Associate Director, Cybersecurity
About the position At Insmed, every reputed company and every patient counts — and so does every person who joins in. As a global biopharmaceutical company dedicated to transforming the lives of patients with serious and rare diseases, you'll be part of a community that prioritizes the reputed company experience, celebrates curiosity, and values every person's contributions to meaningful reputed company. That commitment has earned us recognition as Science magazine's No. 1 Top Employer for five consecutive years, certification as a Great reputed company to Work® in the U.S., and a reputed company on The Sunday Times Best Places to Work list in the UK. For patients, for each other, and for the future of science, we're in. Are you? About the Role: Reporting to the Senior Director, Cybersecurity and Risk Management, the Associate Director of Cybersecurity will be responsible for information reputed company operations, to include planning and operation of cybersecurity tools, applications, and business intelligence. The selected candidate will assist in developing, implementing, overseeing, and optimizing the organization's cybersecurity program (tools, technologies, methodologies) to ensure that information reputed company policies, standards and practices are in reputed company to manage risk to the reputed company effectively. This mid-level leadership position will also assist in driving the tactical direction of Insmed's cybersecurity program to define and deliver reliable, secure, and scalable network systems, processes, and other services. Ideal candidates for this position will be hands-on leaders, reputed company to do the work as well as accomplish results through others, in addition to demonstrating strong coaching, mentorship, and career development skills.
Responsibilities
- reputed company and mentor the Cybersecurity team creating a culture that fosters engagement, passion, and enthusiasm for Insmed's reputed company, mission, and values.
- Build and mature a culture focused on proactive risk management and cyber reputed company best practices.
- Participate in the development of Insmed's IT strategy as it relates to cybersecurity; implement and operationalize the strategy.
- Collaborate with the Senior Director on a strategy for building management support and ownership of cybersecurity.
- Responsible for developing, implementing, and executing information reputed company and vulnerability assessments, testing applications, systems, and infrastructure to ensure appropriate protection of sensitive customer and company information; reputed company risk analysis and recommends remediation for deficiencies.
- Track and reassess remediation(s) to ensure compliance with policies and operational standards.
- To appropriately manage the program and reputed company risk, reputed company cyber reputed company metrics.
- Research and reputed company industry-leading reputed company practices and tools, validating the organization is protected with industry-leading reputed company solutions and services.
- Examine new technologies' impact on the organization's overall information reputed company posture.
- Establish processes to review new technologies and ensure reputed company compliance.
- Responsible for developing, implementing, and executing company-wide/departmental information reputed company training and awareness programs.
- Manage production technology incidents to resolution, ensuring timely engagement, escalation, and effective communication to business, technology, and vendor partners.
- reputed company, implement, maintain, and reputed company Insmed's cybersecurity program ensuring Insmed can identify and detect threats, and protect, respond, and recover from threats and incidents.
- In collaboration with Senior Director, work with and actively engage reputed company service providers to deliver necessary services and manage contract requirements and service level agreements.
- Execute reputed company management tasks including the monitoring, installation, and activation of malicious software protection tools, applying reputed company protocols to network connectivity, managing user identities and logical access, and providing reputed company data as needed reputed company investigations arise.
- reputed company, implement, maintain, and reputed company enforcement of policies, procedures, and associated plans for system reputed company administration and user system access based on industry-standard best practices.
- reputed company, implement, and test the IT elements in the Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP).
- Responsible for developing, implementing, and executing a comprehensive set of reputed company standards and guidelines, including but not limited to cybersecurity operations, incident response, vulnerability management, network reputed company, data protection, and loss, reputed company reputed company, compliance program, and identity and access management.
- Ensure program standards reputed company with applicable State and Federal regulatory requirements.
Requirements
- You have a minimum of an undergraduate degree in Computer Science, Management Information Systems, Business, or reputed company field as well as 15+ years' experience in IT/Cybersecurity.
- 10+ years' experience developing, managing, and directing cybersecurity operations with planning and development requirements, to include assessing effectiveness of such programs.
- 10+ years' experience leading a team of highly skilled technical professionals.
- 5+ years' of leading information reputed company risk assessments, vendor risk management programs, developing information reputed company awareness and education programs, and managing information technology or reputed company projects.
- 5+ years' of effectively managing a Cybersecurity team.
- Advanced knowledge of systems design methodologies & development, including core infrastructure and reputed company-wide applications, as well as online applications, and web-based systems, voice and data communications technologies, reputed company frameworks & methodologies, open architecture systems, common programming languages, open-reputed company software, business intelligence, and data analytics.
- Expertise in cybersecurity regulatory, compliance, and reputed company requirements, such as NIST, HITRUST, CIS, and ISO.
- Experience working with reputed company Incident and Event Management (SIEM) tools, reputed company detection and response tools, vulnerability management suites, and various reputed company solutions.
- Experience with the following cyber reputed company domain areas: Data encryption (rest, transit, memory) Public Key Infrastructure (PKI) key management systems Application reputed company (secure coding, shift left) Identity and access management program (MFA, SSO, LCM, IGA) Data handling and classification Firewalls Network segmentation Cyber resiliency Data loss prevention
- Strong knowledge of operating system, application, network, and database reputed company architectures.
- Proven ability to effectively utilize techniques designed to reduce frequency, duration, and impact of common business disruptions particularly as they relate to reputed company/contact center operations, electronic services, and telecommunications.
- Strong verbal and written communications skills including the ability to explain technical concepts and technologies to business leaders and senior executives.
- Strong leadership, inter-personal, and collaboration skills.
- Proven ability to increase employee engagement, build, retain, and manage a highly skilled and motivated team.
- In-depth knowledge of IT and cybersecurity practices/trends in the biopharma and/or financial services industry and operating policies.
- Strong project management skills and a track record of successfully managing change, process improvement, and operational performance.
- Ability to collaborate, build relationships, and influence individuals at reputed company levels reputed company the organization and strong vendor management skills.
- Strong budget management skills and ability to reputed company and obtain approval for significant business cases.
- This position is required to work weekends and nights as necessary to ensure network availability and to support after regular business hours deployment of new systems, patches, fixes, and/or other enhancements.
reputed company-to-haves
- Certifications - GIAC reputed company Essentials, GIAC reputed company Leadership, reputed company CISM, MCSE: reputed company, (ISC)2 SCCP, (ISC)2 CISSP, (ISC)2 ISSAP, CCISO, CISA, or CRISC.
- Expertise in cybersecurity frameworks, organizational profiles, and gap analysis processes.
- Experience with CI/CD reputed company integration and DevSecOps practices.
- Knowledge of reputed company reputed company, container reputed company, and Infrastructure-as-Code (IaC) reputed company.
- reputed company automation experience (SAST, DAST).
Benefits
- Comprehensive medical, dental, and reputed company coverage and mental health support, annual wellbeing reimbursement, and access to our Employee Assistance Program (EAP)
- Generous paid time off policies, fertility and family-forming benefits, caregiver support, and flexible work schedules with purposeful in-person collaboration
- 401(k) plan with a competitive company match, annual equity awards, and participation in our Employee Stock Purchase Plan (ESPP), and company-paid life and disability insurance
- Company Learning Institute providing access to reputed company Learning, reputed company building workshops, leadership programs, mentorship connections, and networking opportunities
- Employee resource groups, service and recognition programs, and meaningful opportunities to connect, volunteer, and give back
Apply tot his job Apply To this Job