×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant IT Project Manager Information Security

Director, Technology Risk Management

Job in West Point, Montgomery County, Pennsylvania, 19486, USA
Listing for: Merck
Full Time position
Listed on 2026-06-06
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, IT Project Manager, Information Security
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below
Location: West Point

Director, Business Information Risk Officer (BIRO)

The Director, Business Information Risk Officer (BIRO) is a critical leadership role responsible for aligning cybersecurity, risk management, and compliance strategies with business objectives. This individual serves as a trusted advisor to business leaders in the Enterprise IT (EIT) supporting the company’s Global Support Functions such as Finance, HR, Legal, and Procurement, ensuring that information security and compliance risks are proactively identified, assessed, and managed while enabling business innovation and growth.

This role provides risk governance for all IT systems managed by the EIT organization, whether hosted internally or in the cloud, fostering a secure, compliant, and risk‑aware culture. Additionally, the BIRO maintains a continuous feedback loop with the Information Technology Risk Management & Security (ITRMS) team to enhance and align the risk management processes to the business goals.

The ideal candidate possesses deep technical expertise and working knowledge of industry standard platforms such as SAP S/4, Workday, etc., a strong understanding of business operations (particularly Finance, HR, Legal, and Procurement), and excellent leadership and stakeholder management skills. The candidate must translate complex cybersecurity concepts into business language and influence stakeholders to drive a risk‑aware culture across the EIT organization and any newly acquired businesses.

Primary

Responsibilities
  • Serve as the primary cybersecurity and risk advisor to EIT, aligning security strategies with business priorities.
  • Provide executive‑level risk insights and recommendations to EIT leadership.
  • Ensure security and risk management practices are embedded in business processes, digital transformation initiatives, and operational decision‑making.
  • Act as a bridge between ITRMS and EIT, translating technical risks into business impact.
Risk Management & Governance
  • Drive compliance with applicable global regulations and internal security policies by tailoring the requirements to EIT’s operational and regulatory context.
  • Identify, design, and help implement risk‑based security solutions that are practical, effective, and aligned with EIT business priorities.
  • Provide security and risk leadership for strategic IT programs, such as SAP S/4

    HANA implementation, ensuring integration of security and compliance throughout the program lifecycle.
  • Stay updated on new and emerging technologies (e.g., AI and Quantum) and new laws and regulations, and understand their impacts on the business.
Technical Expertise & Cyber Resilience
  • Work with EIT IT Value Teams to establish secure design, implementation, and monitoring of IT systems, applications, and cloud environments.
  • Proactively identify opportunities to improve the cyber resilience capabilities of EIT systems.
  • Support the Cyber Fusion Center in handling cyber incidents related to EIT.
  • Understand emerging cyber threats, vulnerabilities, and attack vectors, and establish proactive risk mitigation strategies.
Leadership, Influence & Culture Building
  • Influence EIT stakeholders to foster a security‑conscious culture without impeding business agility.
  • Drive security awareness programs that resonate with business functions.
  • Lead, mentor, and develop a high‑performing risk and security team.
  • Demonstrate high emotional intelligence (EQ) and executive presence (EP), effectively engaging with senior executives and key stakeholders.
Education And Experience Requirements
  • Bachelor’s Degree in one or more of the following fields: information technology, cyber security, computer science, business administration, communications, or a related field.
  • Knowledge of industry standard platforms such as SAP S/4, Workday, etc.
  • 10+ years of experience working in one or more of the following fields: cybersecurity, IT risk management, IT compliance, IT audit, information technology, or a related field.
  • 5+ years of experience leading global teams in a management or leadership role, particularly in a fast‑paced, service‑oriented environment preferred.
  • Prior experience in the healthcare industry, with an understanding of the unique challenges in…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search