Job Description Summary

Job Description

We are the makers of possible 

BD is one of the largest global medical technology companies in the world. Advancing the world of health™ is our Purpose, and it’s no small feat. It takes the imagination and passion of all of us—from design and engineering to the manufacturing and marketing of our billions of MedTech products per year—to look at the impossible and find transformative solutions that turn dreams into possibilities. 

We believe that the human element, across our global teams, is what allows us to continually evolve. Join us and discover an environment in which you’ll be supported to learn, grow and become your best self. Become a maker of possible with us. 

The TGS Digital Risk Management Lead reports into the Associate Director of Cybersecurity & Digital Risk Management and is responsible for managing Cybersecurity & Digital risk management processes for TGS within BD’s Risk Management Framework, ensuring a consistent approach to tracking, reporting, and escalating high/critical risks. Working cross-functionally to remediate risks, manage risk escalation processes, and partner with various stakeholders to manage third-party cyber risk and emerging technology risk.

Responsibilities 

• Risk Management:

  • Manage the risk for Enterprise IT (TGS) within BD’s Risk Management Framework and ensure consistency of approach, tracking, reporting, and escalation of high/critical risks across BD.  These may include risks identified through internal or external assessments. 

  • Work cross-functionally across BD to ensure mitigation actions are executed effectively to remediate risks and manage risk escalation processes with key stakeholders.  Advocating and educating them about risk accountability.

  • Support and contribute to discussions to enable the identification, assessment, management, and reporting of key technology and security risks and control effectiveness-related issues.

  • Partner within Technology & Global Services, Legal, Privacy and Procurement to support the management of third-party cyber risk.

  • Partner with the regional Cybersecurity Officers to manage risks within the different regions and countries, considering regional regulations and laws.

  • Provide regular updates to the Associate Director of Cybersecurity & Digital Risk Management on key activities. 

  • Build a Cyber & Digital risk culture within TGS.

• Governance: Ensure compliance with BD’s policies, frameworks, and guidelines for managing digital risks. Provide regular reporting to the Associate Director of Cybersecurity & Digital Risk Management on key activities.

• Reporting: Maintain reporting and accountability of cybersecurity metrics for TGS programs. 

• Be a trusted advisor and guide/drive effective and relevant Cyber and Digital risk conversations with the regional Cybersecurity Officers and Business leadership (e.g., aligning to or providing insights in support of strategic priorities or objectives for the business, increasing risk accountability, etc.)  

• Operate a continuous improvement approach by reviewing and challenging the design and operation of processes.  

Requirements  

• At least 5+ years of experience in risk management.

• Strong knowledge of risk management principles, practices, risk management frameworks and methodologies.

• Excellent communication and leadership skills 

• Ability to work collaboratively with various departments within the organization. 

• Ability to communicate complex technical challenges in a non-technical and simplified manner to effectively engage with key stakeholders and influence outcomes to ensure risks objectives are achieved. 

• Ability to navigate regulatory and compliance requirements as an approachable and effective partner to develop solutions in response to business unit focus areas and changing external requirements.

• Track issues for compliance gaps and facilitate the implementation of remediation plans.

• Understanding of SOX, SOC 2, ISO 27001, PCI-DSS and similar regulations

• Understanding of IT risk environment

• Ability to prioritize, manage multiple projects, and execute in a fast-paced and dynamic environment with a strong work ethic and ownership mentality.

• Outstanding negotiation, facilitation, and consensus building skills.

• Strong Project Management Skills.

• Self-motivated and able to work independently.

Education and Skills  

• Bachelor’s degree in a related field (e.g., Computer Science, Management Information Systems)  

• Technical risk management certification (e.g., CRISC, CISSP, CISA, CISM) is preferred. 

For certain roles at BD, employment is contingent upon the Company’s receipt of sufficient proof that you are fully vaccinated against COVID-19. In some locations, testing for COVID-19 may be available and/or required. Consistent with BD’s Workplace Accommodations Policy, requests for accommodation will be considered pursuant to applicable law.

Why Join Us?

A career at BD means being part of a team that values your opinions and contributions and that encourages you to bring your authentic self to work. It’s also a place where we help each other be great, we do what’s right, we hold each other accountable, and learn and improve every day.  

To find purpose in the possibilities, we need people who can see the bigger picture, who understand the human story that underpins everything we do. We welcome people with the imagination and drive to help us reinvent the future of health. At BD, you’ll discover a culture in which you can learn, grow, and thrive. And find satisfaction in doing your part to make the world a better place.  

To learn more about BD visit https://bd.com/careers

Becton, Dickinson and Company is an Equal Opportunity/Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status. 

Primary Work Location

Additional Locations

Work Shift