Head of ethics and compliance job description

Square's Product Compliance team oversees three main areas: advisory and strategy to enable the launches of Square products globally, strategic partnerships which include our bank partners from a Compliance standpoint, and representation of product controls and intricacies during audit and examinations. This team consists of experts in industry best practices, regulatory requirements and analysis, controls implementation and in Square's product offerings.

You will oversee a team of professionals that help lead product development alongside the Square Product and Business teams as we continue to scale. Our product leaders are customer-focused, and always make decisions with an eye towards Square's business as a whole. You will ensure that we assess compliance needs, design and implement applicable policies and overarching programs, collaborate with Product and Regulatory Counsel on the controls environment and with Product & Program Managers, build the internal infrastructure to support Square. You will also help develop our organizational growth strategy alongside other Square and Block Compliance senior leaders to innovate, evolve, and scale. You will report to Square's Global Head of Compliance.
You Will:

Oversee the vision and execution of a team of Compliance Product Leads & Managers who advise partners and create Compliance programs to help grow Square's business across all products lines and markets

Develop the Product Compliance team's strategy and vision to keep the team evolving to meet the needs of the company and support broader Compliance projects and manage the progress of team goals against roadmaps

Partner with senior leadership across the Square Business, Product, and Counsel teams to in pursuit of Square's mission, bearing in mind our obligation to the company and our shareholders

Partner with your team to understand our regulatory requirements and develop creative, risk-weighted solutions, policies, and programs

Manage global strategic partner relationships from the Compliance side, from negotiation to ongoing management including supporting audits and inquiries

Remain up-to-date on regulatory changes and landscapes, best practices and developments in the industry and ensure our implementation is both compliant and future focused

Partner with the broader Counsel team to address emerging trends, regulations and business objectives; share information about developments in Square''s product and Compliance programs to organize efficient and transparent support across the department

Advocate for Compliance's mission and manage relationships across the company to ensure that the team is well positioned from concept to execution

Marlborough, MA, United States

Discover a Technology career with real meaning. One that offers the opportunity to showcase your talents, achieve measurable success and gain immense satisfaction by enabling healthier lives everywhere, every day.

Our Information Security (IS) department pushes the limits of risks and threats across our global business. From risk analysts and security engineers, our IS team comes together in moving our organization from a reactive approach to a proactive approach, allowing our teams to do what they do best, every day!

We are currently looking for a Head of Governance, Risk, & Compliance (GRC) to join us in our mission to make our global security platform a solid differentiator in the Medical Technology industry. You will be the subject matter expert in information security risk management, frameworks, and regulations.

The Head of GRC takes on a leadership role in managing a team and focusing on areas in Risk Management, Governance, Compliance, and Stakeholder Management globally. The right candidate should have solid experience assessing organizations' overall risk landscapes and seeing things on a bigger picture, and work with senior leaders to ensure that any impacts and associated work to remain compliant is included in Product and Technology roadmaps.

_- Risk Management -_

+ Conduct security & threat risk assessments for new and existing solutions to understand the overall risk management framework at Hologic and how data security risks are mitigated.

+ Support the Chief Information Security Officer with enterprise risk management requests, ensuring compliance with regulatory requirements.

+ Implement a risk-based Third-Party Risk Management program to address third-party and supplier risks.

+ Track, remediate and report on risks and guide risk reduction through the GRC system.

+ Monitor the constantly changing cybersecurity threat environment and asses the risk that poses to the organization.

+ Assist with the design and implementation of disaster recovery and business continuity plans, procedures, audits and enhancements.

_- Governance -_

+ Draft policies and standards guided by the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF), ISO/IEC 27001 and ISO 27002, ensuring alignment across the different functions and branches while understanding various legal implications of data confidentiality and data protection.

+ Develop, assess and implement information security controls and IT general controls, and procedures required to protect the confidentiality, integrity and availability of Hologic data.

+ Work with Hologic stakeholders to ensure security policies, standards, and processes are properly aligned with business and operational risk targets.

+ Provide guidance to the Information Security and IT operation teams and ensure the implementation of controls is risk-based and in alignment with chosen frameworks.

_- Compliance -_

+ Ensure the established information security controls, standards, policies and procedures are adhered to and kept up to date.

+ Lead and define information security compliance framework and align with the Information Security & IT operations teams to ensure its implementation.

+ Review information security KRI & KPI metrics and provide recommendations on the type of actions to be taken to enhance security measures and to ensure continuous improvement of the information security frameworks

+ Provide operational direction on compliance standards, including maintenance and administration of security systems and devices.

+ Proactively manage and track information security-related risks and corresponding action plans with due dates to ensure that issues are resolved in an efficient and timely manner.

_- Stakeholder Management -_

+ Lead cross-functional teams to develop and improve policies and procedures, and design of information security frameworks.

+ Act as the key liaison and contact between Hologic stakeholders, Internal Audit, external IT auditors, and respond to audit queries, as required.

+ Align with Legal and ensure that all information security frameworks are compliant with regulatory and data confidentiality requirements.

+ Collaborate with regulators and information security committees to assess and discuss possible security risks, understanding of potential impacts and consequences, and leverage lessons learned and potential solutions on information security practices.

What do we expect?

+ Minimally 8 - 10 years of experience in an Information Security or Risk Management role

+ Hands-on experience with IT governance, and in-depth knowledge of information security & privacy standards (ISO 27001, COBIT, NIST, ITIL) & legislative/regulatory instruments (SOC 2, SOX, FIPPA, PCI, MITS, etc.).

+ Ability to effectively manage positive/productive relationships with internal and external stakeholders.

+ Ability to convey security concepts to non-technical audiences (e.g. senior and executive management, internal customers)

+ Understanding of system vulnerabilities, attack surfaces, attack vectors and tactics used in modern cyber attacks

Why Hologic?

We are committed to making Hologic the company where top talent comes to grow. For you to succeed, we want to enable you with the tools and knowledge required and so we provide comprehensive training when you join as well as continued development and training throughout your career.

We offer a competitive salary and annual bonus scheme, and one of our Talent Partners would be happy to discuss this in more detail with you.

If you have the right skills and experience, apply today!

\#LI-RF1 #Director

Agency and Third Party Recruiter Notice:

Agencies that submit a resume to Hologic must have a current executed Hologic Agency Agreement executed by a member of the Human Resource Department. In addition Agencies may only submit candidates to positions for which they have been invited to do so by a Hologic Recruiter. All resumes must be sent to the Hologic Recruiter under these terms or they will not be considered.

Hologic, Inc. is proud to be an Equal Opportunity Employer inclusive of disability and veterans

By clicking the "Apply" button, I understand that my employment application process with Takeda will commence and that the information I provide in my application will be processed in line with Takeda's Privacy Notice and Terms of Use . I further attest that all information I submit in my employment application is true to the best of my knowledge.
**Job Description**

**About the role:**

Global Ethics & Compliance (E&C) focuses on what we need by:

+ Ensuring ethical behavior plays a fundamental role in risk mitigation

+ Being a leader in risk identification and mitigation

+ Building a modern function supporting achievement of Takeda's Vision

E&C will respond rapidly to changing environment and our needs, it is close to the business, and encourages ethical behavior following Takeda's values. By working in an agile manner E&C ensures the balance between stable structures, governance, processes and systems, and dynamic approaches to delivering innovative solutions to manage our risks.

E&C commits to:

+ Act as role model for Takeda's values, ethics and values-based decision-making, promoting this mindset in clients, partners and team

+ Allow the organization to make decisions that are ethical and in line with our priorities of Patient, Trust, Reputation, and Business

+ Collaborate across all E&C teams and partner with stakeholders in BU / BF to embed ethics and compliance as part of the way everyone works at Takeda

+ We are looking for a Learning and Engagement Lead to grow our Global E&C's learning & engagement initiatives by bringing corporate learning expertise and best practices to lead the design, development and execution of learner-centered, digital-first learning experiences.

+ Working with our Learning & Engagement Head and digital & data teams, you will collaborate with internal subject matter experts and leaders to provide impactful learning solutions to the E&C community and employees across Takeda.

+ The position would ideally be located within our hub locations and is remote to start

**How you will contribute:**

+ RESPONSIBILITIES:

+ Ensure overall direction and principles for learning is aligned with the Global E&C vision and strategy, and with other relevant stakeholders (Business, HR, IT, Communications) when needed.

+ Be a subject matter expert for the E&C learning strategy and RITE framework (Role Modeling, Information Sharing, Training, and Environment).

+ Bring end-to-end research, design, delivery and refinement of innovative and creative learning and change programs (on/offline/hybrid) for lasting behavioral change that can be measured with a view to ensuring a positive employee experience

+ In partnership with the Head of Learning & Engagement, develop and manage the group-wide E&C curriculum, providing impactful learning solutions to lead the implementation of all E&C initiatives

+ Lead the needs analysis for E&C learning offerings in collaboration with E&C partners, based on an understanding of current vs. desired state and prevention vs. intervention needs from both the E&C and the employee perspective

+ Work with the relevant E&C teams to continuously understand their evolving needs, and identify opportunities to provide by learning solutions applying behavioral science and in a simple, practical way

+ Measure the impact of interventions/learning offerings with the aim to improve efficacy, effectiveness and learner experience.

+ Identify opportunities to refine existing learning experiences including translation into digital learning experiences. Scale tools and practices that are most effective

+ Focus on continuous improvement through regular solicitation of internal feedback and using data analytics techniques to gain insights from several data streams (e.g., training completion da-ta, survey response data, and case management system data)

+ CAPABILITIES:

+ Demonstrate an evolving understanding of creative learning and development techniques and practices, including learning delivery methods

+ Comfortable speaking up and being inspiring with ideas.

+ Think beyond traditional Ethics & Compliance check-the-box training and help be part of a shift towards meaningful behavior change

+ Collaborative mindset and approach being able to partner across E&C, Takeda and with external partners in designing and delivering effective learning

+ Excellent organizational and project/program management skills (engaging, stakeholder management, iterations, agile methodology and mindset)

+ Strong listening skills and the ability to translate and break down complex input into practical and simple problem statements from the user perspective and use these to create appealing and effective learning solutions

+ Educate, communicate, negotiate, and influence with all levels of stakeholders to produce learning outcomes in a global environment.

+ Strong communication skills, both verbal and written. Tailors style to suit the audience

+ Flexible and resilient: comfort with ambiguity and the ability to adapt, flex, and change directions given project and team circumstances, understanding the ever-changing world of business

+ Can work in a dynamic, global environment with limited supervision

+ Enthusiastic learner: a curious mind with an unrelenting commitment to get to the answer, to test new approaches, learn new skills, and push others' assumptions.

+ Stay current with industry and compliance topics and trends.

+ Share knowledge with others to promote team

**Minimum Requirements/Qualifications:**

+ 8-10 years of experience in developing and implementing learning and/or change programs

+ Knowledge of the science behind learning (instructional design) and how to induce behavioral change (behavioral science) required.

+ Hands-on knowledge of leading edge learning and development techniques

+ Experience in development of training programs both online and offline (learning technologies and authoring tools)

+ Background in designing, implementing and evaluating learning programs which are scalable for a global audience

+ Experience in evaluating, managing and working with external vendors to design and deliver best-in-class solutions

+ Experience with iterative working methodologies preferred (design thinking, agile, scrum)

+ Experience in either healthcare compliance or other regulatory area preferred

+ Knowledge of/ background in behavioral science a plus

**What Takeda can offer you:**

+ Comprehensive Healthcare: Medical, Dental, and Vision

+ Financial Planning & Stability: 401(k) with company match and Annual Retirement Contribution Plan

+ Health & Wellness programs including onsite flu shots and health screenings

+ Generous time off for vacation and the option to purchase additional vacation days

+ Community Outreach Programs and company match of charitable contributions

+ Family Planning Support

+ Flexible Work Paths

+ Tuition reimbursement

**More about us:**

At Takeda, we are transforming patient care through the development of novel specialty pharmaceuticals and best in class patient support programs. Takeda is a patient-focused company that will inspire and empower you to grow through life-changing work.

Certified as a Global Top Employer, Takeda offers stimulating careers, encourages innovation, and strives for excellence in everything we do. We foster an inclusive, collaborative workplace, in which our teams are united by an unwavering commitment to deliver Better Health and a Brighter Future to people around the world.

In accordance with the CO Equal Pay Act, Colorado Applicants Are Not Permitted to Apply.

**EEO Statement**

_Takeda is proud in its commitment to creating a diverse workforce and providing equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, parental status, national origin, age, disability, citizenship status, genetic information or characteristics, marital status, status as a Vietnam era veteran, special disabled veteran, or other protected veteran in accordance with applicable federal, state and local laws, and any other characteristic protected by law._

**Locations**

Boston, MA

**Worker Type**

Employee

**Worker Sub-Type**

Regular

**Time Type**

Full time