Be an early applicantLess than 25 applicants

Company

Original Job Post

BioSpace · 2 days ago

Sr. Director IT Security Engineering

Foster City, CA

Full-time

Hybrid

Director

$238K/yr - $308K/yr

Wonder how qualified you are to the job?

Maximize your interview chances

BiotechnologyCommunities

Comp. & Benefits

Insider Connection @BioSpace

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Manage team to develop, update & maintain Information Security Engineering and Cyber Fusion Center standards and reference architecture.

Lead and manage the Security Engineering team to deliver on Security capabilities.

Lead and manage the Cyber Fusion Center and Cybersecurity Incident Response.

Present the Security Engineering and Cyber Fusion Center Investment portfolio to SRC and IT leaders and communicate the value of the security investment.

Lead and manage our Managed Service Provider solution delivery teams to deliver on Security Engineering and Cyber Fusion Center sustainment and investment projects.

Partner with Security Architecture and Security Operations, including supporting the design and delivery needs of Identity and Access Management.

Partner with Security Operations team to ensure Security tools are optimized and ensure SecOps team have proper knowledge transfer and documentation to support new Security tools.

Support Security Engineering needs of Merger & Acquisition related activities.

Ensure Security Engineering and Cyber Fusion Center activities, processes, and procedures meet defined requirements, policies, and regulations.

Work with Internal Audit, Project Managers, System Managers and Engineers - Track project findings, identify and resolve issues, analyze evidence, communicate with stakeholders, and facilitate the completion of related projects with security engineering design or architecture needs.

Participate in other activities relating to information security or other functional areas as assigned.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Computer ScienceInformation SecurityCISSPCRISCCCSPGIACCybersecurity TechnologiesNIST Cyber Security FrameworkMITRE Attack MatrixIT Security ConceptsInformation Security Risk ManagementNetwork SecuritySecure Software Development LifecycleSecurity Standards DevelopmentRisk Management FrameworksCompliance PracticesFormal Report WritingHealthcare RegulationsData Privacy RegulationsProject AssessmentCorrective Measures IdentificationRemote Customer InteractionDocumentation SkillsBiopharma Industry ExperienceCloud Environment ExperienceProblem-SolvingInterpersonal CommunicationTime ManagementTeam CollaborationCustomer Service Orientation

Required

18+ years' relevant experience with High School Diploma or equivalent

16+ years' relevant experience with AA

14+ years' relevant experience with BS / BA

12+ years' relevant experience with MS / MA / MBA

Computer Science or related discipline is preferred.

Information security related certifications such as CISSP, CRISC, CCSP, GIAC, etc.

Preferred

Strong understanding of a wide variety of cybersecurity technologies relating to the following security domains: Audit and Monitoring, Risk Response & Recovery, SIEM, Vulnerability Management, Cryptography, Data Communications, Computer Operations Security, Telecommunications & Network Security, Security Architecture & Models, Cloud Security, Multi-Factor Authentication, Passwordless Authentication, Digital Rights Management, and PKI.

Strong understanding of NIST cyber security framework, and MITRE attack matrix

Strong knowledge of IT Security and Privacy concepts and controls

Knowledge of information security risk management frameworks and compliance practices

Knowledge of securing network technologies, client, and server operating systems

Strong knowledge of Secure Software Development Lifecycle (SDLC) processes and methodologies

Ability to develop security standards and guidelines based on best practices and industry standards.

Excellent interpersonal, communication, and presentation skills, including formal report writing experience.

Understanding of common security standards and healthcare related regulations and data privacy

Ability to assess complex multi-location projects as well as identify and recommend appropriate corrective measures to resolve security and privacy related issues.

Strong customer service orientation and the ability to project that attitude to customers in remote locations.

Ability to manage multiple prioritized tasks effectively.

Strong organization and time management skills

Works independently and works well in a team collaborative environment.

Skills in documenting risk and compliance activities

Previous work experience in a Biopharma organization is a plus.

Previous work experience in a cloud centric environment is a plus.

Previous experience working effectively with global teams across multiple time zones is a plus.