Associate Director - Cyber Security Engineering

Job Title: Associate Director - Cyber Security Engineering

Career Level - F

About the Role 

Our increased focus on Digital, AI & ML, Data & Data Science along with joint ventures and collaboration with third parties are crafting new opportunities within the Cyber Security team. Cyber Security will need to be the cornerstone of our IT strategy as we move towards our future objectives.

We’re looking for IT security experts that can help us on the journey through this significant and ever-changing technology and threat landscape 

Key Responsibilities 

In the role of Cyber Security Engineering Associate Director, you’ll operate within AstraZeneca’s Cybersecurity group to deliver quality services and solutions that meet both business and IT needs.  This is a hands-on technical leadership role providing guidance, definition and design of enterprise-wide security engineering initiatives and leading a small global team of cybersecurity engineers. You’ll collaborate with Business, Solution Delivery, Engineering, and Quality and Compliance functions across a global organisation spanning US, UK, Sweden, China, Japan, Poland, Mexico, India and beyond. 

·       Engineer, build, configure, test and implement Cyber Security solutions for the organisation spanning on-premise and third-party collaboration environments with the predominant focus on Network and host/endpoint detection and response technology enablement. 

·       Define principles, and support development of policies, standards and governance covering DevOps, Corporate network connectivity, tooling, ways of working, endpoint protection, shifting hardening processes as far left as possible, network security in collaboration with the network team (including IDS / IPS) 

·       Help define the future state of Cyber Security within the organisation, conduct review and gap analysis between current state and future state including existing measures and controls, and then work to uplift to align to the future state vision, specific to endpoint detection and response capabilities. 

·       Anticipate threats, identify weaknesses, and respond promptly and effectively to possible breaches or areas of concern. 

·       Provide technical leadership and management of security projects and lead a team of security engineers. Collaborate with other teams to develop automation strategies 

Essential Experience 

·       Must have large enterprise IT and security experience, ideally with significant host/endpoint detection and response technology and network protection experience, SIEM, IDS/IPS 

·       Able to influence at engineering, architecture, strategic and leadership levels. 

·       Experience and familiarity with a range of automated build and deployment tools 

·       Experience planning, researching and developing security technologies, policies, standards and procedures 

·       Development and Systems Administration experience – ideally with process automation and/or configuration management 

·       Security tools administration and auditing across internal and external network and systems 

·       Familiarity with common attack techniques and their remediation/defence including DoS, DDoS, Social engineering, Virus, Malware, Vulnerability exploitation, Phishing & Spear Phishing, Worms, Trojans, Rootkits, Ransomware, XSS, SQL Injection, Remote Command Execution, Session Hijacking, etc. 

·       Solid grasp of security protocols, cryptography, authentication, authorisation and network security implementations 

·       Implement and configure tools to improve our reactive and proactive security posture 

·       Ability to build, configure, test and implement Cyber Security solutions 

·       Ability to follow and adopt systems security engineering frameworks and map controls  

·       Strong network architecture and engineering capabilities 

·       The ability to embed process, governance and security into workflow and technology 

·       Ability to prioritise and validate the threats that really matter 

Education & Skill set  

·       Bachelor’s degree in a technical discipline or extensive experience within Cyber Security 

·       Have or are working towards a recognised Cyber Security certification. 

SO, WHAT NEXT?  

If you’re interested in applying, we encourage you to apply using your completed Workday profile where possible. 

Competitive salary & benefits offered

Why AstraZeneca?
At AstraZeneca, we're not just about developing life-changing medicines. We're about disrupting an industry and changing lives through the use of leading-edge technology and data. We're investing in a bold digital strategy to become a truly data-led enterprise that disrupts the entire industry. Here, you'll have the opportunity to innovate, take ownership, and run with it. You'll be part of a network of entrepreneurial self-starters who contribute to something far bigger. We dare to lead, applying our problem-solving mindset to identify and tackle opportunities across the whole enterprise. Our spirit of experimentation is lived every day through our events like hackathons. We enable AstraZeneca to perform at its peak by delivering world-class technology and data solutions.

Ready to make your mark? Apply now to join us on this exciting journey!

Date Posted

Closing Date

AstraZeneca embraces diversity and equality of opportunity.  We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills.  We believe that the more inclusive we are, the better our work will be.  We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics.  We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorization and employment eligibility verification requirements.