Ver oferta completa
DIRECTOR OF CYBER SECURITY ARCHITECTURE - EVINOVA
Descripción de la oferta de empleo
Are you ready to be part of the future of healthcare? Can you think big, be bold, and harness the power of digital and AI to tackle longstanding life sciences challenges? Then Evinova, a new health tech business part of the AstraZeneca Group might be for you ! Transform billions of patients’ lives through technology, data, and innovative ways of working.
You’re disruptive, decisive, and transformative.
Someone excited to use technology to improve patients’ health.
We’re building a new Health-tech business – Evinova, a fully-owned subsidiary of AstraZeneca Group.
Evinova delivers market-leading digital health solutions that are science-based, evidence-led, and human experience-driven.
Thoughtful risks and quick decisions come together to accelerate innovation across the life sciences sector.
Be part of a diverse team that pushes the boundaries of science by digitally empowering a deeper understanding of the patients we’re helping.
Launch pioneering digital solutions that improve the patients’ experience and deliver better health outcomes.
Together, we have the opportunity to combine deep scientific expertise with digital and artificial intelligence to serve the wider healthcare community and create new standards across the sector.
The Cyber Security Architecture Lead role presents a unique opportunity to join Evinova from the beginning and implement innovative cyber security practices that are designed by industry, for industry.
The Cyber Security Architecture Lead, reporting to the Evinova Head of Cyber Security, will be hands-on in ensuring that security requirements are adequately addressed across Evinova’s entire technology architecture (i.
., corporate infrastructure and customer-facing digital solutions).
This role will encompass various architectural domains, such as Data Protection, Network Security, Cloud Security, Identity and Access Management, and Security Operations.
In addition to developing Evinova-wide cyber architecture methodologies and future roadmaps, the Cyber Security Architecture Lead will also proactively identify and promote opportunities to optimize and simplify our cyber defenses.
Additionally, this role will closely collaborate with globally dispersed technology teams – enabling excellent opportunities for professional development across technology domains and international geographies.
Success in this role requires leading by influence, exhibiting strong emotional intelligence, and a natural disposition toward problem-solving.
The ideal candidate will think holistically and deliver on pivotal initiatives to leverage next-generation security solutions.
Key responsibilities include.
Develop and maintain the Evinova Cyber Security Architecture methodology and reference materials (e.
., designs, hardening guides, standards).
Develop and maintain a multi-year roadmap outlining key protection measures and their planned maturity/investment targets.
Determine and articulate risk-based protection schemes for relevant data, cloud environments, corporate infrastructure, and end-customer-facing digital solutions – addressing all applicable layers (e.
., data, transport, network, storage, etc.).
Ensure complete isolation of Evinova’s sensitive customer information from our partner company through physical and logical isolation, policies, and procedures.
Establish and maintain authoritative documentation articulating established security controls/technologies and system descriptions.
Evaluate proposed security architectures and designs to determine the coverage and effectiveness of planned cyber risk reduction measures.
Perform periodic reviews over critical components to identify gaps in the architecture and ensure developed systems and architectures are consistent with the Evinova Cyber security Architecture guidelines.
Contribute to Security Risk Management Plans and Data Flow diagrams for products and solutions.
Provide domain expertise level advisory to platform and product engineering teams, enabling timely consideration of cyber protection controls and integration with relevant cyber services (e.
., Security Monitoring, Threat Intelligence, etc.).
Partner with the Quality and Compliance Team to ensure the effectiveness of engineering security practices, aligned with relevant standards, and fully documented in policies/procedures.
Supervise and develop remediation strategies to ensure continued compliance with relevant regulations and audit requirements.
Provide leadership and hands-on implementation support for cyber capability/tooling deployments.
Provide guidance and direction to distributed Security Engineers and Security Leads to ensure standardization and risk-aligned protection measures.
Collaborate with the Security Operations Lead and outsourced partners to optimize our security monitoring, vulnerability management, and detection capabilities.
Drive continuous improvement initiatives to enhance the effectiveness and efficiency of the cyber security program, leveraging feedback, metrics, and lessons learned.
Provide advisory-based perspectives to the CTO leadership team on appropriate technology solutions to align residual risk to the organizational risk appetite.
Actively collaborate with Evinova and AstraZeneca Group leadership to align and share best practices for cyber security, business continuity, and other related policies and procedures.
Minimum Qualifications.
Bachelor’s degree in Technology, Computer Science, Engineering, or a related field.
8+ years of combined experience in the following.
software design, distributed technologies, cloud security, security architecture, and enterprise security solutions for multiple technology platforms/frameworks/ languages.
Prior experience providing cybersecurity architecture-related capabilities at a SaaS/cloud service provider.
Prior experience architecting cyber security solutions for multi-tenant cloud environments across a global customer base.
Well-versed with application security implementations, firewalls, web application firewalls, DMZs, and network architectures.
Ability to guide the development, design, and implementation of security standard methodologies for all layers of the application stack.
Solid understanding of deploying applications in a cloud environment, containerization (e.
., Kubernetes, EKS, etc.), cloud patterns, and cloud service/user authentication.
Good understanding of Identity and Access Management (IAM), Cryptography / Key Management, Access Controls and Security Protocols, Secrets Modernization, and Secrets Management (e.
., MFA, SAML, OAuth, OIDC, etc.).
Demonstrable experience establishing cloud security strategies, securing multi tenant environments, and implementing data segregation/isolation controls in AWS.
Demonstrable experience securing cloud-based custom-developed solutions (e.
., policy development, controls identification and implementation, continuous monitoring, audit response, etc.).
A deep understanding of information security technologies, networking, and network architecture is required – preferably in-depth exposure to Amazon Web Services and Microsoft Azure security concepts/services.
Ability to make pragmatic decisions by analyzing highly complex situations, assessing risks, and balancing strategic and tactical compliance/quality requirements.
Ability to work independently in a fast-paced environment with a validated ability to handle contending priorities.
Excellent written and verbal communication skills, project management, process improvement, attention to detail, and critical thinking skills are highly preferred.
At least one of the following professional certifications.
AWS Certified Solution Architect, AWS Security Principles, Certified Information Systems Security Professional (CISSP), and/or Certified Cloud Security Professional (CCSP).
Desired Qualifications.
Master’s degree in computer science, engineering, or similar relevant area of study Experience in ensuring compliance within a highly regulated sophisticated global business environment, particularly in the healthcare and/or clinical research industry.
A global perspective on privacy, security, and data protection issues and trends (experience with Asia-Pacific data privacy and protection regulations is a strong plus).
Demonstrate initiative, strong customer orientation, and cross-cultural working.
Why Evinova (AstraZeneca)? Evinova draws on AstraZeneca’s deep experience developing novel therapeutics, informed by insights from thousands of patients and clinical researchers.
Together, we can accelerate the delivery of life-changing medicines, improve the design and delivery of clinical trials for better patient experiences and outcomes, and think more holistically about patient care before, during, and after treatment.
We know that regulators, healthcare professionals, and care teams at clinical trial sites do not want a fragmented approach.
They do not want a future where every pharmaceutical company provides its own, different digital solutions.
They want solutions that work across the sector, simplify their workload, and benefit patients broadly.
By bringing our solutions to the wider healthcare community, we can help build more unified approaches to how we all develop and deploy digital technologies, better serving our teams, physicians, and ultimately patients.
Evinova represents a unique opportunity to deliver meaningful outcomes with digital and AI to serve the wider healthcare community and create new standards for the sector.
Join us on our journey of building a new kind of health tech business to reset expectations of what a bio-pharmaceutical company can be.
This means we’re opening new ways to work, pioneering cutting-edge methods, and bringing unexpected teams together.
Interested? Come and join our journey.
So, what’s next? Are you already imagining yourself joining our team? Good, because we can’t wait to hear from you.
Where can I find out more? Our Social Media, Follow AstraZeneca on LinkedIn https://www.
inkedin.
om/company// Follow AstraZeneca on Facebook https://www.
acebook.
om/astrazenecacareers/ Follow AstraZeneca on Instagram https://www.
nstagram.
om/astrazeneca_careers/?hl=en Learn more about Evinova www.
vinova.
om AstraZeneca embraces diversity and equality of opportunity.
We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills.
We believe that the more inclusive we are, the better our work will be.
We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics.
We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorization and employment eligibility verification requirements.
AstraZeneca requires all US employees to be fully vaccinated for COVID-19 but will consider requests for reasonable accommodations as required by applicable law.
You’re disruptive, decisive, and transformative.
Someone excited to use technology to improve patients’ health.
We’re building a new Health-tech business – Evinova, a fully-owned subsidiary of AstraZeneca Group.
Evinova delivers market-leading digital health solutions that are science-based, evidence-led, and human experience-driven.
Thoughtful risks and quick decisions come together to accelerate innovation across the life sciences sector.
Be part of a diverse team that pushes the boundaries of science by digitally empowering a deeper understanding of the patients we’re helping.
Launch pioneering digital solutions that improve the patients’ experience and deliver better health outcomes.
Together, we have the opportunity to combine deep scientific expertise with digital and artificial intelligence to serve the wider healthcare community and create new standards across the sector.
The Cyber Security Architecture Lead role presents a unique opportunity to join Evinova from the beginning and implement innovative cyber security practices that are designed by industry, for industry.
The Cyber Security Architecture Lead, reporting to the Evinova Head of Cyber Security, will be hands-on in ensuring that security requirements are adequately addressed across Evinova’s entire technology architecture (i.
., corporate infrastructure and customer-facing digital solutions).
This role will encompass various architectural domains, such as Data Protection, Network Security, Cloud Security, Identity and Access Management, and Security Operations.
In addition to developing Evinova-wide cyber architecture methodologies and future roadmaps, the Cyber Security Architecture Lead will also proactively identify and promote opportunities to optimize and simplify our cyber defenses.
Additionally, this role will closely collaborate with globally dispersed technology teams – enabling excellent opportunities for professional development across technology domains and international geographies.
Success in this role requires leading by influence, exhibiting strong emotional intelligence, and a natural disposition toward problem-solving.
The ideal candidate will think holistically and deliver on pivotal initiatives to leverage next-generation security solutions.
Key responsibilities include.
Develop and maintain the Evinova Cyber Security Architecture methodology and reference materials (e.
., designs, hardening guides, standards).
Develop and maintain a multi-year roadmap outlining key protection measures and their planned maturity/investment targets.
Determine and articulate risk-based protection schemes for relevant data, cloud environments, corporate infrastructure, and end-customer-facing digital solutions – addressing all applicable layers (e.
., data, transport, network, storage, etc.).
Ensure complete isolation of Evinova’s sensitive customer information from our partner company through physical and logical isolation, policies, and procedures.
Establish and maintain authoritative documentation articulating established security controls/technologies and system descriptions.
Evaluate proposed security architectures and designs to determine the coverage and effectiveness of planned cyber risk reduction measures.
Perform periodic reviews over critical components to identify gaps in the architecture and ensure developed systems and architectures are consistent with the Evinova Cyber security Architecture guidelines.
Contribute to Security Risk Management Plans and Data Flow diagrams for products and solutions.
Provide domain expertise level advisory to platform and product engineering teams, enabling timely consideration of cyber protection controls and integration with relevant cyber services (e.
., Security Monitoring, Threat Intelligence, etc.).
Partner with the Quality and Compliance Team to ensure the effectiveness of engineering security practices, aligned with relevant standards, and fully documented in policies/procedures.
Supervise and develop remediation strategies to ensure continued compliance with relevant regulations and audit requirements.
Provide leadership and hands-on implementation support for cyber capability/tooling deployments.
Provide guidance and direction to distributed Security Engineers and Security Leads to ensure standardization and risk-aligned protection measures.
Collaborate with the Security Operations Lead and outsourced partners to optimize our security monitoring, vulnerability management, and detection capabilities.
Drive continuous improvement initiatives to enhance the effectiveness and efficiency of the cyber security program, leveraging feedback, metrics, and lessons learned.
Provide advisory-based perspectives to the CTO leadership team on appropriate technology solutions to align residual risk to the organizational risk appetite.
Actively collaborate with Evinova and AstraZeneca Group leadership to align and share best practices for cyber security, business continuity, and other related policies and procedures.
Minimum Qualifications.
Bachelor’s degree in Technology, Computer Science, Engineering, or a related field.
8+ years of combined experience in the following.
software design, distributed technologies, cloud security, security architecture, and enterprise security solutions for multiple technology platforms/frameworks/ languages.
Prior experience providing cybersecurity architecture-related capabilities at a SaaS/cloud service provider.
Prior experience architecting cyber security solutions for multi-tenant cloud environments across a global customer base.
Well-versed with application security implementations, firewalls, web application firewalls, DMZs, and network architectures.
Ability to guide the development, design, and implementation of security standard methodologies for all layers of the application stack.
Solid understanding of deploying applications in a cloud environment, containerization (e.
., Kubernetes, EKS, etc.), cloud patterns, and cloud service/user authentication.
Good understanding of Identity and Access Management (IAM), Cryptography / Key Management, Access Controls and Security Protocols, Secrets Modernization, and Secrets Management (e.
., MFA, SAML, OAuth, OIDC, etc.).
Demonstrable experience establishing cloud security strategies, securing multi tenant environments, and implementing data segregation/isolation controls in AWS.
Demonstrable experience securing cloud-based custom-developed solutions (e.
., policy development, controls identification and implementation, continuous monitoring, audit response, etc.).
A deep understanding of information security technologies, networking, and network architecture is required – preferably in-depth exposure to Amazon Web Services and Microsoft Azure security concepts/services.
Ability to make pragmatic decisions by analyzing highly complex situations, assessing risks, and balancing strategic and tactical compliance/quality requirements.
Ability to work independently in a fast-paced environment with a validated ability to handle contending priorities.
Excellent written and verbal communication skills, project management, process improvement, attention to detail, and critical thinking skills are highly preferred.
At least one of the following professional certifications.
AWS Certified Solution Architect, AWS Security Principles, Certified Information Systems Security Professional (CISSP), and/or Certified Cloud Security Professional (CCSP).
Desired Qualifications.
Master’s degree in computer science, engineering, or similar relevant area of study Experience in ensuring compliance within a highly regulated sophisticated global business environment, particularly in the healthcare and/or clinical research industry.
A global perspective on privacy, security, and data protection issues and trends (experience with Asia-Pacific data privacy and protection regulations is a strong plus).
Demonstrate initiative, strong customer orientation, and cross-cultural working.
Why Evinova (AstraZeneca)? Evinova draws on AstraZeneca’s deep experience developing novel therapeutics, informed by insights from thousands of patients and clinical researchers.
Together, we can accelerate the delivery of life-changing medicines, improve the design and delivery of clinical trials for better patient experiences and outcomes, and think more holistically about patient care before, during, and after treatment.
We know that regulators, healthcare professionals, and care teams at clinical trial sites do not want a fragmented approach.
They do not want a future where every pharmaceutical company provides its own, different digital solutions.
They want solutions that work across the sector, simplify their workload, and benefit patients broadly.
By bringing our solutions to the wider healthcare community, we can help build more unified approaches to how we all develop and deploy digital technologies, better serving our teams, physicians, and ultimately patients.
Evinova represents a unique opportunity to deliver meaningful outcomes with digital and AI to serve the wider healthcare community and create new standards for the sector.
Join us on our journey of building a new kind of health tech business to reset expectations of what a bio-pharmaceutical company can be.
This means we’re opening new ways to work, pioneering cutting-edge methods, and bringing unexpected teams together.
Interested? Come and join our journey.
So, what’s next? Are you already imagining yourself joining our team? Good, because we can’t wait to hear from you.
Where can I find out more? Our Social Media, Follow AstraZeneca on LinkedIn https://www.
inkedin.
om/company// Follow AstraZeneca on Facebook https://www.
acebook.
om/astrazenecacareers/ Follow AstraZeneca on Instagram https://www.
nstagram.
om/astrazeneca_careers/?hl=en Learn more about Evinova www.
vinova.
om AstraZeneca embraces diversity and equality of opportunity.
We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills.
We believe that the more inclusive we are, the better our work will be.
We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics.
We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorization and employment eligibility verification requirements.
AstraZeneca requires all US employees to be fully vaccinated for COVID-19 but will consider requests for reasonable accommodations as required by applicable law.
Ver oferta completa
Detalles de la oferta
Empresa
- Senior Cyber Security Manager
Localidad
- En toda España
Dirección
- Sin especificar - Sin especificar
Tipo de Contrato
- Sin especificar
Fecha de publicación
- 09/04/2024
Fecha de expiración
- 08/07/2024
Secondary Teacher of Mathematics with ICT
The English School
C2/mother tongue level of english... contribute to students’ end of term reports in line with school policy... otros datos del puesto subject teacher repsonsibilities: assist in the planning, preparing and delivering of departmental schemes of work in accordance with the national curriculum and with......
Collections Specialist with a high Level of German or Dutch
Talent Search People
You have a good knowledge of excel... you will be in charge of +1000 clients... you have good knowledge of bank products/payment methods and experience as accounts receivable or administrative accountant... you will be responsible for the email correspondence to customers to encourage payments of overdue......
Sales Representative Benelux with Native Level of Dutch
Talent Search People
Otros datos del puestowhat do we offer? - competitive salary of with the possibility to increase after 1 year... presently, they have expanded their operations to encompass more than 8 european countries, including the recent addition of benelux... full medical insurance with dental included- office......
Back office with a native level of dutch or english (Porto)
Talent search people
In your day-to-day: - you'll provide assistance via phone/mail/email/chat from customer simple and complex queries that impact the performance of the business- you'll guide the customers through the webshop- you'll be ensuring that the data received from the customer is accurately and timely maintained-......
Director/a de ocio y tiempo libre
Learning experience
Requisitos del puestoexperiencia demostrable como director/coordinador de ocio y tiempo libre o en programas educativos similares (inmersión lingüística en idioma)... imprescindible nivel de inglés b2 en adelante (demostrable) y título de director/a de ocio y tiempo libre......
Director clinica dental
Clinica dental Verdaguer
Director para clinica dental privada en la zona de barcelona, muy buenas condiciones y posibilidad de trabajar en un gran ambiente y obtar a tener unos ingresos edlevadosrequisitos del puestoimprescindible experiencia demostrable de mas de 1 año como director o asesor en clinica dental......
Part-time administrative worker with a good level of English
at home
Part-time administrative worker with a good level of english, where knowledge of french will be an asset... send cv with recent photo by email... this position is located in orihuela costa... enviar cv curriculum vitae con foto reciente por email... este puesto de trabajo esta situado en orihuela costa......
Director de arte y cócteles
Filmakers monkeys
El director de arte estará a cargo de definir el estilo visual del varios videos para una marca de bebidas... descripción buscamos director de arte para grabación de videos para redes sociales de coctelería y estilo de vida sobre el puesto es un trabajo puntual a ser grabado en málaga los días 11,12......
Director Comercial
Involve rh
Descripción del puesto: confidencial cuenta con una posición como director comercial para la misión de un director comercial es liderar el equipo de ventas, desarrollar estrategias para aumentar las ventas y alcanzar los objetivos de la empresa... 000,00 € neto por año jornada laboral: de lunes a viernes......
Director Técnico Natación
Club Natación Linares,
Director técnico, encargado de la planificación deportiva de natación en las categorias benjamín, alevín e infantil, para la participación de los distintos grupos en trofeos, campeonatos y tomas de tiempo......
