At Bristol Myers Squibb, we are inspired by a single vision – transforming patients’ lives through science. In oncology, hematology, immunology and cardiovascular disease – and one of the most diverse and promising pipelines in the industry – each of our passionate colleagues contribute to innovations that drive meaningful change. We bring a human touch to every treatment we pioneer. Join us and make a difference.
The Cloud Computing group is part of the Global Solutions and Infrastructure organization supporting business teams across the enterprise and provides innovative and targeted technical solutions. This position reports to the Director, FinOps Engineering and Compliance and will be responsible for ensuring organizational adherence to cost and infrastructure optimization activities as well as supporting compliance to the BMS cloud security framework. The successful candidate will partner closely with various technical functions and teams, CyberSecurity, as well as Finance and Audit as needed.
- Lead technical design and development of the cloud FinOps and compliance toolsets and integrations to related applications
- Partner with business units and solutions delivery teams, to ensure understanding of requirements to maintain digital environments in compliance with FinOps best practices and the BMS cloud security framework
- Partner with the Cybersecurity to help maintain BMS cloud security framework alignment to policies and procedures
- Periodically review the BMS cloud compliance framework for updates against industry best practices, technology changes, and coordinate all relevant updates to cloud compliance standards and toolsets
- Demonstrate ownership of training, education, and awareness of FinOps optimization best practices
- Collaborate and partner with internal stakeholders on cloud optimizations and compliance
- Internal/External Audit Liaison
- Interface with clients as a SME as it relates to cloud compliance and security
- Provide FinOps optimization subject matter expertise to support development teams (well architected framework – costs)
- Develop and utilize metrics and KPIs to assure FinOps and compliance program success and progress
- Provide day to day support for the governance, management, and coordination of activities related to the FinOps Optimization
- Identify opportunities for continuous improvement
- Knowledge of CSA Cloud Controls Matrix
- Knowledge of CSPM toolsets
- Advanced knowledge of one or more infrastructure components (e.g. cloud platform - AWS, GCP, Azure , containerization, compute, storage, and networks)
- Scripting skills, i.e., Python, Bash, Ruby, Perl, PowerShell, etc.
- Ability to present highly technical information to non-technical audiences
- Compliance focused and results driven
- Works with a high level of independence and ability to make decisions
- Good organizational, analytical, and planning skills.
- Hands-on technical practitioner
- Strong verbal and written communication skills, with the ability to work effectively across internal and external organizations
- Basic proficiency with tools and information technology systems such as Microsoft Office, OneDrive, Excel, Teams, Visio, Tableau, PowerBI, etc
- Preferred: BS level technical degree required - Computer Science or Engineering, or commensurate experience
- 2 year(s) of experience in cloud controls auditing, consulting and/or implementing with a minimum of 1 year of experience with CSPM tools
- 3 – 5 years’ experience in cloud infrastructure management and architecture design
Around the world, we are passionate about making an impact on the lives of patients with serious diseases. Empowered to apply our individual talents and diverse perspectives in an inclusive culture, our shared values of passion, innovation, urgency, accountability, inclusion and integrity bring out the highest potential of each of our colleagues.
Bristol Myers Squibb recognizes the importance of balance and flexibility in our work environment. We offer a wide variety of competitive benefits, services and programs that provide our employees with the resources to pursue their goals, both at work and in their personal lives.
Physical presence at the BMS worksite or physical presence in the field is an essential job function of this role which the Company deems critical to collaboration, innovation, productivity, employee well-being and engagement, and enhances the Company culture.
To protect the safety of our workforce, customers, patients and communities, the policy of the Company requires all employees and workers in the U.S. and Puerto Rico to be fully vaccinated against COVID-19, unless they have received an exception based on an approved request for a medical or religious reasonable accommodation. Therefore, all BMS applicants seeking a role located in the U.S. and Puerto Rico must confirm that they have already received or are willing to receive the full COVID-19 vaccination by their start date as a qualification of the role and condition of employment. This requirement is subject to state and local law restrictions and may not be applicable to employees working in certain jurisdictions such as Montana. This requirement is also subject to discussions with collective bargaining representatives in the U.S.
Our company is committed to ensuring that people with disabilities can excel through a transparent recruitment process, reasonable workplace adjustments and ongoing support in their roles. Applicants can request an approval of accommodation prior to accepting a job offer. If you require reasonable accommodation in completing this application or if you are applying to a role based in the U.S. or Puerto Rico and you believe that you are unable to receive a COVID-19 vaccine due to a medical condition or sincerely held religious belief, during or any part of the recruitment process, please direct your inquiries to . Visitto access our complete Equal Employment Opportunity statement.
BMS will consider for employment qualified applicants with arrest and conviction records, pursuant to applicable laws in your area.
Any data processed in connection with role applications will be treated in accordance with applicable data privacy policies and regulations.