Danaher Corporation Director, IT Governance, Risk & Compliance in Minneapolis, Minnesota
IDT is the leading manufacturer of custom oligonucleotides and proprietary technologies for genomics applications. Our work is complex and cutting-edge, and our team members are curious, creative thinkers who understand that good data drives smart decisions. At IDT, we realize that although science may be uniform, people are unique. We promote a culture where engaged people are motivated and have opportunities to achieve their full potential, as part of one global team.
IDT is proud to work alongside a community of nine fellow Danaher Life Sciences companies. Together, we’re pioneering the future of science and medicine, developing products that enable researchers in the fight to save lives.
Job Title: Director, IT Governance, Risk & Compliance
Location: Remote, USA
In this role, the Director of IT Governance, Risk & Compliance is accountable for the performance of IDT’s compliance standings on behalf of IT, inclusive IT SOX, PCI-DSS, and General Controls, in appropriate conjunction with business peers. This role performs a continuous critical evaluation of controls, policies and supporting processes to identify gaps, builds remediation plans or innovation and facilitates its implementations, documentation, and sustainment. The role engages with a spectrum of stakeholders, from IDT Leadership to the Associates performing the actions and builds, both within IDT and across the Danaher companies and platforms, building relationships and influencing decisions and architectures, establishing best-practices for Life Sciences.
Duties & Responsibilities:
Accountable for the design, implementation, continuous validation & improvement, and accurate representation of an effective IT SOX Compliance Program on behalf of IDT. Leads the response to auditors and necessary remediation activities via own and peer teams, through to completion and sustainment.
Accountable for IDT’s PCI-DSS credit card compliance standing, evaluating, and commissioning continuous improvement for both process enablement and infrastructure, working with finance peers for process definition, facilitation of SAQ processes and filings. Requires management & documentation of associated annual exercises, including vulnerability scans and penetration test results.
Co-develops several IT General Controls with peer teams, bringing best-practice experience and oversight to process, driving continuous improvement and departmental alignment. These general controls are inclusive of disaster recovery, business continuity planning, root-cause analysis processes, change management processes (SDLC), Information Security and others. Facilitates documentation of associated policies and procedures.
Embraces Danaher Business Systems (DBS) concepts to drive standard work, including Gemba (going to where the problem is), Action Planning of tasks, Daily Management of actions, Continuous Improvement via Kaizen, Problem Solving via PSP processes, effective & accurate visual management, etc. The role will mentor their own & peer teams on their DBS journeys.
Participates in IT Leadership metric reviews, responsible for calculating, publishing, and representing compliance-related items. Through this process, this role assists in realization of opportunities for improvement and may take the lead as appropriate.
Works with peer organizations to assess IDT’s Data Regulatory Compliance standings for both business unit (GMP, cGMP) and regional needs (EU GCRF, China PIPL). Assists in developing compliant process and identifying technical investments related to Data Privacy.
Supports CIO in responding to Enterprise Risk Management with accurate progress assessments of GRC related items.
Process Owner of our department’s IT Vendor Evaluation & Compliance processes, working with Procurement and Legal teams to ensure prospective vendors have appropriate levels of technically compliant maturity, including SOC1 evaluations for compliance standards. This role is an approval stakeholder in software selections.
Works with Legal and Customer Contract teams to assist in answer customer queries regarding our systems/security maturity and whether MSA expectations are met. This role will lead ISO 27001 certifications responses to customers on behalf of IT. Proactively assesses and advocates for PII protection of customer data throughout the IDT infrastructure.
Liaisons with Danaher Corporate, Platform and other Operating Company IT stakeholders to achieve common compliance objectives/projects. Exhibits necessary project management principles for engaging IDT technical stakeholders to perform the needful.
Implements an engaging and creative employee education and awareness program and conducts regular training sessions.
Manages and directs a team of GRC Associates which would include employment hiring, training, performance management, talent development, aligning on roadmap priorities, facilitating team / 1 on 1 cadence, annual budgets, and in collaboration with direct reports set annual performance objectives, development goals and delivers performance evaluations.
Works directly with the CIO and peer Directors to identify and execute upon areas for innovation for our department.
Demonstrates and upholds behavior consistent with the Integrated DNA Technologies Core Values and delivers the Integrated DNA Technologies experience to customers and other business associates.
Performs other duties as assigned.
Required Skills & Qualities:
Excellent communicator, effective in relaying complex concepts and gaining support through all levels of the organization.
An effective remote worker and manager.
A history of trusted and effective partnerships between business and IT.
A strong mentor to other IT professionals.
An influencer who is willing and able to drive change in the organization.
Excellent written and verbal communication skills.
Effectively uses teamwork to positively contribute to a high morale/high-performance team culture, leading by example.
Ability to align project milestones and timelines with strategic business objectives.
Education & Experience:
Bachelor's Degree required.
Understanding of Auditing Frameworks (ISO27001, ISO27002, ISO17799) and their successful implementation in a dynamic and growing organization.
A minimum 8 years of participation in both SOX Compliance & PCI-DSS annual cycles.
A minimum of 8 years of experience in managing IT professionals.
- Travel required, up to 20% of time.
What We Offer:
Generous Paid Time Off Accruals
16 Hours PAID Volunteer Time Off
10 Paid Holidays
Up to eight (8) weeks of 100% paid parental leave to eligible U.S. associates
401(k) with Company Match
Medical, Dental, and Vision Insurance Options
Integrated DNA Technologies (IDT) conducts drug screens and background checks on applicants who accept employment offers.
When you join us, you’ll also be joining Danaher’s global organization, where 80,000 people wake up every day determined to help our customers win. As an associate, you’ll try new things, work hard, and advance your skills with guidance from dedicated leaders, all with the support of powerful Danaher Business System (https://www.danaher.com/how-we-work/danaher-business-system) tools and the stability of a tested organization.
Danaher Corporation and all Danaher Companies are committed to equal opportunity regardless of race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity, or other characteristics protected by law. We value diversity and the existence of similarities and differences, both visible and not, found in our workforce, workplace and throughout the markets we serve. Our associates, customers and shareholders contribute unique and different perspectives as a result of these diverse attributes.The EEO posters are available here (https://www.dol.gov/agencies/ofccp/posters) .We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us at firstname.lastname@example.org to request accommodation. If you’ve ever wondered what’s within you, there’s no better time to find out.