Share this Job
Apply now »

We are experiencing a technical issue with the Careers Website. At the moment, applications are not possible. We are working on resolving the issue as soon as possible. Thank you for your patience.

Information Security Manager


A career at our company is an ongoing journey of discovery: our 57,000 people are shaping how the world lives, works and plays through next generation advancements in healthcare, life science and electronics. For more than 350 years and across the world we have passionately pursued our curiosity to find novel and vibrant ways of enhancing the lives of others.


Your role:


China Information Security Manager
Come be a part of our global IT Security & Risk team and be responsible for managing the Information Security program for China. You will serve alongside a small team focused on implementing the Information Security program within China. As a part of the team you will be responsible for managing and ensuring compliance to the Global ISMS for all legal entities within China.

Who you are:
(1) Maintain the information security management system (ISMS) in China according to legal and regulatory requirements as well as in alignment with the Global ISMS requirements.
(2) Ensure compliance to MLPS and other relevant legal and regulatory requirements.
(3) Ownership of the information security risk management process in China based on Global IT Security Framework.
(4) Contact for authorities in regard to assessments/audits, incl. MLPS assessments/audits.
(5) Representation of the China ISMS to authorities.
(6) Work directly with China business units to facilitate informationsecurity and to assist in providing compliant systems/services.
(7) Partner with Merck China business stakeholders to raise awareness of information security and assist them in identifying critical assets.
(8) Interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services.


(i.) Minimum of ten years of experience in a combination of roles supporting information security, risk management, and IT functions.
(ii.) Professional information security management certification such as CISSP, CISM or other relevant industry credentials.
(iii.) Minimum of a 10-year degree in computer science, business administration or a similar field.
(iv.) Profound knowledge of applicable legal and regulatory requirements (especially MLPS).
(v.) Profound knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
(vi.) Excellent written and verbal communication skills in Chinese and high level of personal integrity.
(vii.) Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
(viii.) Very good English skills, both verbal and written.


HR: 95755

Functional Area: Information Technology


What we offer:  With us, there are always opportunities to break new ground. We empower you to fulfil your ambitions, and our diverse businesses offer various career moves to seek new horizons. We trust you with responsibility early on and support you to draw your own career map that is responsive to your aspirations and priorities in life. Join us and bring your curiosity to life!


Curious? Apply and find more information at https://jobs.vibrantm.com


Job Requisition ID:  219672
Location:  Shanghai
Career Level:  E - Professional (10+ years)
Working time model:  full-time

Careers during Covid-19
Thank you for visiting our careers website, we are always looking for curious minds to join our teams. We understand how much the world is being impacted by the Covid-19 crisis and we want to assure you that your safety is very important to us. To ensure that everyone’s health is protected, instead of a standard face-to-face interview, it is likely that you will be offered alternative digital interview options.

US Disclosure
The Company is an Equal Employment Opportunity employer. No employee or applicant for employment will be discriminated against on the basis of race, color, religion, age, sex, sexual orientation, national origin, ancestry, disability, military or veteran status, genetic information, gender identity, transgender status, marital status, or any other classification protected by applicable federal, state, or local law.  This policy of Equal Employment Opportunity applies to all policies and programs relating to recruitment and hiring, promotion, compensation, benefits, discipline, termination, and all other terms and conditions of employment. Any applicant or employee who believes they have been discriminated against by the Company or anyone acting on behalf of the Company must report any concerns to their Human Resources Business Partner, Legal, or Compliance immediately. The Company will not retaliate against any individual because they made a good faith report of discrimination.

North America Disclosure
The Company is committed to accessibility in its workplaces, including during the job application process. Applicants who may require accommodation during the application process should speak with our HR Services team at 855 444 5678 from 8:00am to 5:30pm ET Monday through Friday.

Job Segment: Information Security, Information Technology, IT Manager, Manager, Computer Science, Technology, Management

Apply now »