in any form and/or method without a valid written search agreement in place for this position will be deemed the sole property of Merck. No fee will be paid in the event the candidate is hired by Merck as a result of the referral or through other means.
Visa sponsorship is not available for this position.
For more information about personal rights under Equal Employment Opportunity, visit:
EEOC GINA Supplement
Compliance & Risk Management
Number of Openings:
Shift (if applicable):
Company Trade Name:
Merck & Co., Inc
Website : http://www.merck.com
Merck has a long and rich history of working to improve people's health and well-being. Through the years, our researchers have helped to find new ways to treat and prevent illness - from the discovery of vitamin B1, to the first measles vaccine, to cold remedies and antacids, to the first statins to treat high cholesterol. Our scientists also have helped develop many products to improve animal health, including vaccines and antibiotics. While we are proud of our past, we are enthusiastic about the future of this new company and we are excited to help create a healthier, brighter future for people around the world.