Compliance Partner (Roche Pharmaceuticals)
Taipei Songren Rd
Roche
As a pioneer in healthcare, we have been committed to improving lives since the company was founded in 1896 in Basel, Switzerland. Today, Roche creates innovative medicines and diagnostic tests that help millions of patients globally.Roche fosters diversity, equity and inclusion, representing the communities we serve. When dealing with healthcare on a global scale, diversity is an essential ingredient to success. We believe that inclusion is key to understanding people’s varied healthcare needs. Together, we embrace individuality and share a passion for exceptional care. Join Roche, where every voice matters.
The Position
Roche Pharmaceuticals
Responsibilities and Accountabilities:
Compliance & Legal:
Build a thorough business understanding and maintain high-level responsibilities of all aspects of Compliance & Legal risks including but not limited to: Risk Management and Business Continuity, Roche Group Code of Conduct, Supplier Code of Conduct, Roche Behavior in Business, DIA Symphony, Roche guidelines on Safety, Health & Environment (SHE), Quality and Regulatory, Business Continuity Management, Data Privacy, Cyber Security, Distributor Management, Interactions with HCPs & HCOs, Grants, Sponsorship and Donation, Contract Management, and other Paralegal responsibilities etc.
Develop an internal and external compliance & legal network and closely monitor trends and changes of all relevant global, regional and local legal, industry and regulatory requirements and standards
Ensure compliance in all aspects in line with global guidelines as well as local laws and regulations through adequate procedures and process controls.
Act as a business partner to all Functions to support their projects/activities from a Compliance & Legal perspective.
Provide guidance to Business Functions and answer their questions regarding the defined compliance standards.
Take a key role in promoting the high standards of integrity and actively foster a mindset/culture of compliance to both within the organization and within key external business partners (e.g. Distributors, Suppliers, and Customers etc) by leading and driving local implementation of initiatives and training programs cascaded by Global/Regional Compliance to continuously develop, deliver and maintain communication to improve local organization’s compliance awareness and knowledge.
Develop local training materials and provide compliance training to all functions.
Ensures that all employees and external business partners are trained appropriately and training records are maintained.
Maintains oversight of the implementation and maintenance of training programs and compliance initiatives and monitoring programs covering people, processes and platforms, and provides regular updates to the Local Compliance Committee and Management while providing guidance and advisory on compliance & legal risk matters to the organization.
Lead local investigations and ensure adequate handling and documentation of non-compliance (e.g. BEIR reporting) and support the People & Culture team to manage and deal with labor issues related to business ethics, conflict interest and integrity.
Advise all functions in legal matters and liaise with external legal firms and Regional Legal team where needed to minimize the legal risk exposure. In particular, handle all legal matters such as agreements with third parties and ensure that official and contractual documents are in line with relevant laws and regulations.
Monitoring, Audit, and Risk Management:
Operate as an independent function to give assurance to senior management that business activities are executed within an adequate control framework and under consideration of the associated risks.
Ensure adequate procedures to timely identify gaps within local policies, processes, procedures and systems and drive initiatives to close these gaps.
Ensure adequate business process controls and risk management.
Timely follow up and updates on monitoring findings and remedial plan & actions.
Drive actions to close gaps in local policies and procedures.
Take ownership of internal/local policies, procedures, SOPs and compliance (e.g. HCP/HCO etc) database to ensure compliance with global/regional/local standards/guidelines/laws and regulations and adequate controls are in place.
Be the lead for audits (including but not limited to Group Corporate Audit, External Business Partner due diligence and audit, internal audits, etc), as well as periodic (at least once a year) comprehensive compliance & legal risk assessment on all business activities so as to identify potential areas/gaps of compliance vulnerability and risk.
Define a Compliance & Risk Monitoring Program and ensure key corrective action plans are established, followed up, monitored and tracked with effective and efficient processes and tools, in line with global/regional mandates for these identified areas/gaps to mitigate future risks and ensure adequacy for timely implementation.
Additionally perform ad-hoc audits where deemed necessary during the year and continuously monitor the effectiveness of internal controls.
Other ad-hoc compliance and legal tasks required by Line Management, including but not limited to:
Leading functional teams or (parts of) projects with moderate resource requirements, risk, and/or complexity to solve complex problems; using sophisticated analytical thoughts to exercise judgment and identify innovative solutions and to bring about impact to the organization
Examples of Projects may include Compliance Transformation for Agile organization, establishing Compliance ownership culture, driving implementation of Personal Data Privacy (PDPA) Policy and Processes, collaborate with Digital Engagement team and Squads to initiate and implement Digital tools and channels e.g. HCP Portal, Website, Line OA, Patient and HCP Platform, Collaborate with Foundation Medicine team to build up personalization healthcare environment via NGS, co-create projects with Squads/CoEs and partner with diverse stakeholders for patient outcomes etc.
Qualifications/Education:
• Bachelor’s degree with at least 4 years of relevant experience and foundation in a Legal, Compliance, Audit or Risk Management related function in reputational law firm orPharmaceutical industry.
Skills & Competencies:
Able to influence your own development, pursue your interests across functions and geographies, and understand that a job title is not the final definition of who you are, but a starting point.
Confident, self-motivated and resourceful individual capable of seeing the bigger picture without losing sight of the details.
Purpose driven and pragmatic, and able to possess high ethical standards with the ability to work under pressure, resolve conflicts and adapt to change.
Possess strong team orientation and passion to work with people across different cultures had demonstrated the ability to develop and maintain a network across multiple levels within the organization and to influence stakeholders and drive changes effectively without direct authority.
Excellent communication skills (Fluency in written and spoken English & Traditional Mandarin) and have the ability to convey messages clearly and with the intended impact.
Who we are
At Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we’ve become one of the world’s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Audits Compliance Monitoring Privacy Risk assessment Risk management
Perks/benefits: Career development Equity
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs