Kyowa Kirin
Senior Director, Information Technology Security
Kyowa Kirin, Princeton, New Jersey, us, 08543
Kyowa Kirin
The Kyowa Kirin Group is a Japanese pharma group that develops innovative specialty drugs, to raise the health and well-being of people around the world. Its flagship business Kyowa Kirin Co., Ltd. creates antibody-based drugs for cancer.Kyowa Kirin is a fast-growing global specialty pharmaceutical company that applies state-of-the-art biotechnologies to discover and deliver novel medicines in four disease areas: bone and mineral; intractable hematologic; hematology oncology; and rare disease. A Japan-based company, our goal is to make people smile by delivering breakthroughs where no adequate treatments currently exist, working from drug discovery to product development and commercialization. In North America, we are headquartered in Princeton, NJ, with offices in California, Massachusetts, and Ontario.The Senior Director, Information Technology Security
is responsible for protecting the network and attached systems against internal and external threats; physical and in cyber space. This position ensures security devices are properly configured and fit for purpose and will play a key role working with HQ based global teams and external security vendors ensuring computer services, systems and practices contribute to overall data and network security. Further, this position will ensure monitoring and analysis practices are in place to help ensure IT security issues are identified and mitigated.Essential Functions:Managing NA IT cyber security risk aligning with both global direction and regional requirements.Implement and monitor security measures for the protection of computer systems, network and data.Responsible for network traffic monitoring.Identify and define system security.Design computer security architecture and develop detailed cyber security designs.Prepare and document standard operating procedures and protocols for security best practices.Configure and troubleshoot security infrastructure devices.Develop technical solutions and new security tools to help mitigate security vulnerabilities.Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.Work with global teams on security related matters.Conduct Penetration Testing.Manage Third Party Risk Management security program.Network threat detection and response.Implementation of controls to reduce IT risks in cloud and co-location environments.Support the implementation of Information Security Programs.Advise on Active Directory best security practices.Evaluate and recommend end-point best practices and systems.Vulnerability management of IT systems.Review and execute the incident response plan; play key role on the incident response team.Develop relevant metrics, analyze data, identify trends and help drive improvements to the control environment.Develop SOPs, in close collaboration with relevant areas, for NA IT to achieve strong governance in System Development and Operation, Asset Management, Strategy Development and Service and Asset Procurement.Actively participate at both the global and regional level to ensure IT security meets business objectives.Maintain a high degree of security capabilities in threat mitigation, detection and response throughout all IT systems. Support security initiatives in global systems and Third Party vendors.Support other IT departments delivering on key initiatives.Perform vendor security audits and screenings as needed, based on best practices.Education:Bachelor’s degree in security engineering or related field required. CISSP, CISA, CISM or equivalent certification required.Experience:At least 5 years of industry experience. Proven work experience as a System Security Engineer or Information Security Engineer – working knowledge of NIST framework. Experience in building and maintaining security systems. Detailed technical knowledge of database and operating system security. Hands-on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc. Experience with network security and networking technologies and with system, security, and network monitoring tools. Thorough understanding of the latest security principles, techniques, and protocols.Technical Skills:Proficient in MS Office Suite.Non-Technical Skills:Problem solving skills and ability to work under pressure. Business and strategic acumen and ability to manage expanding levels of complexity. Excellent verbal and written communication skills and executive presence. Broad level of interpersonal skills and flexibility. Cultural sensitivity and ability to develop consensus within a multinational organization.
#J-18808-Ljbffr
The Kyowa Kirin Group is a Japanese pharma group that develops innovative specialty drugs, to raise the health and well-being of people around the world. Its flagship business Kyowa Kirin Co., Ltd. creates antibody-based drugs for cancer.Kyowa Kirin is a fast-growing global specialty pharmaceutical company that applies state-of-the-art biotechnologies to discover and deliver novel medicines in four disease areas: bone and mineral; intractable hematologic; hematology oncology; and rare disease. A Japan-based company, our goal is to make people smile by delivering breakthroughs where no adequate treatments currently exist, working from drug discovery to product development and commercialization. In North America, we are headquartered in Princeton, NJ, with offices in California, Massachusetts, and Ontario.The Senior Director, Information Technology Security
is responsible for protecting the network and attached systems against internal and external threats; physical and in cyber space. This position ensures security devices are properly configured and fit for purpose and will play a key role working with HQ based global teams and external security vendors ensuring computer services, systems and practices contribute to overall data and network security. Further, this position will ensure monitoring and analysis practices are in place to help ensure IT security issues are identified and mitigated.Essential Functions:Managing NA IT cyber security risk aligning with both global direction and regional requirements.Implement and monitor security measures for the protection of computer systems, network and data.Responsible for network traffic monitoring.Identify and define system security.Design computer security architecture and develop detailed cyber security designs.Prepare and document standard operating procedures and protocols for security best practices.Configure and troubleshoot security infrastructure devices.Develop technical solutions and new security tools to help mitigate security vulnerabilities.Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.Work with global teams on security related matters.Conduct Penetration Testing.Manage Third Party Risk Management security program.Network threat detection and response.Implementation of controls to reduce IT risks in cloud and co-location environments.Support the implementation of Information Security Programs.Advise on Active Directory best security practices.Evaluate and recommend end-point best practices and systems.Vulnerability management of IT systems.Review and execute the incident response plan; play key role on the incident response team.Develop relevant metrics, analyze data, identify trends and help drive improvements to the control environment.Develop SOPs, in close collaboration with relevant areas, for NA IT to achieve strong governance in System Development and Operation, Asset Management, Strategy Development and Service and Asset Procurement.Actively participate at both the global and regional level to ensure IT security meets business objectives.Maintain a high degree of security capabilities in threat mitigation, detection and response throughout all IT systems. Support security initiatives in global systems and Third Party vendors.Support other IT departments delivering on key initiatives.Perform vendor security audits and screenings as needed, based on best practices.Education:Bachelor’s degree in security engineering or related field required. CISSP, CISA, CISM or equivalent certification required.Experience:At least 5 years of industry experience. Proven work experience as a System Security Engineer or Information Security Engineer – working knowledge of NIST framework. Experience in building and maintaining security systems. Detailed technical knowledge of database and operating system security. Hands-on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc. Experience with network security and networking technologies and with system, security, and network monitoring tools. Thorough understanding of the latest security principles, techniques, and protocols.Technical Skills:Proficient in MS Office Suite.Non-Technical Skills:Problem solving skills and ability to work under pressure. Business and strategic acumen and ability to manage expanding levels of complexity. Excellent verbal and written communication skills and executive presence. Broad level of interpersonal skills and flexibility. Cultural sensitivity and ability to develop consensus within a multinational organization.
#J-18808-Ljbffr