Senior Director, Cybersecurity – Digital Trust

Do you have expertise in, and passion for, Cybersecurity? Would you like to apply your expertise to impact a company that follows the science and turns ideas into life changing medicines? If so, AstraZeneca might be the one for you!

About Astra Zeneca

AstraZeneca is a global, innovation-driven BioPharmaceutical business that focuses on the discovery, development and commercialisation of prescription medicines for some of the world’s most serious disease. But we’re more than one of the world’s leading pharmaceutical companies.

At AstraZeneca we’re dedicated to being a Great Place to Work. Where you are empowered to push the boundaries of science and unleash your entrepreneurial spirit. There’s no better place to make a difference to medicine, patients and society. An inclusive culture that champions diversity and collaboration. Always committed to lifelong learning, growth and development.

About our IT team

Here our work has a direct impact on patients – transforming our ability to develop life-changing medicines. We empower the business to perform at its peak and lead a new way of working, combining pioneering science with leading digital technology platforms and data. All with a passion to impact lives through data, analytics, AI, machine learning and more. Join us at a crucial stage of our journey in becoming a digital and data-led enterprise. Make the impossible possible by building partnerships and ecosystems, creating new ways of working and driving scale and speed to deliver exponential growth. Focused and committed, and backed with the investment to succeed, we’re driving cross-company change to disrupt the entire industry. Ours is a place to innovate, take ownership and run with it. You’re trusted to explore and to find new solutions, experimenting with groundbreaking technology and grappling with challenges in a modern technology environment that might never have been tackled before. It’s a dynamic and challenging environment to work in – but that’s why we like it. There are countless opportunities to learn and grow, whether that’s exploring new technologies in hackathons, or transforming the roles and work of colleagues, forever. Shape your own path, with support all the way. Diverse minds that work multi-functionally and inclusively together. Be part of a team that has the backing to innovate, disrupt an industry and change lives.

About the role

The Senior Director, Cybersecurity - Digital Trust will lead a team of senior security managers, engineers and specialists that plan, execute, and sustain the full lifecycle of cybersecurity identity, authentication and access management, and digital trust for AI agents, machine entities and humans across the AstraZeneca global ecosystem. This is a transformational and innovation driven role. Identity technology is constantly evolving and driving change into global enterprise ecosystems, including internal business operations and external facing partners. The pharmaceuticals business lifecycle is inclusive of a complex and multi-faceted ecosystem that demands increasingly responsive, safe, and secure identity-focused solutions. This position is expected to drive Digital Trust into information technology infrastructure, business processes, and the complex array of suppliers, partners, and healthcare provider organizations. We need a leader that is well-versed in the as-is identity controls and technology landscape, but is more capable of conceiving, articulating, and making the business case for a future-state identity-centric Digital Trust architecture. This role is critical to the global cybersecurity effort as it demands cross functional engagement across all IT and cybersecurity functions, Enterprise Technology Services, OT and business functions.

Typical Accountabilities

• Conceiving, leading and delivering a best-in-class global Digital Trust architecture that is AI enabling, inclusive, privacy-enhancing, and an emerging element of AstraZeneca brand attributes.

• Unlock our scientific workforce productivity by anticipating and enabling global scale secure access to data, applications, and collaborative tools with high confidentiality, integrity, and availability.

• Provide as frictionless as possible secure and consistent user experiences in regulated and non-regulated environments.

• Develop and lead the AstraZeneca Digital Trust technology, capability, and business enabling roadmap.

• Develop, deploy, sustain cybersecurity capability and business enabling Digital Trust solutions and technology.

• Prepare the annual cybersecurity Digital Trust budget and defend business cases.

• Organize, collaborate, and facilitate innovative Digital Trust solutions.

• Ensure compliance with corporate and security policies, procedures, and operating practices.

• Conduct engineering trade studies, market surveys, and make recommendations to senior management on best practices and appropriate technology solutions.

• Support functions creating a best practice risk dashboard and appropriate cybersecurity metrics.

• Actively participate as a member of the AstraZeneca cybersecurity leadership team.

• Maintain awareness of identity exploitation cyber threat vectors, attack tactics and mitigation/remediation methods.

• Collaborate closely with the cybersecurity culture and awareness team to develop and deliver Digital Trust information campaigns.

• Lead or participate in global cybersecurity steering groups with IT leadership and other business units.

• Drive Digital Trust control implementation and maturity into cloud environments, SaaS applications, manufacturing OT/IOT, and data protection initiatives.

• Coach team for high performance, creating a supportive working environment where everyone can fulfil their potential.

Education, Qualifications, and Experience

Essential

• Experienced knowledge of authentication protocols, access technology, application segmentation and identity segmentation approaches that create Zero Trust and Secure Access Service Edge architectures.

• 10+ years of experience in information technology and/or security positions, with 5+ years' experience in an Identity and Access Management leadership role.

• Program budgeting, planning, delivery.

• Expertise in creating and maintaining performance and operations metrics.

• Experience in implementing and operating ISO and NIST cyber security frameworks.

• Significant knowledge of cyber security operations, identity exploits that lead to lateral movement and/or privilege escalation and appropriate incident response countermeasures.

• Deep understanding of information security technologies, networking, and network architecture.

• Practical understanding of procurement processes and IT change management

• Demonstrable ability to manage competing priorities and work under pressure.

• Maintain a global perspective on privacy, security, and data protection issues and trends.

• Expert at reducing cyber risk in large, global enterprises.

Desirable

• Familiarity with regulated industry, ideally Pharma compliance and change management.

• Advanced program management skills.

• IT service desk coordination.

• Penetration testing outputs and translating them into risk reduction and remediation projects.

• A relevant technical degree, competence or equivalent.

• Current information security certification as a GIAC, CISSP, CISM, CISA, etc.

• Experience working in other IT disciplines and across a range of industries and sectors.

Skills and Capabilities

• Excellent problem solving and troubleshooting skills, autonomous working, direction, and goal setting.

• Strong written and verbal communication skills, with a demonstrable ability to present complex, technical information to both technical and non-technical audiences.

• Demonstrated cross-cultural leadership ability.

• Be valued and respected for collaboration, integrity, and enablement.

• Experience working in a global organization where stakeholders and team members are geographically dispersed.

• Experience working with Executive level stakeholders.

Key Relationships to reach solutions

Cybersecurity Leadership Team

Enterprise Technology Services Leadership Team

Enterprise Technology Services functional teams

AZ Business Leaders

Global security team

Procurement

Finance

Internal audit

IT & Global Compliance teams

External

External 3rd parties and suppliers

External auditors

Incident response partners

Peer Pharma companies

H-ISAC

Digital Trust community members

The annual base pay for this position ranges from 185.843,20 - 278.764,80 USD Annual (80% - 120%). Hourly and salaried non-exempt employees will also be paid overtime pay when working qualifying overtime hours. Base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. In addition, our positions offer a short-term incentive bonus opportunity; eligibility to participate in our equity-based long-term incentive program (salaried roles), to receive a retirement contribution (hourly roles), and commission payment eligibility (sales roles). Benefits offered included a qualified retirement program [401(k) plan]; paid vacation and holidays; paid leaves; and, health benefits including medical, prescription drug, dental, and vision coverage in accordance with the terms and conditions of the applicable plans. Additional details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, employee will be in an “at-will position” and the Company reserves the right to modify base pay (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.

WHY JOIN US?

We’re a network of entrepreneurial self-starters who contribute to something far bigger. There’s a diversity of expertise in our Technology group that’s unique to AstraZeneca – it allows us to dive deep into exploring new groundbreaking technology. We enable AstraZeneca to perform at its peak by delivering world-class technology and data solutions. Our work unlocks the potential of science. We optimise and evolutionise AstraZeneca by maximising efficiencies and finding new ways to drive productivity. From automation to data simplification. We’re not afraid to take ownership and run with it. Empowered with unrivalled freedom. A place to be open and transparent – we speak up, think creatively and share ideas. Our diverse contributions help us to make better decisions. But we have a constant drive to innovate, and an appreciation for high standards. It takes challenging the status quo to contribute in our ever-evolving environment. We love it here because put simply, we make a meaningful impact.

Technology at AstraZeneca is a home for purposeful disruptors!