Director, Information Security
Chennai, Tamil Nadu, India
Applications have closed
Allucent
Allucent, a clinical research organization striving to bring new therapies to light by solving distinct challenges of small and mid-sized biopharma companies.The Director of Information Security develops and implements a pragmatic Information Security strategy. The ideal candidate is passionate about security and privacy and has an extensive IT operations background.
- Works closely with and provides technical expertise to quality, compliance, business units, and supporting departments in implementing, certification, and maintaining compliance standards with an appropriate security framework (e.g. NIST).
- Author and maintain policies, standards, and procedures that demonstrate strong organizational governance.
- Maintain documentation of security controls and respond to requests from customers (internal and external).
- Collaborate with IT Operations, Privacy and other lines of business to identify threats and design technical controls.
- Responsible for security operations including threat prevention, detection, and incident response strategy to include a formalized incident response process, declaring security incidents, coordinating and assisting in the investigation of potential incidents, assisting in the recovery from attacks, coordinating with legal, compliance, and other stakeholders, law enforcement agencies (where applicable), and developing the post-response control strategy.
- Lead security risk management activities, including assessing, tracking, and mitigating risks.
- Develop, adapt, and communicate the information security strategy.
Requirements
- 10+ years of experience in relevant security domains (e.g., security risk management, access control, audits, etc.), with 3+ years of management experience.
- Should have solid risk management skills, experience with SOC2, ISO 2700x frameworks, third-party auditing, and (cloud) risk assessment methodologies.
- Knowledge and understanding of relevant legal and regulatory requirements, such as GDPR, SOC2, FedRAMP, ISO/IEC 27001/27701, and NIST security principles
- Presentation and communication skills to support security and privacy company-wide.
- Deep IT operations and infrastructure experience particularly with Microsoft and Amazon AWS. Prior management experience in this space is a plus.
- Knowledge of and experience in managing day-to-day security operations with the ability to prioritize multiple projects.
- Must be comfortable operating in a collaborative, shared leadership environment.
- Must possess a personal presence characterized by a sense of honesty, integrity, and caring with the ability to inspire and motivate others to promote the organization's philosophy, mission, vision, goals, and operating imperatives.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits AWS Cloud Compliance FedRAMP GDPR Governance Incident response NIST Privacy Risk assessment Risk management Security strategy SOC 2 Strategy
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs