Associate Director Cybersecurity Operations amp Threat Intelligence

Profile

Who We Are It takes a village, and at BioMarin our corporate groups are the people behind our success. Groups such as IT, Finance, Legal, Global Compliance & Ethics, and our People Team provide foundational support of all areas of operation at BioMarin. Reporting to the Global Head of Cybersecurity, The Associate Director of Cybersecurity Operations & Threat Intelligence, is responsible for BioMarin\u2019s cybersecurity Operations, threat intelligence, incident management, and\u00A0Cybersecurity Operations Center (CSOC) capabilities.\u00A0This person will also be a key member of the Cybersecurity Leadership Team and will help to build and operate the cybersecurity\u00A0program\u00A0as\u00A0a\u00A0whole.\u00A0A key element of this role is working\u00A0cross functionally\u00A0at all levels\u00A0across BioMarin to develop, maintain, and execute\u00A0company\u2019s\u00A0cybersecurity\u00A0incident\u00A0response\u00A0plan (Cybersecurity-IRP).\u00A0\u00A0The\u00A0ideal candidate will have a broad understanding of all cybersecurity capabilities, with deep expertise in building and operating threat, incident, and security operations capabilities.\u00A0 This person will need to be proficient in managing technical teams, partnering with peers in all functions, and communicating to senior executives. Responsibilities: Build, mature, and operate\u00A0tactical and strategic cybersecurity threat intelligence capability.\u00A0 Ensure\u00A0output from this\u00A0capability\u00A0is fed into\u00A0cybersecurity\u00A0identification, protection, and response capabilities. Manage\u00A0cybersecurity incident management capability.\u00A0Act as cybersecurity incident manager.\u00A0\u00A0Train personnel and build redundancy into\u00A0capability to ensure optimal execution and\u00A0predictability.\u00A0Partner\u00A0with Global Compliance & Ethics team to\u00A0connect cybersecurity incident management with crisis management and business continuity processes. Manage 24x7 Cybersecurity Operations Center (CSOC).\u00A0Ensure that\u00A0this capability is highly process driven\u00A0and\u00A0able to\u00A0respond to\u00A0cybersecurity events and incidents\u00A0rapidly and effectively. Establish long-term roadmap for threat, incident, and CSOC capabilities\u00A0to ensure that these\u00A0they\u00A0continue to provide value\u00A0to BioMarin\u00A0and achieve agreed upon maturity and performance goals. Supports the maturing of the organization's cybersecurity detection capabilities and key information security programs (i.e., Vulnerability Management), and technologies (i.e., SIEM, Endpoint Protection, Intrusion Detection). Actively streamline and simplify workflows and processes; Use automation and orchestration for improved efficiencies where possible. Manage FTE and\u00A0contract\u00A0resources in the delivery of BioMarin\u2019s threat, incident, and CSOC capabilities.\u00A0Establish a\u00A0multi-year workforce plan\u00A0to ensure that resourcing\u00A0keeps\u00A0pace with business need. Establish and monitor key performance indicators for threat, incident, and CSOC capabilities\u00A0and\u00A0ensure\u00A0that performance\u00A0goals are achieved. Work with Global Head of Cybersecurity and other members of the Cybersecurity Leadership Team to establish and execute a long-term cybersecurity roadmap that appropriately addresses the cybersecurity risks to BioMarin. Develop and refine playbooks, workflow, and process mapping ensuring proper escalation and handoffs with Cybersecurity, Privacy, Legal, Physical Security and Business Facing IT teams. Develops and maintains Key Performance Indicators (KPIs) and metrics, providing weekly and monthly reports to senior management. Work cross-functionally at all levels of the organization to build and operate cybersecurity incident management capabilities to reduce the likelihood and impact of cybersecurity incidents.\u00A0Other Requirements: 4-year degree in computer science or related combined work/education experience. Professional security management certification preferred (e.g., CISSP, CISM). Minimum of\u00A07-10\u00A0years of experience in a\u00A0cybersecurity leadership\u00A0role. Strong hands-on experience in related cybersecurity technologies and tools. Including but not limited to Next Generation Firewalls (NGFW), Web Application Firewalls (WAP), Unified Threat Management (UTM), Security Information and Event Management (SIEM), Network Access Control (NAC), Endpoint Detect and Response (EDR), security appliances, software, and vendor specific utilities. Knowledge of common information security management frameworks and practices, such as US NIST Cybersecurity Framework (CSF), ISO/IEC 27001, GDPR, and HIPAA. Knowledge of Mitre ATT&CK, Diamond Model, CVSS, and industry standard threat modeling. Experience working with\u00A0Biotech\u00A0or Pharmaceutical companies a plus. PLEASE NOTE: Absent a Medical or Religious reason that prohibits vaccinations, all our incoming employees must be vaccinated for COVID-19. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity, sexual orientation, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Company info

BioMarin Pharmaceutical Inc.
Website : http://www.biomarin.com