Manager, Information Protection

Posted 2 Days Ago
Be an Early Applicant
Chortiatis, GRC
In-Office
Mid level
Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Biotech • Pharmaceutical
We’re in relentless pursuit of breakthroughs that change patients’ lives.
The Role
Lead the enterprise information protection and technology privacy program: define strategy, data classification and control frameworks, translate regulatory/privacy/IP obligations into policies, set minimum controls for DLP/encryption/access controls, manage information protection risks and audits, advise business units on privacy assessments across jurisdictions, act as Data Steward and primary technology privacy contact, drive adoption, training, and executive reporting.
Summary Generated by Built In
ROLE SUMMARY
Our Global Cybersecurity Governance, Risk, and Compliance (GRC) team provides comprehensive blueprints for cybersecurity excellence by embedding governance, risk management, and compliance into every layer. The team is responsible for ensuring risk-based decision-making is used and that security, privacy, and regulatory compliance is integrated seamlessly with Pfizer's organization.
We are seeking a Manager, Information Protection & Technology Privacy, to lead and oversee the enterprise information protection program and serve as the primary Technology & Cyber Privacy Advisor within the Cyber GRC organization. This role ensures that sensitive data - across intellectual property, regulated data, and confidential business information - is appropriately classified, protected, and handled in alignment with Pfizer policies, regulatory expectations, and risk tolerance.
This role partners closely with Data Protection Engineering, Privacy, Legal, IT, Security Operations, and the DPO office to operationalize controls, drive adoption of data protection standards, ensure ongoing compliance across a complex, regulated pharmaceutical environment, and support Business Units in navigating privacy obligations across multiple jurisdictions.
ROLE RESPONSIBILITIES
  • Define and maintain the enterprise information protection strategy, standards, and control framework aligned to business risk and regulatory requirements.
  • Establish and govern data classification schemas, handling requirements, and control expectations across all data tiers.
  • Translate regulatory and legal obligations (e.g., privacy, IP protection, data residency) into enforceable enterprise policies and standards.
  • Define minimum control expectations for data protection technologies (e.g., DLP, encryption, access controls) in partnership with engineering teams.
  • Maintain traceability between risks, controls, and regulatory requirements to support audit and compliance activities.
  • Identify, assess, and track information protection risks within the enterprise risk register; partner with business units to drive mitigation and remediation.
  • Provide oversight of data protection control implementation and effectiveness, leveraging metrics, control testing, and assurance activities.
  • Define roles and responsibilities across business units, IT, and security teams, ensuring clear accountability for data ownership and protection.
  • Act as Data Steward for the Digital function and serve as the primary privacy contact for all Business Units on Technology and Cyber topics, providing consultancy and engaging relevant stakeholders across Cyber, Technology, and AI teams.
  • Support Business Units in completing privacy risks assessments for a new or changed business process, project or technology across several jurisdictions (such as EU, UK, US, Canada), acting as an approver where required.
  • Participate in Works Council discussions on Technology and Cyber matters and work closely with Legal and the DPO office to ensure privacy obligations are met.
  • Engage business stakeholders to promote adoption of data classification, handling, and protection practices.
  • Develop communication materials, training inputs, and executive reporting to drive awareness and accountability.

BASIC QUALIFICATIONS
  • Bachelor's degree in information technology, cybersecurity, computer science, or a related field.
  • 4+ years of experience in cybersecurity, risk management, data protection, or information security governance.
  • Experience with frameworks and standards such as NIST Cybersecurity Framework or ISO 27001.
  • Experience developing and maintaining cybersecurity risk policies, SOPs, and compliance frameworks.
  • Ability to manage multiple priorities, work with cross-functional teams, and deliver high-quality outputs.
  • Capability to align cybersecurity strategy with business objectives and operational resilience goals.
  • Strong leadership, communication, and presentation skills, with the ability to translate complex security concepts into business-focused insights for senior executives.
  • Excellent communication and interpersonal skills; ability to influence across levels and functions.
  • Ability to translate technical controls into risk, compliance, and business impacts.
  • Demonstrated experience in an agile work environment possessing qualities such as a collaborative mindset, adaptability to change, and a proactive problem-solving approach.

PREFERRED QUALIFICATIONS
  • Demonstrated experience working in pharmaceuticals industry and large, complex, or regulated environments.
  • Professional certifications such as CISSP, CISM, CRISC, CISA, PMP, or similar.
  • Hands‑on experience with GRC platforms (e.g., Archer).
  • Familiarity with privacy, intellectual property protection, and regulated data environments.

NON-STANDARD WORK SCHEDULE, TRAVEL OR ENVIRONMENT REQUIREMENTS
  • Travel as required by the business (less than 20% domestic and/or international)
  • Work Location Assignment: Must be able to work in assigned Pfizer office 2-3 days per week, or as needed by the business

Work Location Assignment: Hybrid
Please apply by sending your CV and a motivational letter in English
Purpose
Breakthroughs that change patients' lives... At Pfizer we are a patient centric company, guided by our four values: courage, joy, equity and excellence. Our breakthrough culture lends itself to our dedication to transforming millions of lives.
Digital Transformation Strategy
One bold way we are achieving our purpose is through our company wide digital transformation strategy. We are leading the way in adopting new data, modelling and automated solutions to further digitize and accelerate drug discovery and development with the aim of enhancing health outcomes and the patient experience.
Flexibility
We aim to create a trusting, flexible workplace culture which encourages employees to achieve work life harmony, attracts talent and enables everyone to be their best working self. Let's start the conversation!
Equal Employment Opportunity
We believe that a diverse and inclusive workforce is crucial to building a successful business. As an employer, Pfizer is committed to celebrating this, in all its forms - allowing for us to be as diverse as the patients and communities we serve. Together, we continue to build a culture that encourages, supports and empowers our employees.
Disability Inclusion
Our mission is unleashing the power of all our people and we are proud to be a disability inclusive employer, ensuring equal employment opportunities for all candidates. We encourage you to put your best self forward with the knowledge and trust that we will make any reasonable adjustments to support your application and future career. Your journey with Pfizer starts here!
Pfizer endeavors to make www.pfizer.com/careers accessible to all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process and/or interviewing, please email [email protected]. This is to be used solely for accommodation requests with respect to the accessibility of our website, online application process and/or interviewing. Requests for any other reason will not be returned.
To learn more about acceptable and prohibited uses of AI during the recruitment process, please review our candidate AI-use guidelines available on Pfizer Careers .
Information & Business Tech

Skills Required

  • Bachelor's degree in information technology, cybersecurity, computer science, or a related field
  • 4+ years of experience in cybersecurity, risk management, data protection, or information security governance
  • Experience with frameworks and standards such as NIST Cybersecurity Framework or ISO 27001
  • Experience developing and maintaining cybersecurity risk policies, SOPs, and compliance frameworks
  • Ability to manage multiple priorities and work with cross-functional teams
  • Capability to align cybersecurity strategy with business objectives and operational resilience goals
  • Strong leadership, communication, and presentation skills for engaging senior executives
  • Excellent interpersonal skills and ability to influence across levels and functions
  • Ability to translate technical controls into risk, compliance, and business impacts
  • Demonstrated experience in an agile work environment and collaborative mindset
  • Demonstrated experience working in pharmaceuticals or large, regulated environments
  • Professional certifications such as CISSP, CISM, CRISC, CISA, PMP, or similar
  • Hands-on experience with GRC platforms (e.g., Archer)
  • Familiarity with privacy, intellectual property protection, and regulated data environments

What the Team is Saying

Daniel
Anna
Esteban
Pfizer

Pfizer Compensation & Benefits Highlights

  • Healthcare Strength Multiple U.S. medical plan options include telehealth, comprehensive mental‑health support, fertility/family‑building benefits, transgender‑inclusive coverage, and certain Pfizer medications at no cost. A Wellbeing Wallet and wellness resources broaden the health and wellbeing offering.
  • Retirement Support A 401(k) with company matching is paired with an additional Pfizer Retirement Savings Contribution, alongside company‑paid life and disability insurance. One‑on‑one financial planning support is provided through Fidelity.
  • Leave & Time Off Breadth Paid time off spans vacation, holidays, and personal days, with additional caregiver and medical leave. U.S. parental leave commonly includes 12 weeks paid with options for additional unpaid bonding time and a return‑to‑work transition.

Pfizer Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: New York, NY
121,990 Employees
Year Founded: 1848

What We Do

Our purpose ensures that patients remain at the center of all we do. We live our purpose by sourcing the best science in the world; partnering with others in the healthcare system to improve access to our medicines; using digital technologies to enhance our drug discovery and development, as well as patient outcomes; and leading the conversation to advocate for pro-innovation/pro-patient policies.

Why Work With Us

We are the inventors, the problem solvers, the big thinkers — those who surmount any hurdle to deliver breakthrough medicines to the people who are counting on them the most.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery

Pfizer Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

Typical time on-site: 2.5 days a week
Company Office Image
HQHudson Yards
Provincia de Buenos Aires
Andover, MA
Athens, GR
Chennai, IN
Collegeville, PA
Durham, NC
Groton, CT
Madison, NJ
Madrid, ES
Mumbai, Maharashtra
Rochester, MI
San Diego, CA
Seattle, WA
Company Office Image
Tampa, FL
Center for Digital Innovation
Learn more

Similar Jobs

Pfizer Logo Pfizer

MEET French Analyst

Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Biotech • Pharmaceutical
In-Office
Chortiatis, GRC
121990 Employees

Pfizer Logo Pfizer

Director, AI Engineering--Clinical Development and Operations (CD&O)

Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Biotech • Pharmaceutical
In-Office or Remote
31 Locations
121990 Employees
177K-294K Annually

Pfizer Logo Pfizer

Senior Manager, Network Security

Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Biotech • Pharmaceutical
In-Office
Chortiatis, GRC
121990 Employees

Pfizer Logo Pfizer

Manager, Vulnerability Management

Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Biotech • Pharmaceutical
In-Office
Chortiatis, GRC
121990 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account