Senior Director IT Security
Tel Aviv, Israel, 1
Teva Pharmaceuticals
At Teva Pharmaceuticals, we are all in for better health. We push the boundaries of scientific innovation and deliver quality medicines to help improve health outcomes for millions of patients every day.Who we are
Together, we’re on a mission to make good health more affordable and accessible, to help millions around the world enjoy healthier lives. It’s a mission that bonds our people across nearly 60 countries and a rich, diverse variety of nationalities and backgrounds. Working here means working with the world’s leading manufacturer of generic medicines, and the proud producer of many of the products on the World Health Organization’s Essential Medicines List. Today, at least 200 million people around the world take one of our medicines every single day. An amazing number, but we’re always looking for new ways to continue making a difference, and new people to make a difference with.The opportunity
In today’s rapidly evolving landscape, real-time posture management is more critical than ever. Threats are constantly exposed, and Zero Day vulnerabilities are exploited swiftly by malicious actors. Our window of reaction time has become increasingly limited. Traditional audit tools no longer suffice in addressing the current risk environment. As a result, our Technical/Tactical Governance, Risk, and Compliance (TGRC) team has transformed into a more technologically adept and tactically agile force. With Teva’s global presence across 60 countries and our modern cloud-based applications, our Tactical GRC (TGRC) team leverages advanced platforms to fortify our cyber security posture. We are actively seeking a seasoned Senior Manager to lead this team, ensuring the security of Teva’s assets worldwide
How you’ll spend your day
- Ensure cloud environment compliance over time using CSPM platforms.
- Integrated cloud tools with existing OT and R&D environments.
- Manage Teva cybersecurity attack surface and act to reduce risks.
- Manage all Teva cybersecurity policies and procedures.
- Responsibility of findings mitigation.
- Implement and operate cybersecurity posture tools.
- Collaborate with other security, operation, and IT cloud teams.
- Manage Zero Days outbreaks.
- Engage with business units to understand their cloud security needs and ensure compliance with Teva policy.
- Stay up to date on industry best practice and continuously monitor the evolving cloud security landscape and emerging threats.
- Provide regular status updates about cloud security and posture.
- Lead the governance, compliance, and posture of the cloud environments.
- Develop of cloud knowledge and the cloud team roadmap.
- Strategize TGRC tools such as BAS, VS, VA, ASM etc.
- Play key supporting role in various security Governance, Risk, Privacy and Compliance initiatives (policies & standards development, ISO27001,GDPR etc.).
Your experience and qualifications
Education:
- Bachelor's degree in information systems, Computer Science, or related field can be advantage.
- Relevant Cyber Security certifications
Experience:
- Minimum 5 years of overall experience in Cyber Security, IT, Risk Assessments, cyber risk evaluation / risk management in a large corporate enterprise
- Strong understanding of Information Security principles and application, Cloud solutions, common security elements/controls, and cyber assessment techniques
- Professional knowledge of Cyber Risk Management, defense-in-depth principles, and awareness of compliance legislation, industry frameworks and best practices: NIST, SANS Security Model, etc.
- At least one certification such as CISSP, CISM, CISA, CRISC, CIPP, CISO or equivalent
- Demonstrated experience applying security and risk frameworks, such as NIST CSF/800-53/800-171 etc.
- Experience in developing security policies and standards, risk assessments, third party risk programs, risk management, risk registries, regulatory compliance, security metrics.
- Must possess the ability to develop presentations and deliver them to senior management.
Preferred Qualifications:
- Ability to communicate and work effectively with others, harness different skills and experience
- Experience in Cyber Defense, Vulnerability management, Security Architecture, Cloud security, OT environment
- Technical ability to manage and use advance cyber solutions (such as BAS / ASM)
- Highly motivated individual with the ability to self-start, prioritize, multi-task, and has a "can-do" attitude.
- Knowledge of current threats and regulatory best practices in the cybersecurity and OT security
- Action and results-oriented with the ability to overcome obstacles, able to work well under deadlines in a changing environment.
- Ability to adjust quickly to shifting priorities, and decision-making skills with limited information.
- Strong understanding of project management methodology
- Ability to set and manage expectations with key stakeholders and team members.
- Outstanding communication skills, including the ability to write and verbally articulate industry terminology to interact at a technical level, management level and senior executive level.
- Strategic thinking and the ability to plan and then convert it into action
Reports To
VP IT Global Information Security
Already Working @TEVA?
If you are a current Teva employee, please apply using the internal career site available on "Employee Central". By doing so, your application will be treated with priority. You will also be able to see opportunities that are open exclusively to Teva employees. Use the following link to search and apply: Internal Career Site
The internal career site is available from your home network as well. If you have trouble accessing your EC account, please contact your local HR/IT partner.
Teva’s Equal Employment Opportunity Commitment
Teva Pharmaceuticals is committed to equal opportunity in employment. It is Teva's global policy that equal employment opportunity be provided without regard to age, race, creed, color, religion, sex, disability, pregnancy, medical condition, sexual orientation, gender identity or expression, ancestry, veteran status, national or ethnic origin or any other legally recognized status entitled to protection under applicable laws. We are committed to a diverse and inclusive workplace for all. If you are contacted for a job opportunity, please advise us of any accommodations needed to support you throughout the recruitment and selection process. All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile ASM CIPP CISA CISM CISO CISSP Cloud Compliance Computer Science CRISC CSPM Cyber defense GDPR Governance ISO 27001 NIST NIST 800-53 Privacy R&D Risk assessment Risk management SANS Vulnerabilities Vulnerability management
Perks/benefits: Career development Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs