Application Security Governance Spclst

MSD is an innovative, global healthcare leader committed to improving health and well-being in 140 countries around the world. Our product categories include heart and respiratory health, diabetes, infectious diseases and women's health. We continue to focus our research on conditions that affect millions of people around the world - diseases like Alzheimer's, Diabetes and Cancer - while further expanding our strengths in areas such as vaccines and biologics. We aspire to be the best healthcare company in the world and are dedicated to providing leading innovations and solutions for tomorrow.

Increased risks in both the information security (e.g. cyber threats, malware, etc.) and the regulated areas have required that staff possessing such skills is fully embedded within the IT organization. The enterprise is now dependent on these security and compliance experts for identifying, escalating and remediating such IT Risks in a timely and efficient manner. Also, emerging technologies like cloud, mobility and data analytics require strong IT Risk and Compliance early involvement.

We are seeking motivated talent interested in solving problems to improve tomorrow by joining a new team focused on Application Security and Software Assurance.


You will:
• Contribute to the success of firmwide application security program by leading the governance and engagement capability to provide strategic oversight of application security controls across divisions
This position is responsible for
• Development and maintenance of information security policies, standards and guidance for application security
• Drive standardization, efficiency and effectiveness of application security processes and controls
• Coordinate the enterprise security training for development staff
• Recommend and help implement enterprise controls to support application security among development teams
• Partner with various stakeholders, including application development teams, IT Risk Management to drive the Secure SDLC strategy
• Develop and publish metrics to guage security health of MSD products and applications
• Support special projects and other activities 

You will work and learn more about:
• Integration of leading edge cybersecurity initiatives with application development
• Working globally across our market and hub network
• How to define meaningful metrics that lead to a reduction in security flaws
• Acquire deep understanding and knowledge of business processes working with development team
Education Minimum Requirement:
A Bachelor's Degree is required. Concentration in one of the following fields preferred.
• Computer Science
• Cybersecurity
• Management/Computer Information Systems
• Information Assurance

Required Experience and Skills**:
• 5+ years of Information Security Experience
• Leadership skills required
• Application development experience with Agile/SCRUM software development models
• Strong knowledge of IT Internal control requirements for application security
• Experience working with application security and controls for Enterprise Systems
• Excellent communication skills, able to network, interface and influence at all levels of the organization, cross sector, cross functionally and globally required
• Passion for learning about new technologies and emerging security threats.
• Familiarity with common programming languages (Java, .NET, C/C++, etc.)
• Familiarity with build tools and processes (Jenkins, Bamboo, Ant, TFS/VSTS, Source Control, etc.)
• Familiarity with bug trackers such as JIRA and Bugzilla


We offer
• Competitive remuneration
• Position in a leading global healthcare company
• Challenging career
• Professional growth based on performance
• Innovative and flexible working environment
• Wide range of benefits


Your role at MSD is integral to helping the world meet new breakthroughs that affect generations to come, and we’re counting on your skills and inventiveness to help make meaningful contributions to global medical advancement. At MSD, we’re inventing for life.            
            
            
MSD is not accepting unsolicited assistance from search firms / recruitment agencies for this employment opportunity.  Please, no phone calls or emails.  All resumes submitted by search firms to any employee at MSD via email, the Internet or in any form and/or method without a valid written search agreement in place for this position will be deemed the sole property of MSD.  No fee will be paid in the event the candidate is hired by MSD as a result of the referral or through other means.             
            
            
            

I want to join

I'm applying for:

Application Security Governance Spclst

Privacy Notice and User Agreement

What Personal Information is used and how long is it retained?

Taleo* uses Personal Information such as your name, contact information and other information necessary for the application process. This information may be used by the Human Resources (HR) organization to contact you at any time during your candidacy for employment, to send you announcements, or request other types of information as required. The retention period for Personal Information in Taleo is two years, which is the length of time that the company has determined the information is necessary for the purposes described in this Privacy Notice and User Agreement.

 

Who will have access to Personal Information in Taleo and how will they protect it?

Access to Personal Information in Taleo is limited to you, HR Personnel and limited IT support personnel, based on specific security roles and standard data authorization as outlined for all HR applications. Additionally, some countries utilize third party recruiters that will also have access to the information you input into Taleo. Taleo is hosted by a third party vendor, Oracle, based in the United States. Oracle may also use additional third party vendors to process personal data. Oracle has contractually committed to protect Personal Information and to process it only as instructed by our company, including the destruction of the Personal Information at the end of the retention period. Oracle has certified its compliance with the EU-U.S. Privacy Shield Framework for processing employee related Personal Information.
Access to Personal Information may be from within the country in which the individual to whom the data relates is based, or from any other country in which an authorized user of Taleo is based. While the country from which information is accessed may not have laws that protect Personal Information in the same way as the country in which you are based, all Personal Information in Taleo will be used in accordance with the Global Privacy Notice for Employment-Related purposes , any local privacy notices you receive, all applicable company policies with respect to the privacy and confidentiality of Personal Information, including, but not limited to our Global Privacy and Data Protection Policy and our Global Internet Privacy Policy and any additional requirements of the countries in which the employees to whom the data relate are based.

 

How do I update, correct or delete Personal Information in Taleo?

You have the right to access, rectify and delete your Personal Information that you provide and maintain in your Taleo Profile at any time. You can also request that the information be removed from our database by contacting the company’s Privacy Office. At any time you may decide no longer to use Taleo, raise a concern or make a complaint about your privacy or use or sharing of Personal Information about you by contacting the company’s Privacy Office.

 

End-User Agreement

Your agreement is required to use Taleo. If you agree to the terms, conditions and obligations described in this Data Privacy Notice and User Agreement, click on “I accept”. If you do not agree, do not click on “I accept”, and the application process will discontinue.

 

BY CLICKING “I ACCEPT”, I AUTHORIZE MERCK & CO., INC., KENILWORTH, NJ. USA, WHICH OPERATES AS MSD OUTSIDE OF THE USA AND CANADA TO STORE PERSONAL INFORMATION ABOUT ME IN A DATABASE MAINTAINED BY OUR THIRD PARTY VENDOR, ORACLE CORPORATION, LOCATED IN CHICAGO, ILLINOIS, UNITED STATES (HEADQUARTERED AT: 4140 DUBLIN BOULEVARD, SUITE 400, DUBLIN, CALIFORNIA 94568 UNITED STATES) AND TO PROCESS, TRANSMIT, USE, AND DISCLOSE PERSONAL INFORMATION ABOUT ME FOR PURPOSES OF THE APPLICATION PROCESS, FOR SENDING ANNOUNCEMENTS OF FUTURE JOB OPPORTUNITIES AS THEY BECOME AVAILABLE OR FOR ADMINISTRATION PURPOSES. SUCH DATA WILL BE TREATED IN ACCORDANCE WITH APPLICABLE LEGAL REQUIREMENTS OF THE COUNTRY OF SUBMISSION, THE COUNTRY IN WHICH A POSITION IS LOCATED WHOSE LAWS MAY NOT PROVIDE THE SAME PROTECTION AS THOSE IN THE COUNTRY IN WHICH I AM LOCATED, AND, WHEN USED IN THE U.S., WHERE APPLICABLE, WITH THE COMPANY’S CROSS BORDER PRIVACY RULES POLICY.

 

* What is Taleo?

Taleo is the global web-based applicant tracking platform used by Merck & Co., Inc., Kenilworth, NJ. USA, which operates as MSD outside of the USA and Canada, to enable the Company to source, assess, track and hire internal and external talent. The primary business purpose of Taleo is to facilitate an effective, consistent and efficient company-wide staffing process, through a single, integrated and automated global system of record for candidates and employees. Some collection and input of personal information by candidates in Taleo is required to facilitate the staffing application process. None of the information collected in Taleo is required by law.

 

Note: Merck & Co. Inc Kenilworth, NJ. USA, is known as Merck Sharp & Dohme or MSD in most countries outside of the U.S. and Canada.

Your application has been submitted successfully!
Thank you
Close
Oops, something went wrong :(
Please try again. If problem persist, contact our HR.
Try again Close

Your Internet Explorer is outdated.

This website can not be viewed with your browser!

Upgrade your browser to the latest version (Internet Explorer) or install another browser, like Firefox or Google Chrome