Cognizant · 1 day ago
GRC Security Analyst
Raritan, NJ
Full-time
Onsite
Senior Level
7+ years expCognizant is a leading professional services company focused on digital transformation. They are seeking a GRC Security Analyst to enhance cybersecurity for pharmaceutical systems and applications, ensuring compliance with regulations and managing risks associated with supply chain projects.
ConsultingIndustrial AutomationInformation TechnologySoftwareSoftware Engineering
Responsibilities
Responsible for advancing cybersecurity of Pharma systems, applications, and integrations across product lines and regions by identifying key risks and controls through security assessments
Orchestrate and deliver cybersecurity risk assessments of Supply Chain projects, applications, and the technologies that run them while maintaining awareness of the changing threat landscape
Understand and promote risk management activities associated with external regulations and internal policies such as IAPP, GxP, and GDPR
Bridge the gap between traditional Information Technology (IT) and business functions by relating cyber threats and vulnerabilities to business imperatives and communicating them to key business leaders
Actively advise, assess, and lead Business and IT stakeholders in the development of secure information systems and solutions in line with the organization's cybersecurity architecture, IAPP policies, and regulatory requirements
We maintain connections across peer groups to continuously understand emerging security solutions that are ground-breaking enablers for mitigating supply chain risk
We constantly strive to shape the administrative controls for cybersecurity through advisory and assurance services
Support compliance assessments on regulatory (ie GxP or SOX)
Make recommendations for application security including change, incident management, process enhancements, access management, and change management
Consulting stakeholders about data classification and privacy, including data encryption and protection
Ensures appropriate controls are implemented for Car-t Applications and coordinates alignment with Internal Audit and IT Compliance
Provide metrics and reports on a weekly basis tracking the entire portfolio, application assessment status, and Risk Acceptance status
Experience in providing security applications controls and assessments for Supply Chain Pharmaceutical/Innovative Medicine
Performing security consulting to ensure that the Minimum Viable Security (MVS) is built into new supply chain Advanced Therapies systems
Responsible for performing security risk assessments of existing Advanced Therapies systems applications providing security/risk-related updates and meaningful metrics and answering all questions related to security/risk-related subjects
Provide security consulting and assurance for assigned platforms, including:
Performing risk calculators to identify high risk applications/projects; for those identified, performing application security questionnaires/assessments, identifying security gaps and appropriate remediation actions
Performing Incident trending to ensure security root causes are identified and remediated
Evaluating static & dynamic vulnerabilities to identify TLM/ALM & other security issues along with the appropriate remediation actions
Large experience in SOX, IAPP, GxP, Privacy compliance requirements
Provide local oversite for interns, employees / Contractors in the team
Support Key Advanced Therapies projects:
Providing a central point for SC security questions or queries on project support, connecting with the appropriate ISRM team member to ensure complete and accurate responses and/or appropriate involvement
Navigating between all ISRM SC pillars to obtain knowledge regarding security issues
Ensures appropriate controls are implemented for Car-t Applications and coordinates alignment with Internal Audit and IT Compliance
Provide metrics and reports on a weekly basis tracking the entire portfolio, application assessment status, and Risk Acceptance status
Qualification
Required
Bachelor's degree in information technology, Computer Science, or a related field
Minimum 7 years of experience working with security and controls, consulting stakeholders throughout the application implementation process
Broad knowledge of information security processes and principles is useful in explaining the business value of cybersecurity
Experienced in identifying and articulating issues/obstacles regarding application security issues
Working knowledge of Web/Cloud-based software
Familiarity with SOX compliance requirements
Self-starter and proficient multitasker with excellent documentation, communication, and organizational skills
Preferred
Certified Information Systems Security Professional (CISSP), CISM, CISA etc
Benefits
Medical/Dental/Vision/Life Insurance
Paid holidays plus Paid Time Off
401(k) plan and contributions
Long-term/Short-term Disability
Paid Parental Leave
Employee Stock Purchase Plan
Company
Cognizant
Cognizant is a professional services company that helps clients alter their business, operating, and technology models for the digital era.
10001+ employees
H1B Sponsorship
Cognizant has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (11113)
2024 (11423)
2023 (13054)
2022 (13876)
2021 (12651)
2020 (28659)
Funding
Current Stage
Public CompanyTotal Funding
$0.24MKey Investors
Summit Financial Wealth Advisors
2025-03-08Post Ipo Equity
2016-11-18Post Ipo Equity· $0.24M
1998-06-19IPO
Leadership Team
Ravi Kumar S
Chief Executive Officer
Anil Cheriyan
CTO / EVP Strategy & Technology
Recent News
2026-01-08
2026-01-06
Company data provided by crunchbase