Director, Cyber Security - Architecture & Innovation

Job Description

- Understand attackers, their motivations, and the overall threat landscape. We are potentially working against state-sponsored attacks and multi-billion-dollar organized crime syndicates. - Understand that security is a journey and not a destination. We need to focus on continuous innovation to maintain a balanced risk position against the evolving threat landscape. - Have deep and hands-on knowledge in various domains of cybersecurity. - Have built cyber security solutions which include technology, process, and people. Accountabilities This role will lead a team of engineers and specialists that plan, execute, and sustain the full lifecycle of security solutions. This is a transformational and innovation-driven role. In this role, you ll operate within AstraZeneca s Cybersecurity Products and Assurance group to deliver quality services and solutions that meet both business and IT needs. This is a technical leadership role providing guidance, definition, and design of enterprise-wide security initiatives. You ll collaborate with Business, Solution Delivery, Engineering, and Quality and Compliance functions across a global organization spanning US, UK, Sweden, China, Japan, Poland, Mexico, India, and beyond. - Cyber Security solutions, spanning Cloud, Hybrid and on-premise as well as third-party collaboration environments, including capability models and roadmaps across the Cyber Security function. - Identify and design and deploy cyber security solutions for the organization. - Help influence the future state of cyber security within assigned domains, conduct review and gap analysis. - Create and promote security best practices such as playbooks and standards. - Work with existing security teams to implement and enforce strategies and policies across the enterprise. - Define and create a portfolio of secure design principles. - Collaborate with other technical cyber functions resulting in effective security. - Stay abreast of innovations in the cyber industry and incorporate in solutions. - Keep abreast of industry best practices, vendor capabilities and industry frameworks to sustain a best-in-class program. - Guide and support Architects, Engineering and Support functions to ensure that solutions are secure and align with AZ Security policies and guidelines. - Perform security reviews, leveraging threat modeling and other techniques and influence how solutions can be improved for security in the way they are designed, used, built, and maintained. - Hire, lead, and grow a diverse team, inclusive culture, and collaborative processes that reward behaviors in addition to delivery. - Provide technical leadership and guidance to both your team members, peers, and other leaders in the organization. Essential Skills/Experience - Must have an in-depth understanding of the key cybersecurity frameworks, controls, and best practices. - Experience and technical understanding of leading cybersecurity vendor solutions across the OSI layers. - Must have experience in problem-solving, defining requirements, and developing solution blueprints. - Have an excellent understanding and proven capability in Cloud, Hybrid and On-Premise architectures. - Familiarity with common attack techniques and their remediation/defense including DoS, DDoS, Social engineering, Virus, Malware, Vulnerability exploitation, Phishing & Spear Phishing, Worms, Trojans, Rootkits, Ransomware, XSS, SQL Injection, Remote Command Execution, Session Hijacking, etc. - Solid understanding of security protocols, cryptography, authentication, authorization and network security implementations. - Ability to carry out evaluations, gap analysis and vendor assessments for security technologies and applications. - Ability to design, build, test and implement cyber security solutions. - Ability to map governance and compliance frameworks and controls to technical implementation. - Strong Cloud architecture and multiple demonstrated ability. - Ability to prioritize and validate the threats that really matter. - Security roadmap and strategy development. - Able to work across multiple teams spanning many geographic regions. - Excellent written and oral communication skills. - Have or are working towards a recognized Cyber Security certification. - Experience hiring, building, and leading a technical team.