Senior Manager, IT Security & Architecture
Catalyst Clinical Research
- North Carolina
- Permanent
- Full-time
Strategy:
- Lead Cybersecurity strategy and technology initiatives.
- Make strategic recommendations to company leadership on security posture.
- Conduct risk and vulnerability assessments.
- Identify security gaps, weaknesses, and threats.
- Ensure compliance with regulations, policies, and industry certifications.
- Prepare for and participate in audits as needed.
- Oversee selection and implementation of security software, platforms, systems, and controls.
- Configure and monitor security tools like detection and response tools.
- Collaborate with others in IT to build security into other platforms and technologies.
- Evaluate and onboard new cybersecurity vendors/technologies.
- Ensure incidents are responded to quickly and oversee investigations.
- Remediate security issues and implement improvements.
- Configure and manage physical security, disaster recovery and data backup systems.
- Develop and conduct security education and training awareness program.
- Create policies and guidelines to promote a culture of security.
- Manage IT Security Operations and System Administration staff.
- Provide leadership and mentorship to achieve company objectives.
- Identify staffing gaps and request resources as needed.
- Manage projects and deliverables in a Project Management tool.
- Facilitate (or complete if needed) on-time and quality delivery of:
- Server installation, configuration and maintenance;
- Physical and virtual network configuration and modification;
- System administration, configuration and troubleshooting;
- Patching of computers, servers, networking equipment, and software to prevent security issues.
discipline, or equivalent experience.Experience: A minimum of 10 years previous experience in IT and 5 years focused on Cybersecurity, preferably in the clinical CRO industry.Required Certifications: CISSP, CISM or equivalent industry certifications preferred.Required Skills:
- Deep knowledge of cybersecurity frameworks, controls, and best practices
- Experience with security technologies - SIEM, endpoint protection, vulnerability management, CASB
- Skilled in threat detection, incident response, and security operations processes
- Expertise in Azure security services and architecture
- Hands-on experience configuring identity and access management (IAM)
- Understanding of risk management principles and security audits
- Ability to communicate cyber risks and recommendations to executives.
- Excellent collaboration skills to partner with IT and business teams.
- Knowledge of applicable data security regulations and compliance.
- Strong leadership and project management abilities.
- Strategic thinking to align security initiatives with business goals.
- Skill in developing organization-wide security awareness programs.
- Passion for staying on top of the evolving cyberthreat landscape.
- Ability to manage priorities and workflow.
- Versatility, flexibility, and a willingness to work within constantly changing priorities.
- Proven ability to handle multiple projects and meet deadlines.
- Strong interpersonal skills.
- Strong communication and writing skills.
- Exemplify Catalyst values (Collaboration, Learning, Listening, Flexibility, and Commitment)