Roche fosters diversity, equity and inclusion, representing the communities we serve. When dealing with healthcare on a global scale, diversity is an essential ingredient to success. We believe that inclusion is key to understanding people’s varied healthcare needs. Together, we embrace individuality and share a passion for exceptional care. Join Roche, where every voice matters.
The Position
About Roche Informatics
In Roche Informatics, we build on Roche's 125-year history as one of the world's largest biotech companies, globally recognized for providing transformative innovative solutions across major disease areas. We combine human capabilities with cutting-edge technological innovations to do now what our patients need next. Our commitment to our patients' needs motivates us to deliver technology that evolves the practice of medicine.
Be part of our inclusive team at Roche Informatics, where we're driven by a shared passion for technological novelties and optimal IT solutions.
About the position
Do you have a strong background on managing IT Continuity & Risk Management effectively for critical systems and demonstrated experience on multiple projects who is looking for a creative, challenging and fun work environment and an opportunity to expand your skills? Then the Security, Testing and Validation Chapter is looking for you!
As an IT Continuity Specialist, you will be accountable for providing guidance in the planning, development, execution, maintenance and testing of Enterprise Business Continuity, Disaster Recovery and Crisis/Incident Management activities, along with being responsible for risk assessments of systems, services as well as for third parties to evaluate cyber resiliency and compliance with internal and external requirements. Additional accountabilities include compliance management, supporting BC/DR audit and examination activities together with development & maintenance of policies, standards & procedures that are aligned with the best practices (for example: NIST, ISO, COBIT).
This position will be supporting the Product Managers across Informatics.
Your key responsibilities:
- Manage the coordination, analysis and integration of Risk Management and IT Continuity activities, to ensure that the appropriate levels of resilience are in place.
- Conducting risk assessments for systems and services to assess security and data privacy control requirements.
- Maintains a comprehensive IT testing schedule, supports the testing of all continuity plans in line with business requirements.
- Able to articulate and facilitate the understanding of a system’s intended use and its compliance risk profile.
- Maintaining industry knowledge and skills in the areas of compliance, IT Business Continuity, audit, and risk management and applying them to improve internal processes and practices.
- Ensures that all IT continuity management plans, risks and activities underpin and align with all business continuity plans, risks and activities.
- Assists in creating regular reporting and status updates for IT and Business continuity.
- Ensure the recovery capabilities are enforced and integrated into Disaster Recovery Plans, meeting business as well as regulatory requirements.
- Foster a culture of Continuity & Risk/Resilience readiness within the IT community through awareness training and embedding it on the product design.
Your qualifications and experience:
- 3+ years of relevant experience: In IT system/service technical, and or Disaster Recovery/Business Continuity/Risk Management in a large global enterprise IT environment with knowledge on Business/IT Continuity processes, Risk Management and Operational Resilience initiatives.
- Able to present to executive forums on risk profile and continuity preparation and testing.
- Communication skills - ability to communicate complex information, issues, and potential solutions at an executive level.
- Familiar with health authority regulations, software development lifecycle, information security, ITIL processes and infrastructure, cloud & data center technologies
- Skills in relationship building, customer-focus, decision-making, and problem solving.
- Demonstrated ability to quickly learn business priorities in unfamiliar or ambiguous areas.
- The following certifications are a plus: BCI, DRI, CISA, CRISC, CISSP, Control frameworks and Standards such as COBIT, NIST and ISO 31000, ISO 22301 & ISO 27000 family.
- Audit and Compliance management experience would be considered an asset.
- Understanding of Agile methodologies/ scaled agile (SAFe) delivery is an asset.
What you get:
- Great working environment with attractive compensation and rewards package (according to local regulations);
- Annual bonus payment based on performance;
- Access to various internal and external training platforms (e.g. Linkedin Learning);
- Experienced and professional colleagues and workplace that supports innovation;
- Multiple Savings Plans with Employer Match
- Company’s emphasis on employees’ wellness and work-life balance ( (e.g. generous vacation days and OneRoche Wellness Days ),
- Flexible workplace policy;
- State of art working environment and facilities;
- And many more that the Talent Acquisition Partner will be happy to talk about!
This position is not eligible for relocation support.