Director, GRC Technology and Metrics

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or related field
• 8+ years of progressive experience in cybersecurity, governance, risk management, or compliance roles
• 5+ years of leadership experience overseeing technology-enabled GRC, automation, or platform-driven risk and compliance programs at scale
• Hands‑on experience implementing or managing enterprise GRC platforms, such as Archer, or equivalent
• AI enablement and integration experience, especially with GRC platforms
• Experience designing automated workflows, integrations, and control monitoring across complex IT and business environments
• Strong understanding of cybersecurity frameworks (NIST CSF, ISO 27001) and how they translate into GRC tooling
• Prior experience modernizing GRC capabilities through digitization, automation, analytics, and continuous control monitoring
• Background working in highly regulated industries, preferably pharmaceutical, life sciences, healthcare, or manufacturing
• Proven ability to influence and collaborate with senior leaders, architects, engineering teams, and cross‑functional business partners
• Experience managing large‑scale technology enablement programs, including platform roadmaps, governance models, and enterprise adoption
• Strong data and analytics mindset, with experience leveraging dashboards and reporting to drive insights and decision making
• API integration experience
• Permanent work authorization in the United States.

Nice To Haves

• Professional certifications: CISSP, CISM, CRISC or similar
• Experience using GRC tools (e.g., Archer) and other automations (AI, analytics, etc)
• Excellent strategic thinking
• Deeply analytical and credible
• Fact-based decision-making grounded in metrics, dashboards, and platform insights
• Ability to challenge, influence, and support senior leadership
• Excellent communication and presentation skills
• Ability to bring structure to ambiguous technology and process problems
• Resourceful, self-motivated, and proactive – strong drive for excellence

Responsibilities

• Lead the enterprise GRC technology and metrics program, ensuring scalable, integrated platforms that support risk, compliance, and cybersecurity objectives.
• Establish and maintain technology‑driven processes, workflows, and automation capabilities that strengthen GRC frameworks and regulatory alignment.
• Drive consistent, data‑driven risk decision making by enabling enterprise controls, automated monitoring, and enhanced reporting across business and technology functions.
• Partner with senior leaders across R&D, Manufacturing, Commercial, Digital, and Corporate functions to understand requirements and deliver GRC technology solutions that support strategic risk mitigation.
• Advise executives and stakeholders on GRC technology capabilities, platform insights, emerging technology risks, and opportunities for automation and optimization.
• Oversee GRC platforms and integrations to ensure cybersecurity, data protection, and compliance requirements are operationalized efficiently and sustainably.
• Champion a culture of technology‑enabled accountability, transparency, and continuous improvement across all GRC processes.
• Align GRC technology solutions with global regulations, industry frameworks, and pharmaceutical expectations to support GxP system oversight, data integrity, and patient safety.
• Evaluate the effectiveness of GRC technology programs, measuring platform performance, adoption, and control assurance to inform leadership decisions.
• Collaborate with cross‑functional technology and business teams to enhance GRC capability maturity, drive platform adoption, and strengthen organizational resilience through effective enablement.

Benefits

• 401(k) plan with Pfizer Matching Contributions
• additional Pfizer Retirement Savings Contribution
• paid vacation
• holiday and personal days
• paid caregiver/parental and medical leave
• health benefits to include medical, prescription drug, dental and vision coverage
• Relocation assistance may be available based on business needs and/or eligibility.