Sr Manager, IT Security

Why Endo?

We want the best and brightest people at Endo to help us achieve our mission to develop and deliver life-enhancing products through focused execution. Our nearly 3,000 global team members understand the important role we play in delivering healthcare and are dedicated to supporting each other as we work to bring the best treatments forward. Our shared values of Integrity & Quality, Innovation, Drive, Collaboration and Empathy guide our team and enable us to deliver upon our vision of helping everyone we serve live their best life.

Job Description Summary

Why Endo?

We want the best and brightest people at Endo to help us achieve our mission to develop and deliver life-enhancing products through focused execution. Our nearly 3,000 global team members understand the important role we play in delivering healthcare and are dedicated to supporting each other as we work to bring the best treatments forward. Our shared values of Integrity & Quality, Innovation, Drive, Collaboration and Empathy guide our team and enable us to deliver upon our vision of helping everyone we serve live their best life.

At Endo, we are building a diverse, equitable and inclusive workplace, and we are looking for talented individuals to join our team.


As a member of Endo’s IT department and under the supervision of the CISO, the Senior Manager, IT Security Operations is responsible for security tools monitoring and maintaining Endo’s suite of security solutions (applications and services) in alignment with the IT’s strategy and roadmap. They lead the operational support of IT security solutions, controls, policies, and procedures that protect Company data and assets. This includes but is not limited to reviewing existing and identifying new and/or changes to existing controls, policies, and business processes. Recommends risk-mitigating solutions and advises management of notable threats, risks, and incidents. They lead Endo’s IT Security awareness program, which is a suite of continuous activities that promote safe computing practices for our team members. They provide security advisory services for existing and proposed solutions with a flexible and dynamic approach to risk mitigation and problem-solving. The expectation is that the individual successfully coordinates multiple tasks and priorities continuously.

Job Description

• Handle day-to-day implementation, monitoring, and operational support of security solution hardware, software, managed solutions, and service provider relationships.
• Lead operational support of IT security solutions, tools, and systems.
• Engage in and lead information security projects.
• Implement solutions that comply with relevant regulations, such as HIPAA, Sarbanes-Oxley Act (SOX), and privacy laws, including GDPR.
• Perform application and data security reviews of new and existing department, site, and enterprise applications.
• Advise application owners, in accordance with policy and best practices, on secure application architecture, data handling, and business processes.
• Collaborate with Infrastructure and IT Security team members to facilitate vulnerability mitigation and corrective actions.
• Lead hands-on investigation and response to IT security events.
• Perform regular reviews and audits of computer systems, networks, service providers, and application security.
• Support organizational and departmental planning around threat assessment, risk mitigation, and implementation of the IT Security roadmap.
• Develop and execute initiatives that support the Endo IT Security awareness program.
• Provide metrics for operational and management dashboards, utilizing data from IT security processes and tools, as well as benchmark data from authorized third-party sources.
• Measure and report on the effectiveness of cybersecurity policies, procedures, and controls to ensure alignment with the cyber strategy and strategic cyber goals, focusing on operational performance and quality outcomes.  
• Lead and/or participate in scheduled Security activities, i.e., Tabletop exercises, Security Framework assessments, etc.
• Create, review, and lead responses to IT security reports, audits, notifications, and alerts.
• Maintain a broad knowledge of current and emerging state-of-the-art computer/network systems, technologies, architectures, and products.

• Bachelor’s degree or advanced degree preferred; professional security management certification is required, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or other similar credentials.
• Minimum of 5 years experience in an information security management role preferred, including 5-7 years of information security experience as an individual contributor.
• Experience leading, motivating, and developing a team of IT professionals.
• Experience with SOC models and operations
• Experience with vendor management, including but not limited to vendor contract negotiations, management of services, and directing/maximizing the use of 3rd party resources.
• Experience in ITIL, including change management principles and practices.
• Experience with GAP assessments, penetration testing and techniques, and patch management.
• Experience with modern security tools in the following areas:
  •        Security Information and Event Management (SIEM)
  •        Managed Detection and Response (MDR)
  •        External Attack Surface Management (EASM) Tools
  •        Penetration Testing Tools
  •        Network Defense Tools
  •        Vulnerability Scanning Tools
  •        Encryption Tools
  •        Network Security Monitoring Tools
  •         Intrusion Detection Systems (IDS)
  •         Cloud Security Tools

Pharmaceutical industry experience strongly desired.

Commitment to Diversity, Equity, and Inclusion:

At Endo, our diversity unites and empowers us as One Team, and we are committed to cultivating, and valuing, each person’s unique perspective. We actively promote a culture of inclusion that draws strength from our broad spectrums of diversity, including race, ethnicity, religion, gender identity or expression, national origin, color, sexual orientation, disability status, age, and all our other unique characteristics, qualifications, demonstrated skills, achievements, and contributions, backgrounds, experiences, cultures, styles, and talents.

EEO Statement:

At Endo we firmly believe in the principles of equal employment opportunity and strive to create an atmosphere where all employees, regardless of their race, color, creed, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability (including pregnancy), age, or military or veteran status, feel valued, respected, and empowered. Our commitment to EEO extends to every aspect of employment, including recruitment, hiring, training, promotions, compensation, benefits, transfers, terminations, and all other employment practices. We are dedicated to ensuring that all employment decisions are based on qualifications, skills, and merit.

EEO Statement:

At Endo, we firmly believe in the principles of equal employment opportunity and strive to create an atmosphere where all employees, regardless of their race, color, creed, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability (including pregnancy), age, or military or veteran status, feel valued, respected, and empowered. Our commitment to EEO extends to every aspect of employment, including recruitment, hiring, training, promotions, compensation, benefits, transfers, terminations, and all other employment practices. We are dedicated to ensuring that all employment decisions are based on qualifications, skills, and merit.