• GlaxoSmithKline PLC
  • New Kensington , PA
  • Non-Executive Management
  • Full-Time
  • 120 Dandyview Dr

The GSK Privileged access service is changing from a bespoke tool to CyberArk and SailPoint and the services we are providing on these tools are new. We have created a number of new positions in the organisation to support the delivery of these new services

The Privileged Access Service Controls Monitoring Manager is one of the new roles created to support the change in the service for enhancing the controls and management of Privileged Access across the GSK environment.

The primary purpose of the role is to work with the Privileged Service Owner, Internal Audit and Sr. Management. Makes written recommendations to Sr. Management to increase efficiency and/or effectiveness of the privileged access controls. This position works with all levels of management and employees within the company, including external auditors. Responsible for providing guidance to assigned audit staff from different regions. Ensures Audit readiness and Service Continuity and governance whilst maintaining Service Relationship with Internal and External Stakeholders

  • Ensures that all activities and tools utilised are operated against defined standard procedures that support the necessary compliance position. This includes regulations related to GDPR, PII, Sarbanes Oxley, GxP, etc. Act as the principle lead on all audits and assessments (both internally and externally led) that assess compliance in this area.
  • Directs controls monitoring staff overseeing activities and monitoring progress, including developing and mentoring staff.
  • Works with Global Risk to ensure GSK's Privileged Access Standards, Policies, and Procedures meet and/or exceed industry best practices and regulatory compliance standards
  • Lead, teach, and mentor privileged access service team on privileged access risk and controls
  • Keep abreast of audit best practices and proactively identify ways to improve the effectiveness and efficiency of audit execution
  • Represents the audit function effectively in communications with regulatory agencies, clients, etc
  • Leads internal audits of privileged access controls for applications and systems under SOX or other regulatory compliance that are managed as part of the Privileged Access Service
  • Works with management to mitigate risks where possible, develops possible solutions to remediate potential control deficiencies
  • Assists with assessment and monitoring of privileged access risks and controls
  • Establishes strong relationships with key management across application support and technical operations groups that utilize the privileged access service
  • Supports risk/control awareness and self-assessment throughout the Corporation.
  • Leads projects and project team to ensure day-to-day quality results. This includes setting expectations with team, reviewing their work, and managing client expectations
  • Provides guidance to assigned Auditors to ensure proper technical understanding of Privileged Access risks and controls
  • Consults with Enterprise Risk Management, Information Security, Internal Audit and external Audit, Corporate Compliance, Legal and other appropriate parties sharing expertise and knowledge to strengthen the IT control environment
  • Leads the design, implementation, and ongoing monitoring and reporting of privileged access controls
  • Provides senior level consulting to Tech Operations teams on internal audit activities and results as well as risk mitigation initiatives in response to audit findings
  • Minimum Requirements:

  • Strong audit experience
  • Knowledge of Identity Access Management principles and industry best practices
  • Knowledge of SharePoint
  • Understanding of Database authentication methods and techniques
  • Highly self-motivated, directed, and can work independently without supervision
  • Desire to learn and grow with existing IAM team
  • Desired:

  • CISSP, CISM and/or CISA a plus
  • ISACA - Certified Information Systems Auditor (CISA)
  • Knowledge and experience with CyberArk Privileged Threat Analytics a plus
  • At GSK we are all inspired by the difference we make and challenge ourselves every day to improve the lives of patients and consumers. That s why we have created an environment where everyone feels valued, able to develop, contribute to our mission and be proud of what we achieve.

    To support you in achieving your role and career ambitions you ll be given the opportunity to:

    Play an important role in delivering our mission
    Be an essential part of diverse, global team

    Develop others as part of your own professional growth

    Interested in Joining the Team?

    During the course of your application you will be requested to complete voluntary information which will be used in monitoring the effectiveness of our equality and diversity policies. Your information will be treated as confidential and will not be used in any part of the selection process.


    If you require a reasonable adjustment to the application / selection process to enable you to demonstrate your ability to perform the job requirements please contact 0808 ### ####. This will help us to understand any modifications we may need to make to support you throughout our selection process.

    The information that you have provided in your cover letter and/or CV will be used to assess your application.

    Thank you for your interest in this opportunity.

    Closing Date: COP 20th July 2019

    *LI-GSK

    #GSKTechTalent

    Why GSK?

    GSK has a 150-year legacy of helping to transform the health, lives and futures of millions of people around the world. We re a science-led healthcare company with more than 100,000 people working in 115 countries. Each year we produce around 4 billion packs of medicine, nearly 900 million doses of vaccine and more than 18 billion packs of consumer healthcare products. Our focus of helping people do more, feel better and live longer is at the center of all that we aim to do.

    If you require an accommodation or other assistance to apply for a job at GSK, please contact the GSK HR Service Centre at 1-877-###-#### (US Toll Free) or +1 801 ### #### (outside US).

    GSK is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.

    Important notice to Employment businesses/ Agencies

    GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.

    Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK s compliance to all federal and state US Transparency requirements. For more information, please visit GSK s Transparency Reporting For the Record site.



    * The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.

    Launch your career - Upload your resume now!


    Loading some great jobs for you...