Security Application Controls Director

Use Your Power for Purpose

At Pfizer, we believe that every role contributes to our mission of improving patients' lives. You will play a pivotal role in ensuring the financial integrity and operational efficiency of our global business. Your work will directly impact our ability to deliver life-saving medicines to patients around the world, making a tangible difference in their lives.

Pfizer's Global Business Services organization delivers best-in-class business, accounting, finance and compliance operations globally for the Pfizer enterprise. This organization is a high performing team comprised of more than 1600 colleagues primarily located in 6 centers around the world. The industry-leading value proposition is to centralize, standardize and optimize complex processes and in delivering a quality service at a reasonable cost with a compliance mindset.

The Global Security & Application Control Services Director will drive security and user access controls and strategies across Enterprise-wide Applications. They will also own the design and oversight of application controls. They will partner with Corporate Audit, Finance, Global Business Services and Digital regarding user access provisioning, sensitive access, segregation of duties risks and controls, and emergency access management. The position is responsible for collaborating with all organizational functions to ensure all user access security risks are identified and controlled. This position will be part of a global governance team supporting a diverse user base across multiple business processes and regions.

ROLE RESPONSIBILITIES

• Drive strategy and governance for Enterprise Application Security Control areas including Segregation of Duties, Emergency Access, Critical Access, Sensitive Access and User Access Provisioning
• Drive strategy and governance for Enterprise Application Controls
• Work with Digital Solution Leads and GBS Global Process Owners to design new application and security controls for Finance Enterprise Applications
• Application Owner for GRC Access Control Module
• Lead Organization in following activities:
• Review and approve all new application and security controls in GRC Process Control Tool
• Work with Digital, SAP Security, Digital RM&C, GBS RM&C, and Corporate Audit to ensure a coordinated approach to identification, design and implementation of new application and security controls
• Coordinate with Digital teams to drive security projects including security role changes, SOD rule set changes, security controls, and programming changes.
• Coordinate with Global Process Owners to drive optimized security controls including security role restrictions, SOD Rule Set definitions, and privacy requirements.
• Ensure application and security controls are in compliance with Pfizer policies and procedures as related to normal business use.
• Support internal and external audits and collaborate with auditors
• Provide technical expertise and set strategy for the GRC Access Control and Process Control modules Relationship manager for Industry Special Interest Group for SAP GRC tool working with key contacts at external companies to influence Product Strategy with SAP Vendor
• Manage work for the operational team by assigning work, managing task list, building business cases, find funding, develop & review metrics, and working with Solutions team to determine scope.
• Provide routine reporting and risk analysis to GBS leadership
• Drive strategy and efficiencies within team, including designing and developing resource plans for leads and staff members to maximize risk mitigation and complete required monitoring activities
• Drive simplification and standardization of processes and controls; with emphasis on adoption of global processes where possible
• Provide expertise and guidance to business process owners in the development, execution, and documentation of remedial actions for any deficiencies in ICOFR/ SOX design, operating effectiveness, or process enhancements, and Corporate Audits; drive and consider global standardization for changes resulting from deficiencies
• Lead talent development and colleague engagement for RM&C colleagues
• Support Pfizer Blueprint and GBS Strategy, Changing Lives, Together; Global Reward and Recognition programs; Driving operational excellence through Pfizer Purpose, Values and Behaviors

OTHER JOB SKILLS

• Experience influencing and executing complex solutions involving multiple groups and countries
• Experience in developing and executing training at all levels of the organization
• Experience leading high performing teams with ability to work in a fast-paced and demanding environment
• Excellent analytical skills with demonstrated ability in risk identification, measurement and assessment, risk monitoring, reporting and escalation
• Strong organization and planning skills
• Ability to communicate well within all levels of Pfizer
• Ability to identify business issues/ opportunities and to frame business questions
• Savvy with industry and Pfizer financial systems and financial reporting processes
• Demonstrate courage, excellence, equity and joy and embody our values and behaviors

REQUIRED BASIC QUALIFICATIONS

• 10 years of working experience in a risk management/ control environment, including experience with risk identification, measurement and assessment, risk monitoring, reporting and escalation
• Bachelor’s degree in accounting or finance from an accredited college or university
• Experience with SAP or similar ERP systems
• Experience leading global teams
• Experience working in multi-national companies in a Risk Assurance Leadership, Controller, Compliance and/ or Audit role with focus on ICFR, SOX and other compliance disciplines
• Experience navigating a large, complex organization and managing stakeholders’ interests using a matrixed organization

PREFERRED QUALIFICATIONS

• CPA or other equivalent education/ certification (e.g. Chartered Accountant)
• Master’s degree
• Prior Pfizer experience
• Big 4 public accounting experience

Other Job Details

• Last day to apply: May 22, 2025
• Must be able to work in assigned Pfizer office 2-3 days per week, or as needed by the business
• This is not a remote role

Candidate demonstrates a breadth of diverse leadership experiences and capabilities including: the ability to influence and collaborate with peers, develop and coach others, oversee and guide the work of other colleagues to achieve meaningful outcomes and create business impact.

The annual base salary for this position ranges from $152,700.00 to $254,500.00. In addition, this position is eligible for participation in Pfizer’s Global Performance Plan with a bonus target of 20.0% of the base salary and eligibility to participate in our share based long term incentive program. We offer comprehensive and generous benefits and programs to help our colleagues lead healthy lives and to support each of life’s moments. Benefits offered include a 401(k) plan with Pfizer Matching Contributions and an additional Pfizer Retirement Savings Contribution, paid vacation, holiday and personal days, paid caregiver/parental and medical leave, and health benefits to include medical, prescription drug, dental and vision coverage. Learn more at Pfizer Candidate Site – U.S. Benefits | (uscandidates.mypfizerbenefits.com). Pfizer compensation structures and benefit packages are aligned based on the location of hire. The United States salary range provided applies to the Tampa, FL location only. The salary range provided does not apply to any other United States location or locations outside of the United States.

Relocation assistance may be available based on business needs and/or eligibility.

Sunshine Act

Pfizer reports payments and other transfers of value to health care providers as required by federal and state transparency laws and implementing regulations. These laws and regulations require Pfizer to provide government agencies with information such as a health care provider’s name, address and the type of payments or other value received, generally for public disclosure. Subject to further legal review and statutory or regulatory clarification, which Pfizer intends to pursue, reimbursement of recruiting expenses for licensed physicians may constitute a reportable transfer of value under the federal transparency law commonly known as the Sunshine Act. Therefore, if you are a licensed physician who incurs recruiting expenses as a result of interviewing with Pfizer that we pay or reimburse, your name, address and the amount of payments made currently will be reported to the government. If you have questions regarding this matter, please do not hesitate to contact your Talent Acquisition representative.

EEO & Employment Eligibility

Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status. Pfizer also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA. Pfizer is an E-Verify employer. This position requires permanent work authorization in the United States.

Finance & Accounting