The candidate should ideally reside in Massachusetts; Washington DC or King of Prussia, PA
PURPOSE AND SCOPE:
The Resiliency Lead is a senior security executive responsible for designing, implementing, and sustaining a globally integrated resiliency framework encompassing business continuity management (BCM), corporate crisis management, and incident and emergency response across a complex, regulated, multinational healthcare enterprise.
This role ensures the organization can anticipate, withstand, respond to, and recover from disruptions while safeguarding patients, employees, operations, and brand reputation. The position aligns resiliency capabilities with enterprise risk management, regulatory obligations, and strategic business objectives, leveraging globally recognized standards such as ISO 22301 (Business Continuity Management), ISO 31000 (Risk Management), and ISO 22320 (Emergency Management).
The incumbent in this role will act as the key business partner in advising and supporting the businesses in Business Continuity management and supporting all businesses and functions in developing and implementing risk-based Business Impact Assessments (BIA), Business Continuity Plans (BCP), BCM metrics, awareness programs, supervising/conducting drills/exercises and delivering training including providing standard templates and training materials.
This role is also responsible for developing the FME Pandemic Response Plan and collaborating closely with key stakeholders to ensure consistency between resiliency, business continuity, ITS disaster response and recovery, insurance.
This position requires strong cross-functional collaboration with various internal and external stakeholders.
The role must demonstrate sound judgment, integrity, and an initiative-taking approach to identifying and mitigating security risks while aligning with FME’s strategic business objectives.
It requires a forward-looking leader with the ability to assess and mitigate risks, ensure regulatory compliance, build strong external partnerships, and leverage intelligence and technology to drive an industry leading resiliency program.
PRINCIPAL DUTIES AND RESPONSIBILITIES:
Enterprise Resiliency Strategy & Governance
Implement a comprehensive enterprise resiliency strategy encompassing business continuity, crisis management, and emergency response, aligned with FME’s business strategy, enterprise risk appetite, and international standards.
Business Continuity Management (BCM) Leadership
Design, implement, and govern a global Business Continuity Management System (BCMS), ensuring consistent, risk‑based application across functions, regions, and critical suppliers in alignment with international frameworks.
Business Impact Analysis & Continuity Assurance
Implement and drive mature a risk‑based Business Impact Analysis program that defines recovery objectives, identifies critical dependencies, and directly informs Business Continuity Plans, assurance activities, executive reporting, and investment priorities.
Corporate Crisis Management & Executive Response
Oversee the corporate crisis management framework and serve as a senior leader during enterprise‑level crises, providing executive briefings and ensuring coordinated response across security, legal, HR, IT, communications, compliance, and clinical leadership.
Incident, Emergency & Pandemic Preparedness
Direct global incident, emergency, and pandemic preparedness planning, embedding response standards, playbooks, and workforce resilience strategies to ensure readiness for prolonged and complex disruption scenarios.
Supply Chain Resilience & Risk Integration
Integrate supply chain resilience into enterprise continuity planning by identifying critical supplier dependencies, addressing single‑source and geographic risks, and ensuring disruption scenarios are evaluated and reported at the executive level.
Leadership, Readiness & Continuous Improvement
Build and lead a high‑performing global resiliency team while driving training, exercises, regulatory compliance, performance measurement, and continuous improvement to embed a sustainable culture of preparedness across FME.
Enterprise Resiliency Strategy & Governance
Develop and execute a comprehensive enterprise resiliency strategy covering business continuity, crisis management, and emergency response that is aligned with FME’s business strategy, key priorities, and enterprise risk appetite.
Establish governance structures, policies, standards, and operating models that align with ISO and other applicable international best‑practice frameworks while ensuring scalability across regions and business units.
Serve as an expert for organizational resiliency, providing strategic guidance and decision support to the VP, Corporate Security Center of Excellence and other FME leadership.
Business Continuity Management (BCM)
Design, implement, and maintain a global Business Continuity Management System (BCMS) in alignment with international standards, ensuring consistent application across functions, regions, and critical suppliers.
Oversee business impact analysis (BIA) and risk assessments to define recovery time and recovery point objectives for critical healthcare operations and corporate functions.
Leads the design and governance of a risk‑based Business Impact Analysis program aligned with international standards and industry frameworks.
Ensures BIAs consistently identify critical processes, dependencies, and recovery objectives, and that outputs directly inform Business Continuity Plans, assurance activities, and executive reporting.
Supports periodic BIA reviews to reflect evolving risk profiles and business priorities.
Ensure continuity plans are evaluated, validated, and continuously improved through exercises, audits, and lessons learned.
Corporate Crisis Management
Oversee the design of a corporate crisis management framework, including governance, escalation protocols, executive decision‑making structures, and communications coordination.
Serve on the crisis management leadership team during enterprise‑level crises, ensuring rapid coordination across security, legal, communications, HR, IT, compliance, and clinical leadership.
Provide executive‑level briefings before, during, and after crises, translating complex risk information into clear, actionable guidance.
Incident & Emergency Response
Oversee global incident and emergency response planning, ensuring readiness for natural disasters, public health emergencies, geopolitical incidents, supply chain disruptions, and other impactful events.
Define response standards, playbooks, and command structures and leading incident management practices.
Ensure incident data, reporting, and post‑incident reviews drive corrective actions and long‑term resilience improvements.
Pandemic Planning & Workforce Resilience
Owns the development and integration of pandemic and widespread health emergency preparedness into enterprise continuity and crisis management frameworks.
Ensure plans address workforce disruption, critical skill dependencies, remote operations, and regional regulatory requirements.
Embeds pandemic scenarios into BIAs, exercises, and training to sustain operational readiness during prolonged health crises.
Supply Chain Resilience
Integrates supply chain resilience into BCM by identifying and assessing critical supplier and logistics dependencies through BIAs and risk assessments.
Partners with Supply Chain, Procurement, and Operations to embed continuity expectations for key third parties and address single‑source and geographic concentration risks.
Ensure supply chain disruption scenarios are evaluated through exercises and reflected in executive reporting and improvement plans.
Standards, Compliance & Risk Integration
Ensure resiliency programs comply with applicable healthcare regulations, privacy requirements, labor laws, and regional regulatory expectations.
Integrate resiliency planning with enterprise risk management, cyber resilience, supply chain risk management, and corporate security intelligence activities.
Benchmark program maturity against industry peers, regulatory expectations, and evolving global standards.
Training, Exercises & Organizational Readiness
Oversee the development and delivery of crisis management, continuity, and emergency response training for executives, managers, and response teams.
Design and lead tabletop exercises, simulations, and full‑scale drills to evaluate decision‑making, coordination, and recovery capabilities.
Foster a culture of preparedness and resilience across the enterprise.
Leadership, Stakeholder Engagement & Continuous Improvement
Build and lead a high‑performing global resiliency team, setting clear expectations, developing talent, and modeling enterprise leadership values.
Partner closely with business leaders, regional security heads, IT, clinical operations, compliance, and external partners to ensure cohesive resiliency outcomes.
Track program performance through KPIs, metrics, and reporting, driving continuous improvement and executive transparency.
PHYSICAL DEMANDS AND WORKING CONDITIONS
The physical demands and work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
This position requires approximately 10% travel.
SUPERVISION:
None
EDUCATION AND REQUIRED CREDENTIALS:
Bachelor’s degree in Intelligence Studies, Security Management, Behavioral Science, or related field (master’s preferred); possess an active/in-scope security clearance.
Preferred Certifications
Certified Threat Manager (CTM)
Certified Protection Professional (CPP)
Insider Threat Program Manager (ITPM)
Intelligence Community or Law Enforcement credentials
EXPERIENCE AND SKILLS:
Minimum of 15 years of experience in security management roles, with demonstrated expertise across a broad range of security and risk management domains.
Proven track-record in compliance programs, risk management, and incident response.
Experience in systems management and leading people
Experience managing third-party vendors and cross-functional teams.\
Deep understanding of threat actor methodologies, behavioral threat indicators, and intelligence tradecraft.
Strong analytical, investigative, and communication skills.
Experience with insider threat platforms, SIEM tools, and behavioral analytics.
Ability to operate in high-pressure environments and manage sensitive, confidential information with discretion.
Ability to work in a matrixed, resource-constrained, and diverse environment.
If your location allows for pay/benefit transparency, please click the link below to request further information on this position. Pay Transparency Request Form
Benefit Overview: This position offers a comprehensive benefits package including medical, dental, and vision insurance, a 401(k) with company match, paid time off, parental leave and potential for performance-based bonuses depending on company and individual performance.
Fresenius Medical Care Boston, Massachusetts, USA Office
Boston, United States
Fresenius Medical Care Waltham, Massachusetts, USA Office
Waltham, United States
Similar Jobs
What you need to know about the Boston Tech Scene
Key Facts About Boston Tech
- Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
- Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
- Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
- Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories


