GRC / Technical Controls Analyst II - United States - PCI Pharma Services

    PCI Pharma Services
    PCI Pharma Services United States

    1 week ago

    Description

    Life changing therapies. Global impact. Bridge to thousands of biopharma companies and their patients.
    We are PCI.
    Our investment is in People who make an impact, drive progress and create a better tomorrow. Our strategy includes building teams across our global network to pioneer and shape the future of PCI.
    Position Summary
    The GRC / Technical Controls Analyst will manage PCI Pharma's cybersecurity governance, risk, and compliance program with specific focus on pharmaceutical regulatory requirements. This role bridges technical security controls with business compliance needs, ensuring the organization meets GxP, FDA 21 CFR Part 11, and industry security standards while supporting audit activities and risk management initiatives.
    Key Responsibilities

    • Develop and maintain cybersecurity policies, standards, and procedures aligned with pharmaceutical regulations
    • Manage technical controls auditing across 150+ applications and systems quarterly
    • Coordinate GxP computer system validation activities with Quality Assurance team
    • Conduct risk assessments for new systems, vendors, and business initiatives
    • Maintain compliance evidence and documentation for regulatory audits (FDA, EMA)
    • Lead internal security control assessments and gap remediation tracking
    • Support third-party/vendor cyber risk management including security questionnaires and assessments
    • Develop and track key risk indicators (KRIs) and security metrics
    • Coordinate with external auditors and manage audit finding remediation
    • Maintain security control framework mapping (NIST CSF, ISO 27001, SOC 2)
    • Review and approve security exceptions with appropriate risk documentation
    • Support business continuity and disaster recovery compliance requirements
    Required Qualifications
    • Bachelor's degree in Information Security, Risk Management, or related field
    • 4+ years of experience in GRC, security compliance, or audit roles
    • Strong knowledge of security frameworks (NIST CSF, ISO 27001, CIS Controls)
    • Experience with pharmaceutical regulations (21 CFR Part 11, GxP, Annex 11)
    • Proficiency in controls testing and evidence collection
    • Experience with risk assessment methodologies
    • Strong documentation and technical writing skills
    • Excellent communication skills for audit and stakeholder interactions
    • Project management capabilities for compliance initiatives
    Preferred Qualifications
    • CISA, CRISC, or CGEIT certification
    • Direct pharmaceutical or life sciences industry experience
    • Experience with GRC platforms (ServiceNow GRC, Archer, OneTrust)
    • Knowledge of SOX IT general controls
    • HITRUST or healthcare compliance experience
    • Experience with vendor risk management programs
    Technical Skills & Tools
    GRC platforms (ServiceNow GRC preferred)
    • Security control frameworks (NIST, ISO, CIS)
    • Risk assessment tools and methodologies
    • Audit management systems
    • Microsoft 365 compliance features
    • Documentation tools (SharePoint, Confluence)
    • Basic technical understanding of infrastructure and applications
    Key Performance Indicators
    • Audit finding closure rate (target: 100% within agreed timeline)
    • Controls assessment coverage (target: 100% of critical systems)
    • Policy review cycle compliance (target: 100% annual review)
    • Vendor risk assessment completion (target: 100% of critical vendors)
    • Risk register accuracy and currency (target: monthly updates)
    Join us and be part of building the bridge between life changing therapies and patients. Let's talk future
    Equal Employment Opportunity (EEO) Statement:
    PCI Pharma Services is an Equal Opportunity/Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status.

  • Only for registered members United States Full time

    Develops efficient acquisition systems for items managed by Materials Handling (MH). Develops and maintains systems which assure the accuracy of perpetual inventory counts and inventory locator systems to facilitate easy retrieval for all items. · In conjunction with Procurement, ...

  • Only for registered members United States

    This position is primarily a remote position but candidates within the Huntsville AL area may be expected to work a hybrid schedule at the discretion of Gray Operations Group. · ...

  • Only for registered members United States

    STI Group is seeking a full-time Project Control Specialist for ongoing projects. · ...

  • Only for registered members USA

    Crown's Quality Control Analyst will be responsible for assessing product or service quality, identifying defects or deviations from standards. · ...

  • Only for registered members United States

    The Project Control Analyst supports project data capture and processing. The role involves interacting with colleagues within Bentley's Advancements Teams as well as Sales colleagues. · Reviews project data to ensure accuracy. · Participates in monthly project review meetings. · ...

  • Only for registered members United States

    CVP is looking for a detail oriented and highly organized Project Controls Analyst. · Bachelor's degree in finance or related disciplineFour or more years experience in similar roleOrganization and prioritization skillsClear and concise verbal and written communication skills ...

  • Only for registered members United States

    CVP is looking for a detail oriented, highly organized Project Controls Analyst. · Prepare monthly invoices for 20+ government contracts in coordination with the project manager. · ...

  • Only for registered members United States Remote job

    The Project Control Analyst supports project teams by monitoring schedule cost and performance from project initiation through completion. · This role uses a variety of project control tools to track timelines milestones budgets and expenditures working closely with project manag ...

  • Only for registered members United States Remote job

    The ESR Quality Control Analyst will be responsible for ensuring the accuracy, · completeness and compliance of all data and financial reporting associated with excess servicing portfolios. · Come join our amazing team and work from home ...

  • Only for registered members United States

    TE Connectivity's Quality Assurance Teams are responsible for all or part of an organization's Quality Management System... · ...

  • Only for registered members United States

    Supermicro Computer Inc. is seeking an experience Cost Control Analyst to provide accurate pricing for new and existing products by working closely with internal teams. · Manage workload for multiple departments across function base · Forecasts, controls, and reports project cost ...

  • Only for registered members United States

    The Accounting Analyst position is in the Office of the Controller. This is administrative/professional work in general accounting. · ...

  • Only for registered members United States

    We are seeking a skilled and motivated Business Systems Analyst to support and enhance our Sitetracker environment. · ...

  • Only for registered members United States

    Peraton is seeking an experienced Computer Operations Analyst/Production Control Specialist to join our team of qualified, diverse professionals. This is a remote role participating in a 24x7 on-call rotation and requiring occasional weekend work. · ...

  • Only for registered members United States Remote job

    Peraton is seeking an experienced Computer Operations Analyst/Production Control Specialist to join our team of qualified, diverse professionals. · ...

  • Only for registered members United States Remote job

    We are hiring entry-level analysts to senior-level consultants. Our office headquarters is located in Asheville, NC but we allow full remote positions if the applicant can demonstrate a high level of accountability. · ...

  • Only for registered members United States

    The Medicaid Fraud Control Unit (MFCU) is charged with investigating and prosecuting fraud in Medicaid billing schemes and nursing home abuse. · Collect, compile, analyze, and interpret trends or patterns in complex medical data sets. · Formulate analyses and prepare reports. · ...

  • SOC Analyst I

    4 days ago

    Only for registered members United States

    The Security Operations Center (SOC) Analyst I provides support to One Source's Managed Security Services customers. · ...

  • Only for registered members USA

    Client has an immediate need for a Sr. Business Analyst to support a global SAP implementation and Finance team with Analytics and dashboard BI reporting. · ...

  • Only for registered members United States Remote job

    This position requires an active Public Trust clearance or the ability to obtain a Public Trust clearance to be considered. · The Senior Maritime Cybersecurity Analyst provides expert cybersecurity support to the MARAD Information Assurance Program, · supporting system authorizat ...

  • Only for registered members United States

    The Configuration Analyst II maintains accurate configuration documentation and version control across PMW 790/STACC systems. · Establish and maintain configuration baselines for hardware, software, and documentation. · Track Engineering Change Requests (ECRs) and deviations. · ...

Jobs