Specialist, Information Systems Security Engineer - Third Party Risk Management And Compliance
CurrentMember of a team maps B2B Solution Enablement to the Third Party Risk Assessment process for the Global Information Protection, Governance, Risk and Compliance (GRC) team. Before a partner is enabled, I work with the Third-Party Risk and Information Security groups to assess, analyze, and measure risks to determine if effective controls are in place to current threat environments; our role is to assist with enablement during inception of a project in order to take steps to remediate vulnerabilities and improve long-term security posture. Thereafter I assist with deployment of the assessed systems, both internal and cloud systems as a solution to third party providers that have an outsourced contract with Amgen. I am responsible for working with internal Information Technology product teams and Business teams to align Amgen business processes to external B2B providers that share data and access any of our systems or collaboration tools. I actively collaborate with Amgen teams to understand business objectives, possess intermediate knowledge of authentication methodologies, network layers and protocols, data center virtualization, cloud-based platforms: infrastructure, applications, and storage services; ultimately identifying solutions that enable business and ensure information security and compliance. I am responsible for leading process improvement activities, participating in information protection special projects and other risk management related activities.