Director, Security Compliance, Audit and Assurance

Thank you for your interest in working for our Company. Recruiting the right talent is crucial to our goals. On April 1, 2024, 3M Healthcare underwent a corporate spin-off leading to the creation of a new company named Solventum. We are still in the process of updating our Careers Page and applicant documents, which currently have 3M branding. Please bear with us. In the interim, our Privacy Policy here: https://www.solventum.com/en-us/home/legal/website-privacy-statement/applicant-privacy/ continues to apply to any personal information you submit, and the 3M-branded positions listed on our Careers Page are for Solventum positions. As it was with 3M, at Solventum all qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Job Description:

Director, Security Compliance, Audit and Assurance

At Solventum, we enable better, smarter, safer healthcare to improve lives. As a new company with a long legacy of creating breakthrough solutions for our customers’ toughest challenges, we pioneer game-changing innovations at the intersection of health, material and data science that change patients' lives for the better while enabling healthcare professionals to perform at their best. Because people, and their wellbeing, are at the heart of every scientific advancement we pursue.

We partner closely with the brightest minds in healthcare to ensure that every solution we create melds the latest technology with compassion and empathy. Because at Solventum, we never stop solving for you.

The Impact You’ll Make in this Role

As a Director for Security Compliance, Audit & Assurance, you will lead the overall assurance of cybersecurity and digital practices to ensure that the organization is compliant with internal policies, industry regulations, and customer requirements. Your deep experience and your steady focus will deliver a high level of excellence in operationalizing a cybersecurity audit and assurance program. This position will contribute to the overall security vision and strategy. Here, you will make an impact by:

• Leading an assurance program that provides a holistic coverage to digital practices across divisions, functions – inclusive of commercial products, Enterprise IT, manufacturing technology
• Overseeing day-to-day management and execution of the cybersecurity audit and digital compliance function across the company, building, augmenting, and integrating detection and remediation capabilities into security operations
• Interfacing with leaders of the business to assess and manage cyber risk, share the security vision, and solicit involvement in achieving higher levels of enterprise security through audit information sharing and collaboration
• Partnering with leaders across the business to perform, and help the company successfully navigate through, periodic audits/assessments to identify and control weaknesses and risks.
• Build and maintain a strong policy and standard foundation for the global organization, based on a unified (enterprise) control framework.
• Experience with cyber insurance
• Engage and partner to ensure successful and adaptive SOX compliance program. Lead the team to support testing, evidence gathering, and customer audits and requests for certifications and attestations. Proactively guide development teams, and partnering with Finance, Audit and ERM functions, to ensure appropriate controls are added to all efforts going forward.
• Being active in the information security industry; equipped with external networking relationships to maintain relevant knowledge of leading practices, tactics, strategies, and technologies

Your Skills and Expertise

To set you up for success in this role from day one, Solventum requires (at a minimum) the following qualifications:

• Bachelor’s Degree or higher (completed and verified prior to start) from an accredited institution and 12 years of experience in Information technology

OR

• High School Diploma/GED or higher from a (completed and verified prior to start) and a minimum of sixteen (16) years of experience in Information technology

In addition to the above requirements, the following are also required:

• Ten (10) years of experience building and leading global IT, digital and/or cybersecurity programs in a private, public, government or military environment.
• Five (5) years leading audit, compliance and assurance functions
• Experience writing and communicating directly with regulators and external auditors, responding appropriately to external inquiries while protecting the organization.
• Experience working with Risk, Security and/or Audit frameworks (SOX, HiTrust, SOC2, PCI, ISO 27001/2, NIST CFS / 800-53, FedRAMP, StateRAMP, EIC 62443)

Additional qualifications that could help you succeed even further in this role include:

• Master's Degree in Computer Science or Information Security from an accredited institution
• Experience in Risk Management
• CISSP strongly preferred, or equivalent experience across a broad spectrum of Information Security disciplines
• Experience integrating contractors into workforce, including sourcing, SOWs, onboarding
• Strong preference for experience in healthcare or other highly regulated industry, as well as manufacturing
• Experience conducting advisory audits that help strengthen the business processes
• Experience advising on a range of cyber risk management activities and information security industry best practices
• Work Your Way Eligible (Employee choice to work remote, on site, or hybrid)
• Travel: May include up to 10% domestic/international

Work location:

• Remote USA

Travel: May include up to 5% domestic/international]

Relocation Assistance: May be authorized

Must be legally authorized to work in country of employment without sponsorship for employment visa status (e.g., H1B status).

Supporting Your Well-being

Solventum offers many programs to help you live your best life – both physically and financially. To ensure competitive pay and benefits, Solventum regularly benchmarks with other companies that are comparable in size and scope.

Applicable to US Applicants Only:The expected compensation range for this position is $222,044 - $271,387, which includes base pay plus variable incentive pay, if eligible. This range represents a good faith estimate for this position. The specific compensation offered to a candidate may vary based on factors including, but not limited to, the candidate’s relevant knowledge, training, skills, work location, and/or experience. In addition, this position may be eligible for a range of benefits (e.g., Medical, Dental & Vision, Health Savings Accounts, Health Care & Dependent Care Flexible Spending Accounts, Disability Benefits, Life Insurance, Voluntary Benefits, Paid Absences and Retirement Benefits, etc.). Additional information is available at: https://www.solventum.com/en-us/home/our-company/careers/#Total-RewardsResponsibilities of this position include that corporate policies, procedures and security standards are complied with while performing assigned duties.

Solventum is committed to maintaining the highest standards of integrity and professionalism in our recruitment process. Applicants must remain alert to fraudulent job postings and recruitment schemes that falsely claim to represent Solventum and seek to exploit job seekers.

Please note that all email communications from Solventum regarding job opportunities with the company will be from an email with a domain of @solventum.com. Be wary of unsolicited emails or messages regarding Solventum job opportunities from emails with other email domains.

Solventum is an equal opportunity employer. Solventum will not discriminate against any applicant for employment on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status.

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Solventum Global Terms of Use and Privacy Statement

Carefully read these Terms of Use before using this website. Your access to and use of this website and application for a job at Solventum are conditioned on your acceptance and compliance with these terms.

Please access the linked document by clicking here, select the country where you are applying for employment, and review. Before submitting your application you will be asked to confirm your agreement with the
terms.