Apply on Employer Site

Insmed Incorporated · 22 hours ago

Associate Director, Cybersecurity

Headquarters, NJ

Full-time

Hybrid

Lead/Staff, Director/Executive

$164K/yr - $213K/yr

15+ years exp

Insmed Incorporated is a global biopharmaceutical company dedicated to transforming the lives of patients with serious and rare diseases. The Associate Director of Cybersecurity will be responsible for overseeing information security operations, developing and implementing cybersecurity strategies, and leading a team to ensure the organization's cybersecurity program is effective and compliant with industry standards.

BiotechnologyMedicalPharmaceutical

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Lead and mentor the Cybersecurity team creating a culture that fosters engagement, passion, and enthusiasm for Insmed’s vision, mission, and values

Build and mature a culture focused on proactive risk management and cyber security best practices

Participate in the development of Insmed’s IT strategy as it relates to cybersecurity; implement and operationalize the strategy

Collaborate with the Senior Director on a strategy for building management support and ownership of cybersecurity

Responsible for developing, implementing, and executing information security and vulnerability assessments, testing applications, systems, and infrastructure to ensure appropriate protection of sensitive customer and company information; perform risk analysis and recommends remediation for deficiencies. Track and reassess remediation(s) to ensure compliance with policies and operational standards

To appropriately manage the program and enterprise risk, leverage cyber security metrics

Research and benchmark industry-leading security practices and tools, validating the organization is protected with industry-leading security solutions and services. Examine new technologies’ impact on the organization's overall information security posture. Establish processes to review new technologies and ensure security compliance

Responsible for developing, implementing, and executing company-wide/departmental information security training and awareness programs

Manage production technology incidents to resolution, ensuring timely engagement, escalation, and effective communication to business, technology, and vendor partners

Develop, implement, maintain, and oversee Insmed’s cybersecurity program ensuring Insmed can identify and detect threats, and protect, respond, and recover from threats and incidents

In collaboration with Senior Director, work with and actively engage security service providers to deliver necessary services and manage contract requirements and service level agreements

Execute security management tasks including the monitoring, installation, and activation of malicious software protection tools, applying security protocols to network connectivity, managing user identities and logical access, and providing security data as needed when investigations arise

Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices

Develop, implement, and test the IT elements in the Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP)

Responsible for developing, implementing, and executing a comprehensive set of security standards and guidelines, including but not limited to cybersecurity operations, incident response, vulnerability management, network security, data protection, and loss, endpoint security, compliance program, and identity and access management

Ensure program standards comply with applicable State and Federal regulatory requirements

Qualification

Cybersecurity operations managementInformation security assessmentsCybersecurity frameworks expertiseTeam leadershipRisk managementIncident responseData protectionVulnerability managementSecurity complianceBudget managementCommunication skillsCollaboration skillsProject managementMentorship skills

Required

Minimum of an undergraduate degree in Computer Science, Management Information Systems, Business, or related field

15+ years' experience in IT/Cybersecurity

10+ years' experience developing, managing, and directing cybersecurity operations with planning and development requirements, to include assessing effectiveness of such programs

10+ years' experience leading a team of highly skilled technical professionals

5+ years' of leading information security risk assessments, vendor risk management programs, developing information security awareness and education programs, and managing information technology or security projects

5+ years' of effectively managing a Cybersecurity team

Advanced knowledge of systems design methodologies & development, including core infrastructure and enterprise-wide applications, as well as online applications, and web-based systems, voice and data communications technologies, security frameworks & methodologies, open architecture systems, common programming languages, open-source software, business intelligence, and data analytics

Expertise in cybersecurity regulatory, compliance, and framework requirements, such as NIST, HITRUST, CIS, and ISO

Experience working with Security Incident and Event Management (SIEM) tools, endpoint detection and response tools, vulnerability management suites, and various security solutions

Experience with the following cyber security domain areas: Data encryption (rest, transit, memory), Public Key Infrastructure (PKI) key management systems, Application security (secure coding, shift left), Identity and access management program (MFA, SSO, LCM, IGA), Data handling and classification, Firewalls, Network segmentation, Cyber resiliency, Data loss prevention

Strong knowledge of operating system, application, network, and database security architectures

Proven ability to effectively utilize techniques designed to reduce frequency, duration, and impact of common business disruptions particularly as they relate to branch/contact center operations, electronic services, and telecommunications

Strong verbal and written communications skills including the ability to explain technical concepts and technologies to business leaders and senior executives

Strong leadership, inter-personal, and collaboration skills

Proven ability to increase employee engagement, build, retain, and manage a highly skilled and motivated team

In-depth knowledge of IT and cybersecurity practices/trends in the biopharma and/or financial services industry and operating policies

Strong project management skills and a track record of successfully managing change, process improvement, and operational performance

Ability to collaborate, build relationships, and influence individuals at all levels within the organization and strong vendor management skills

Strong budget management skills and ability to develop and obtain approval for significant business cases

This position is required to work weekends and nights as necessary to ensure network availability and to support after regular business hours deployment of new systems, patches, fixes, and/or other enhancements

Preferred

Certifications – GIAC Security Essentials, GIAC Security Leadership, ISACA CISM, MCSE: Security, (ISC)2 SCCP, (ISC)2 CISSP, (ISC)2 ISSAP, CCISO, CISA, or CRISC

Expertise in cybersecurity frameworks, organizational profiles, and gap analysis processes

Experience with CI/CD security integration and DevSecOps practices

Knowledge of cloud security, container security, and Infrastructure-as-Code (IaC) security

Security automation experience (SAST, DAST)

Benefits

Comprehensive medical, dental, and vision coverage and mental health support, annual wellbeing reimbursement, and access to our Employee Assistance Program (EAP)

Generous paid time off policies, fertility and family-forming benefits, caregiver support, and flexible work schedules with purposeful in-person collaboration

401(k) plan with a competitive company match, annual equity awards, and participation in our Employee Stock Purchase Plan (ESPP), and company-paid life and disability insurance

Company Learning Institute providing access to LinkedIn Learning, skill building workshops, leadership programs, mentorship connections, and networking opportunities

Employee resource groups, service and recognition programs, and meaningful opportunities to connect, volunteer, and give back

Company

Insmed Incorporated

Insmed is a people-ﬁrst global biopharmaceutical company striving to deliver ﬁrst- and best-in-class therapies to transform the lives of patients facing serious diseases.

Founded in 1988

Bridgewater, New Jersey, USA

1001-5000 employees

http://www.insmed.com

H1B Sponsorship

Insmed Incorporated has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (20)

2024 (6)

2023 (14)

2022 (8)

2021 (1)

2020 (5)

Funding

Current Stage

Public Company

Total Funding

$4.56B

Key Investors

CureDuchenne Ventures

2025-06-11Post Ipo Equity· $750M

2024-05-30Post Ipo Equity· $650M

2023-05-08Post Ipo Equity· $0.5M

Leadership Team

Will Lewis

Chairman and Chief Executive officer

Walter R. Perkins

Chief Technology Officer

Recent News

STAT

STAT+: Insmed basks in the success of its lung disease drug — and prepares for what’s next

2026-01-13

FiercePharma

Insmed's 'blowout' Brinsupri sales beat fuels multi-blockbuster outlook

2026-01-13

Investing.com

Intel, Tilray and Nuscale rise premarket; General Motors falls

2026-01-11

Company data provided by crunchbase