Risk Assurance Analyst

Job title: Risk Assurance Analyst

• Location: Hyderabad

About the job

At Sanofi we chase the miracles of science to improve people’s lives. We are dedicated to making a positive impact on the lives of the patients and families we serve, and we accomplish our goals through world-class research and with the compassion and commitment of our employees. As we continue to transform the practice of medicine, the next chapter of Sanofi’s Play to Win strategy will require a focus on delivering transformation and simplification of our core processes, optimizing resource allocation and deployment to fuel business growth and investment in science. To facilitate this transformation, a new Business Operations Business Unit is being established, bringing together existing business service activities, and driving further expansion of centralized services at scale into a global unit, with a focus on driving simplification, efficiency, and productivity. This new Business Unit will enable the delivery of best-in-class business support capabilities across the organization, incorporating and engaging disparate teams from across areas such as R&D, M&S, the Corporate Functions and GBUs into new global Service Delivery Towers with initial services spanning Commercial, Finance, Procurement and People & Culture.

Reporting to the Head of Procurement Risk Assurance, the Risk Assurance Analyst plays a critical role in assessing and managing risks. The incumbent supports the development and execution of strategies to ensure sustainable supplier relationships align with Sanofi's business objectives.

Main Responsibilities:

• Risk Assessment (Cybersecurity): Conduct vendor risk assessments, ensuring third-party services and products align with internal risk and security policies. Regularly review vendor performance and risk exposure, working with procurement and legal teams as necessary.

• Compliance (Cybersecurity): Collaborating with procurement teams to drive adherence and enhance controls across the E2E Procurement lifecycle. Ensure compliance with relevant industry standards and regulatory requirements (e.g., GDPR, SOX, ISO27001).

• Reporting and Data Visualization: Generate regular reports and dashboards for TPRM process and Supplier risk factors, compliance metrics, and key performance indicators for stakeholders and leadership.

• Collaboration: Work closely with Procurement, GBUs and Cybersecurity to integrate risk management practices into the supplier relationship lifecycle.

• Continuous Improvement: Identify opportunities for enhancing Cybersecurity risk management processes, implementing best practices to drive positive outcomes.

About you:

• Experience: 2 - 4 years of experience in IT risk management, IT auditing, or information security. Hands-on experience with risk management tools (e.g., CRA, Ariba, OneTrust) and frameworks (e.g., ISO 27001, GDPR) Experience in healthcare and/or life-science industry. Familiarity with procurement processes and category management principles. Global or international experience and ability to work with a diverse team.

• Soft skills & Technical skills: Strong analytical and problem-solving skills, with attention to detail. Effective communication skills to convey complex risk insights. Collaborative mindset with the ability to work effectively in a team environment. Ability to communicate complex risk concepts to non-technical stakeholders. Ability to assess and interpret security-related clauses in third-party contracts.

• Education: Bachelor’s degree in information technology, Cybersecurity, Risk Management, or a related field. Certifications such as CRISC (Certified in Risk and Information Systems Control) or CISSP (Certified Information Systems Security Professional) are highly desirable.

• Languages: Fluent in English (spoken and written)

Why Choose us?

• Bring the miracles of science to life alongside a supportive, future-focused team.

• Discover endless opportunities to grow your talent and drive your career, whether it’s through a promotion or lateral move, at home or internationally.

• Enjoy a thoughtful, well-crafted rewards package that recognizes your contribution and amplifies your impact.

• Take good care of yourself and your family, with a wide range of health and wellbeing benefits including high-quality healthcare, prevention, and wellness programs and at least 14 weeks’ gender-neutral parental leave.

Better is out there. Better medications, better outcomes, better science. But progress doesn’t happen without people – people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let’s be those people.

At Sanofi, we provide equal opportunities to all regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, ability or gender identity.

Watch our ALL IN video and check out our Diversity Equity and Inclusion actions at sanofi.com!