Senior Manager, Systems Architecture and Security

Why Join Us?   Be a hero for our rare disease patients   At Ultragenyx, we fundamentally believe that taking real impactful action to care for the needs of patients and our people is always the right thing to do. To achieve this goal, our vision is to lead the future of rare disease medicine. For us, this means going where other biopharma companies won’t go – challenging the status quo and creating a new model that advances our field so more patients and caregivers can benefit from life-changing treatments. We do this by following the science, applying a novel rapid development approach, making innovative medicines at fair and reasonable prices, and creating a collaborative ecosystem to reach patients in ways that are most meaningful for them.    Our commitment and care for patients extends to our people, so culture is an essential cornerstone for Ultragenyx. We remain continuously focused on creating a supportive and inclusive environment of profound learning and growth – so employees can thrive in all areas of their lives, in and outside of work. Ultimately, we want to be an organization where we would be proud for our family, friends and children to work.   If you want to have a meaningful impact, do the best work of your career, and grow a lot, both professionally and personally, come join our team.

Position Summary:

ultrainnovative – Tackle rare and dynamic challenges

This role will be a hands-on technical leadership position, responsible for driving the design, architecture, and implementation of robust, secure, and scalable systems across our infrastructure. As a key technical leader, you will focus on enhancing system reliability, cloud infrastructure design, and security posture while driving continuous improvements in our infrastructure's performance and stability.

The ideal candidate is an experienced engineer and architect with a security-first mindset, with a deep understanding of security principals and a deep understanding of cloud infrastructure (Azure), networks (Cisco and Meraki), and Microsoft-based environments (with some Linux exposure). This role will have a dual focus - leading engineering efforts for systems architecture and ensuring security best practices are integrated at all levels of infrastructure design. 

Work Model: 

Flex: This role will typically require onsite work 2-3 days each week, or more depending on business needs. In many locations, the business will set certain days each week that Flex employees are required to be onsite.

 

Responsibilities:

• Lead the design, architecture, and deployment of enterprise infrastructure, ensuring scalability, performance, and reliability across cloud and on-prem environments.
• Serve as the primary engineering lead for improving systems architecture, modernizing infrastructure, and driving technical solutions that align with business objectives.
• Design and implement highly available and resilient infrastructure solutions in Azure cloud, with a focus on performance, scalability, and security.
• Enhance and optimize network architecture built on Cisco and Meraki platforms, ensuring efficient and secure connectivity across the organization.
• Provide technical leadership in the design and implementation of Active Directory, Microsoft 365, and related Microsoft technologies.
• Collaborate with stakeholders to develop and implement systems architecture roadmaps to drive infrastructure modernization and reliability.
• Design and implement security controls into the infrastructure, ensuring adherence to best practices for cloud and network security.
• Lead efforts to enhance cloud and infrastructure security posture, including hardening configurations, reducing attack surfaces, and enabling zero-trust principles.
• Collaborate with the security operations team to ensure logging, monitoring, and incident response capabilities are effectively integrated into infrastructure components.
• Provide leadership and work with Security Operations Center (SOC) and external partners on incident response and emerging threats.
• Act as a hands-on technical leader, directly implementing solutions, deploying infrastructure changes, and optimizing system performance.
• Deploy, manage, and optimize security tools, including DLP, CASB, SIEM, Endpoint EDR, ZTNA, SASE, WAF, and more.
• Troubleshoot and resolve complex security, infrastructure and network issues, ensuring a secure environment with high uptime and minimal operational disruption.
• Evaluate and implement modern tools and platforms to improve infrastructure management, including cloud-native solutions and hybrid cloud architectures.

Requirements:

• 6+ years of experience in systems architecture, infrastructure engineering, and security in a mid-to-large enterprise environment.
• Strong hands-on experience designing and deploying infrastructure solutions in Azure cloud services (IaaS/PaaS/SaaS).
• Strong knowledge of network infrastructure including firewall management, network segmentation, and remote access (VPN).
• Familiarity with Automation tools/Infrastructure as Code
• Deep understanding of cryptography, and security solutions.
• Extensive experience work6ng with Microsoft-based environments, including Windows Server, Active Directory, Microsoft 365, and EntraID.
• Familiarity with Mac and Linux environments.
• Proven experience implementing security solutions in cloud and network infrastructure, including zero trust architecture, network segmentation, encryption, and endpoint security.
• Strong understanding of cybersecurity frameworks such as NIST, ISO27001, CIS Controls, etc.
• Certifications such as Azure Solutions Architect Expert, CISSP, CCSP, or CCNP are highly preferred.
• Proven ability to lead technical initiatives while remaining hands-on with infrastructure and security projects.
• Ability to translate business needs into technical requirements and deliver scalable and secure solutions.
• Excellent problem-solving skills with the ability to resolve complex technical challenges.
• Strong project management skills and the ability to prioritize competing demands. #LI-CS1 #LI-Hybrid

The typical annual salary range for this full-time position is listed below. This range reflects the characteristics of the job, such as required skills and qualifications and is based on the office location noted in this job posting. The range may also be adjusted based on applicant's geographic location.

This position is eligible for annual bonus and equity incentives. Actual individual pay is determined by demonstrated experience and internal equity alignment.

Pay Range$184,700—$228,200 USD  Full Time employees across the globe enjoy a range of benefits, including, but not limited to:   ·         Generous vacation time and public holidays observed by the company ·         Volunteer days ·         Long term incentive and Employee stock purchase plans or equivalent offerings ·         Employee wellbeing benefits ·         Fitness reimbursement ·         Tuition sponsoring ·         Professional development plans   * Benefits vary by region and country

Ultragenyx Pharmaceutical is an equal opportunity employer and prohibits unlawful discrimination based on race, color, religion, gender, sexual orientation, gender identity/expression, national origin/ancestry, age, disability, marital and veteran status, and any other status or classification protected by applicable federal, state, and/or local laws. Reasonable accommodation will be provided for all protected statuses or classifications protected by applicable law, including individuals with disabilities, disabled veterans, for pregnancy, childbirth, and related medical conditions, and based on sincerely held religious beliefs. Applicants can request an accommodation prior to accepting a job offer. If you require reasonable accommodation in completing this application, or in any part of the recruitment process, you may contact Talent Acquisition by emailing us at talentacquisition@ultragenyx.com.

See our CCPA Employee and Applicant Privacy Notice. See our Privacy Policy.

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Note to External Recruiters: All candidate activity and open positions are managed strictly through our Human Resources Department. Our Human Resources Department kindly requests that recruiters not contact employees/hiring managers directly in an attempt to solicit business and present candidates. Please note that failure to comply with this request will be a factor in determining a professional relationship with our organization. Submission of unsolicited resumes prior to an agreement set in place between the Human Resources Department and the recruiting agency will not create any implied obligation.  Inquiries on developing a recruiting relationship with us, may be directed to: talentacquisition@ultragenyx.com.