Director, Cyber Security - Architecture & Innovation

Job Title: Director, Cyber Security - Architecture & Innovation

GCL- F

Introduction to role

It’s a dynamic and results-oriented environment to work in – but that’s why we like it. There are countless opportunities to learn and grow, whether that’s exploring new technologies in hackathons or redefining the roles and work of colleagues, forever. Shape your own path, with support all the way. Diverse minds that work cross-functionally and broadly together. Our increased focus on Digital, AI & ML, Data & Data Science along with joint ventures and collaboration with third parties are crafting new opportunities within the Cyber Security team. We are looking for an experienced cybersecurity specialist that can help us on the journey through this challenging and ever-changing cyber technology and threat landscape. Individuals who:

- Understand attackers, their motivations, and the overall threat landscape. We are potentially working against state-sponsored attacks and multi-billion-dollar organized crime syndicates.
- Understand that security is a journey and not a destination. We need to focus on continuous innovation to maintain a balanced risk position against the evolving threat landscape.
- Have deep and hands-on knowledge in various domains of cybersecurity.
- Have built cyber security solutions which include technology, process, and people.

Accountabilities

This role will lead a team of engineers and specialists that plan, execute, and sustain the full lifecycle of security solutions. This is a transformational and innovation-driven role.

In this role, you’ll operate within AstraZeneca’s Cybersecurity Products and Assurance group to deliver quality services and solutions that meet both business and IT needs. This is a technical leadership role providing guidance, definition, and design of enterprise-wide security initiatives. You’ll collaborate with Business, Solution Delivery, Engineering, and Quality and Compliance functions across a global organization spanning US, UK, Sweden, China, Japan, Poland, Mexico, India, and beyond.

- Cyber Security solutions, spanning Cloud, Hybrid and on-premise as well as third-party collaboration environments, including capability models and roadmaps across the Cyber Security function.
- Identify and design and deploy cyber security solutions for the organization.
- Help influence the future state of cyber security within assigned domains, conduct review and gap analysis.
- Create and promote security best practices such as playbooks and standards.
- Work with existing security teams to implement and enforce strategies and policies across the enterprise.
- Define and create a portfolio of secure design principles.
- Collaborate with other technical cyber functions resulting in effective security.
- Stay abreast of innovations in the cyber industry and incorporate in solutions.
- Keep abreast of industry best practices, vendor capabilities and industry frameworks to sustain a best-in-class program.
- Guide and support Architects, Engineering and Support functions to ensure that solutions are secure and align with AZ Security policies and guidelines.
- Perform security reviews, leveraging threat modeling and other techniques and influence how solutions can be improved for security in the way they are designed, used, built, and maintained.
- Hire, lead, and grow a diverse team, inclusive culture, and collaborative processes that reward behaviors in addition to delivery.
- Provide technical leadership and guidance to both your team members, peers, and other leaders in the organization.

Essential Skills/Experience

- Must have an in-depth understanding of the key cybersecurity frameworks, controls, and best practices.
- Experience and technical understanding of leading cybersecurity vendor solutions across the OSI layers.
- Must have experience in problem-solving, defining requirements, and developing solution blueprints.
- Have an excellent understanding and proven capability in Cloud, Hybrid and On-Premise architectures.
- Familiarity with common attack techniques and their remediation/defense including DoS, DDoS, Social engineering, Virus, Malware, Vulnerability exploitation, Phishing & Spear Phishing, Worms, Trojans, Rootkits, Ransomware, XSS, SQL Injection, Remote Command Execution, Session Hijacking, etc.
- Solid understanding of security protocols, cryptography, authentication, authorization and network security implementations.
- Ability to carry out evaluations, gap analysis and vendor assessments for security technologies and applications.
- Ability to design, build, test and implement cyber security solutions.
- Ability to map governance and compliance frameworks and controls to technical implementation.
- Strong Cloud architecture and multiple demonstrated ability.
- Ability to prioritize and validate the threats that really matter.
- Security roadmap and strategy development.
- Able to work across multiple teams spanning many geographic regions.
- Excellent written and oral communication skills.
- Have or are working towards a recognized Cyber Security certification.
- Experience hiring, building, and leading a technical team.

When we put unexpected teams in the same room, we unleash ambitious thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions. That's why we work, on average, a minimum of three days per week from the office. But that doesn't mean we're not flexible. We balance the expectation of being in the office while respecting individual flexibility. Join us in our unique and ambitious world.

At AstraZeneca, we architect enterprise platforms to uncover the best technology that aligns with our strategic direction. We focus on understanding business requirements to simplify our technology landscape. This allows us to scale quickly by applying the right technology to each situation. Our work connects diverse areas of the business to improve agility and functionality. We inspire change by uniting different approaches to find leading solutions that provide a platform for success. Motivated by opportunities to learn and grow, we continuously seek new insights to identify better ways of doing things.

Ready to take on this exciting challenge? Apply now!

Date Posted

Closing Date

AstraZeneca embraces diversity and equality of opportunity.  We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills.  We believe that the more inclusive we are, the better our work will be.  We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics.  We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorization and employment eligibility verification requirements.