Lead Consultant - Digital Asset Security Compliance
Job Title: Lead Consultant - Digital Asset Security Compliance
Career Level - E
Job Description / Capsule
Strategising, implementing and delivering material improvements to the digital compliance state of AZ IT infrastructure and digital assets.
Develop and expand compliance improvements to external-facing digital assets, currently monitored by Security Scorecard and Bitsight
Real-world deployment of SBCs and subsequent automation of rollout and monitoring via toolsets such as Tanium Comply, JamF etc - amongst other solutions
Work closely with internal cross functional teams, suppliers, vendors, industry peers and related industry partners.
Typical Accountabilities
Own the plan, drivethe implementation progress (Not the actual end system fixes), own the successes and challenges of improving IT infrastructure and digital asset security technical compliance
Create and own the technical compliance policy, standards and supporting documentation of how AZ’s IT Infrastructure and Digital Assets are secured, monitored and reported
Challenge assumptions and current ‘norms’, overcoming organisation boundaries and constraints, ensuring that improved technical compliance is seen as the desired state for IT Infrastructure and Digital Assets across AZ
Identifynew technical and process opportunities where IT infrastructure and digital asset security technical compliance (machine-to-machine monitoring and improvementetc) should be performed
Identify the current vs ‘desired’ state and formulate strategies to holistically resolve technical compliance issues
Work across organisational boundaries (BTGs etc) and different stakeholders to construct milestone plans to resolve technical compliance issues
Develop centralised reporting capabilities to be able to dashboard / showcase the current position of technical compliance activities
Liaise with third-party suppliers to develop and maintain solutions that deliver technical compliance
Showcase achieved technical compliance achievements across the business, to further ‘evangelise’ the need for improved technical compliance for AZ IT Infrastructure and Digital Assets
Develop robust relationships with associated third-party vendors to ensure adequate ROI is realised for toolsets driving technical compliance of AZ IT Infrastructure and Digital Assets
Work with the Cyber Security Teamto understand Technical and Digital Compliancefunctional tower requirements and ensure alignment across strategic initiatives
Coach wider team for high performance, creating a supportive working environment where everyone has the opportunity to fulfil their potential
Work closely with internal cross functional teams, suppliers, vendors, industry peers and related industry partners
Influencestakeholders outside of Cyber Security via networking and team working skills
Demonstrate a proven ability to interpret and communicate technical instructions and desired outcomes
Identify priorities and critical strategic actions and be able to position these to senior leaders with benefit and value to be delivered.
Essential
3years+ experience working in a complex, multinational, corporate environment
A high level of ITknowledge, ideally with 2 years around Cyber Security
A deep understanding of various security technologies and processes
A relevant technical degree, competence or equivalent (CISSP, CISM, CCSP) and competence to lead various Security initiatives .
Excellent problem solving and troubleshooting skills, autonomous working, direction and goal setting
Strong written and verbal communication skills along with the proven ability to present complex, technical information to both technical and non-technical audiences
Be valued and respected for collaboration, integrity and enablement
Ability to analyse complex situations, assessing risks and balancing strategic and tactical Security requirements with business pragmatism, risk appetite and innovation
Ability to prioritise, re-schedule and adapt to changes in a dynamic environment
Excellent business acumen with sensitivity to environment
Experience working in a global organisation where stakeholders and team members are geographically dispersed.
Experience of Bight sight and or Security Scorecard' is required
Desirable
Experience of working in other IT disciplines and across a range of industries and sectors
Demonstrated leadership skills interacting with senior leaders
AstraZeneca embraces diversity and equality of opportunity. We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills. We believe that the more inclusive we are, the better our work will be. We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics. We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorisation and employment eligibility verification requirements.
