Associate Director, Cloud Security & Integration Architect

Company Information

Legend Biotech is a global biotechnology company dedicated to treating, and one day curing, life-threatening diseases. Headquartered in Somerset, New Jersey, we are developing advanced cell therapies across a diverse array of technology platforms, including autologous and allogenic chimeric antigen receptor T-cell and natural killer (NK) cell-based immunotherapy. 

Legend Biotech entered into a global collaboration agreement with Janssen, one of the pharmaceutical companies of Johnson & Johnson, to jointly develop and commercialize ciltacabtagene autolecuel (cilta-cel) in 2017. Our strategic partnership is designed to combine the strengths and expertise of both companies to advance the promise of an immunotherapy in the treatment of multiple myeloma.

Legend Biotech is seeking an Associate Director, Cloud Security & Integration Architect as part of the IT team based in Somerset, NJ. 

Role Overview

This individual will lead cloud security and integration initiatives with system hardening and tooling initiative across the enterprise. Be able to leverage leading-edge technologies, and improve efficiency, support aggressive growth, and improve the organization’s overall security posture. Drive continuous improvement of the cloud security strategy and lead designing and facilitating cloud security specific implementations and workflows enabled by tooling, templates and cloud native services. Will collaborate with cloud platform owners to create security guardrails controls guidance and perform as a subject matter expert on cloud security with expertise and responsibilities to review and assess cloud infrastructure architectures. This person will also lead and own the Identity and access management program and establish process and procedures for Legend globally and contribute to a zero trust strategy. In this role you will develop and maintain security frameworks and architectures, technical standards and guidelines across the security domains of identity, networks infrastructure and endpoints. This role will be leading a Global team will play an advisory role for all entity. The individual will lead and own the Security and Design control and process for all applications on-premise and cloud. Evaluating security tooling, work with the ISO team to understand any gaps in the tooling/environment, assist with researching new tools the business plans to implement. In addition, will provide security architecture guidance for GxP or GmP environments to mitigate potential cyber threats and risks. The right candidate must have team oriented approach that balances security needs and user experience to provide best in class security to the organization
with subject matter expertise in enterprise security architecture governance and industry standard cybersecurity frameworks, cloud computing and cloud architecture. You will collaborate with various Business units to ensure cybersecurity controls and investments are aligned with the company business and strategic goals.

Key Responsibilities  

• Building and leading the designs and installation for Cloud Security strategy
  
• Review and approve all technical designs
  
• Contribute to the development and maintenance of Legend cybersecurity strategy
  
• Cybersecurity Solutions Architecture
  
• Documentation for secure design documents (SDDs) and POAMs
  
• Cloud Security Technology Integration
  
• Lead and own Legend’s Global Identity & Access Management (IAM)
  
• Lead User Access Management (UAM), Privilege Access Management (PAM/PIM) Services
  
• Ability to continuously audit the environment to mitigate cloud security and privilege risks
  
• Develop and maintain processes and metrics to ensure continuous improvements
  
• Lead and Design Application Security program
  
• Lead and Design Information Protection (DLP, UEBA) program
  
• Cloud policy for AWS/Azure or GCP
  
• Collaborate with cloud engineering team to deliver cloud projects and initiatives based on security standards for all development in cloud operations
  
• Work and lead efforts with compliance for Data retention and purge policies
  
• Lead the Security efforts for modern workplace
  
• Lead OT data and system Governance program and operations
  
• Ensure all infrastructure and applications being deployed or hosted in the cloud remain secure
  
• Implement and utilize internal monitoring tool and controls to gather data on any cybersecurity issues
  
• Engage with security vendors as needed to drive technology solutions
  
• Create visibility through effective metrics and reporting
  
• Provides guidance and sets standards for secure applications deployments and cloud configurations
  
• Lead Microsoft and cloud Security Architecture best practices
  
• Lead security and system documentation Non GxP and Non-GxP
  
• Lead and provide oversight with Enterprise Cyber Security in mind
  
• Hands-on security lead for Infra and non-Infra projects
  
• Must be able to think like an attacker
• Key Relationships: IT, Internal Audit, Corporate Compliance, Legal, Finance, Corporate functions

Requirements

• A minimum of a Bachelor’s Degree in a relevant discipline, advanced degree is preferred.
• A minimum 15 years in Cybersecurity strategy, architecture and operations (programs and capabilities). Relevant working experience, 10 years within pharmaceutical, biotech or cybersecurity industries.

#Li-Hybrid

#Li-BZ1

Legend Biotech is a proud equal opportunity/affirmative action employer committed to attracting, retaining, and maximizing the performance of a diverse and inclusive workforce. It is Legend’s policy to ensure equal employment opportunity without discrimination or harassment based on race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, uniformed service member or veteran status, or any other characteristic protected by law.

Legend Biotech maintains a drug-free workplace.