Global Lead, Information Security Services Operations
Astellas

Job Info

---

Do you want to be part of an inclusive team that works to develop innovative therapies for patients? Every day, we are driven to develop and deliver innovative and effective new medicines to patients and physicians. If you want to be part of this exciting work, you belong at Astellas!

Astellas Pharma Inc. is a pharmaceutical company conducting business in more than 70 countries around the world. We are committed to turning innovative science into medical solutions that bring value and hope to patients and their families. Keeping our focus on addressing unmet medical needs and conducting our business with ethics and integrity enables us to improve the health of people throughout the world. For more information on Astellas, please visit our website at www.astellas.com.

This position is based in Northbrook, Illinois. Remote work from certain states may be permitted in accordance with Astellas' Responsible Flexibility Guidelines. Candidates interested in remote work are encouraged to apply.

Purpose and Scope:

As the Global Lead, Information Security Services Operations you will play a pivotal role in managing and leading security operations for Astellas. This leadership position is responsible for overseeing the Security Operations Center (SOC) and coordinating with operations contractors to ensure the robust and effective management of our security services. You will lead various critical security services, including threat modeling, threat intelligence, threat hunting, attack surface management, red/blue/purple team exercises, incident response, digital forensics and investigations, patch and vulnerability management, and infrastructure and network security. Your expertise and strategic vision will be instrumental in safeguarding Astellas' assets against sophisticated cyber threats.

Essential Job Responsibilities:

• Security Operations Center (including operations contractors): Oversee and lead the Security Operations Center (SOC) and coordinate with operations contractors to ensure effective security monitoring and incident response capabilities.
• Threat Modeling: Develop and implement threat modeling processes to proactively identify potential security threats and vulnerabilities.
• Threat Intelligence: Utilize threat intelligence to enhance the organization's understanding of cyber threats and facilitate proactive security measures.
• Threat Hunting: Lead proactive threat hunting activities to detect and neutralize advanced threats.
• Attack Surface Management: Manage and reduce the organization's attack surface to minimize potential areas of vulnerability.
• Red/Blue/Purple Team: Conduct red team, blue team, and purple team exercises to assess the effectiveness of security controls and incident response capabilities.
• Incident Response: Oversee incident response activities, ensuring swift and effective response to security incidents.
• Digital Forensics and Investigations: Lead digital forensics and investigations to determine the root cause of security incidents and enable evidence-based decision-making.
• Patch and Vulnerability Management: Develop and maintain a robust patch and vulnerability management program to address potential security risks promptly.
• Infrastructure and Network Security: Lead efforts to secure our infrastructure and network, ensuring the confidentiality, integrity, and availability of our systems and data.

Leadership:

• Establish a long-term vision and strategy for security engineering, aligning it with the organization's overall security objectives.
• Proactively address changes in technology advancements and security threats to continuously enhance security engineering practices.
• Maintain current and in-depth knowledge of security engineering best practices and emerging technologies.
• Possess proven and effective program management skills.
• Utilize exceptional communication, facilitation, and consensus-building skills to gain support for security engineering initiatives.
• Develop and foster ongoing relationships with stakeholders throughout Astellas to effectively manage and drive security engineering improvements.

Talent Management:

• Attract and retain talent, ensuring staff development (leadership, technical, strategic perspective), and promoting diversity.
• Develop talent by actively coaching, managing, and mentoring employees.

Quantitative Dimensions:

• Geographic scope of role is Global with integration with various divisions across Astellas.
• May manage up to +/- 5 direct report employees.
• May manage up to 20+ external strategic partner resources, depending on portfolio of work
• Responsible for operating budgets of +/- 1-2M and project budgets of +/- 1-5M

Organizational Context:

This position plays a crucial role in shaping Astellas' security landscape, ensuring the confidentiality, integrity, and availability of our information systems and data. Reporting directly to key leadership, you will have a significant impact on protecting our critical assets and data against cyber threats.

If you are a visionary leader with a passion for information security and architecture and thrive on building strong defenses against cyber threats, we encourage you to apply. Join us in our mission to improve patients' lives through innovative therapies and a commitment to ethics and integrity. Together, we can build a secure and resilient future for Astellas and the patients we serve.

This job has expired.