This role is responsible for advancing the cybersecurity posture and hygiene of a global biopharma organization through technical expertise, automation, and the thoughtful integration of artificial intelligence. As a senior contributor, you will lead initiatives that ensure secure, compliant configurations across diverse IT environments.
Key Responsibilities
- Guide and mentor junior team members, providing technical direction to strengthen security practices and program effectiveness
- Apply risk-based prioritization to identify and address configuration deviations across systems
- Design and implement scripts that interact with application APIs to collect and validate security posture data
- Build and maintain dashboards and alerting systems to track configuration changes and communicate remediation needs
- Work with engineering teams and stakeholders to define and document CIS security baselines aligned with internal standards
- Identify and integrate relevant systems into the organization’s posture and hygiene monitoring framework
- Ensure continuous compliance for both on-premises and hosted infrastructure by monitoring for configuration drift
- Leverage a practical understanding of AI and machine learning, particularly in detecting threats and automating responses
- Oversee the responsible use of AI in security workflows, including validating model outputs and ensuring human oversight where necessary
- Adhere to corporate policies related to data security, safety, GxP, code of conduct, and software development lifecycle requirements
Qualifications
- Proven experience in leading cybersecurity initiatives and mentoring team members
- Skill in using risk-based methods to prioritize security remediation
- Ability to write scripts that extract security data via APIs
- Experience building monitoring dashboards and alerting systems
- Track record of collaborating with engineers to establish and document security baselines
- Demonstrated success in enforcing platform compliance across hybrid environments
- Familiarity with AI and machine learning concepts as applied to cybersecurity
- Experience validating AI-generated insights and ensuring balanced automation in security processes
- Knowledge of CIS benchmarks and ability to adapt them to organizational needs
- Understanding of corporate governance, compliance frameworks, and secure development practices
Technology Environment
APIs, CIS baselines, artificial intelligence, machine learning, cybersecurity posture platforms, configuration monitoring tools, and dashboarding and alerting systems.
