Executive Director, I.T.- Head of Security Architecture, Engineering, and Delive
Gilead Sciences, Inc., Foster City, California, United States, 94420
Gilead Sciences, Inc. is a research-based biopharmaceutical company founded in 1987. Together we deliver life-saving therapies to patients in need. With the commitment and drive you bring to the workplace every day, you will be part of a team that is changing the world and helping millions of people live healthier, more fulfilling lives. Our worldwide staff is a close community where you can see the tangible results of your contributions, where every individual matters, and everyone has a chance to enhance their skills through ongoing development. Our scientific focus has resulted in marketed products that are benefiting hundreds of thousands of people, a pipeline of late-stage drug candidates, and unmatched patient access programs to ensure medications are available to those who could otherwise not afford them. By joining Gilead, you will further our mission to address unmet medical needs and improve life by advancing the care of patients with life-threatening diseases. Specific Responsibilities & Skills
The **Head of Security Architecture, Engineering, and Delivery** is a missioncritical leader responsible for safeguarding the integrity of Gilead’s scientific data, digital assets, and operational environments. Reporting to the CISO and serving as **Deputy CISO** **This is a site based role in Foster City, CA at our global headquarters. Remote work is not available for this particular position. We do offer optional work from home days on Monday and Friday with core colaboration days in the office.**, this role will direct the teams that architect, engineer, and deliver enterprise security capabilities that protect employees, patients, and the research that fuels Gilead’s innovation. As a senior member of the cross-functional Security Risk and Compliance organization, this leader will partner closely across Security Operations, Risk, Data Privacy, QA, Infrastructure, Network, and Business IT to translate complex and often ambiguous security requirements into clear guidance, ensuring the organization can innovate confidently while maintaining a strong security posture. in security policy, regulatory compliance, technology strategy, and secure development practices with the ability to navigate ambiguity and influence senior stakeholders. Acting as a
Expert level knowledge of Cyber Security capability areas, including Risk assessment and management, Identity and Access Management, Endpoint Security, Network Security, Platform Security, and application security.
Able to function as a Deputy CISO.**Strategic mindset with the ability to execute:** - Position Security as a key requirement to support business operations and understand the value of scalable and efficient technical solutions that provide visibility to threats and allows team the ability to quickly respond to and block threats with low operational overhead and technical debt. - Serve as a trusted advisor to leaders within Business functions and IT and supports their mission. Partner with senior IT Security leadership to create technology strategies that support the objectives of their functions. Understand the value drivers of the Business and ensures IT Security solutions consider the balance between Security and User experience.
Strong ability to partner with Managed Service providers and manage them to agree upon outcomes.**Leadership:** Proven ability to build, develop, and lead teams and rally organization around the vision Key responsibilities for this position include (but are not limited to): Ensure IT activities, processes, and procedures meet defined requirements, policies and regulationsWork with Internal Audit, Project Managers, System Managers and Engineers - Track project findings, identify and resolve issues, analyze evidence, communicate with stakeholders, and facilitate the completion of cybersecurity related projects SKILLS & EXPERIENCE 16+ years of relevant experience 12+ years of cybersecurity professional experience, risk management, and governance practiceA minimum of 8-10 years of leadership responsibilities.Knowledge of information security risk management frameworks and compliance practices Knowledge of securing network technologies, client, and server operating systems Strong knowledge of Secure Software Development Lifecycle (SDLC) processes and methodologies
Excellent interpersonal, communication, and presentation skills, including formal writing experience to assess complex multi-location projects as well as Strong customer service orientation and the ability to project that attitude to customers in remote locationsPrevious work experience in a Biopharma organization is a plusPrevious work experience in a cloud centric environment is a plusPrevious Deputy CISO or equivalent experience is a plus #J-18808-Ljbffr
The **Head of Security Architecture, Engineering, and Delivery** is a missioncritical leader responsible for safeguarding the integrity of Gilead’s scientific data, digital assets, and operational environments. Reporting to the CISO and serving as **Deputy CISO** **This is a site based role in Foster City, CA at our global headquarters. Remote work is not available for this particular position. We do offer optional work from home days on Monday and Friday with core colaboration days in the office.**, this role will direct the teams that architect, engineer, and deliver enterprise security capabilities that protect employees, patients, and the research that fuels Gilead’s innovation. As a senior member of the cross-functional Security Risk and Compliance organization, this leader will partner closely across Security Operations, Risk, Data Privacy, QA, Infrastructure, Network, and Business IT to translate complex and often ambiguous security requirements into clear guidance, ensuring the organization can innovate confidently while maintaining a strong security posture. in security policy, regulatory compliance, technology strategy, and secure development practices with the ability to navigate ambiguity and influence senior stakeholders. Acting as a
Expert level knowledge of Cyber Security capability areas, including Risk assessment and management, Identity and Access Management, Endpoint Security, Network Security, Platform Security, and application security.
Able to function as a Deputy CISO.**Strategic mindset with the ability to execute:** - Position Security as a key requirement to support business operations and understand the value of scalable and efficient technical solutions that provide visibility to threats and allows team the ability to quickly respond to and block threats with low operational overhead and technical debt. - Serve as a trusted advisor to leaders within Business functions and IT and supports their mission. Partner with senior IT Security leadership to create technology strategies that support the objectives of their functions. Understand the value drivers of the Business and ensures IT Security solutions consider the balance between Security and User experience.
Strong ability to partner with Managed Service providers and manage them to agree upon outcomes.**Leadership:** Proven ability to build, develop, and lead teams and rally organization around the vision Key responsibilities for this position include (but are not limited to): Ensure IT activities, processes, and procedures meet defined requirements, policies and regulationsWork with Internal Audit, Project Managers, System Managers and Engineers - Track project findings, identify and resolve issues, analyze evidence, communicate with stakeholders, and facilitate the completion of cybersecurity related projects SKILLS & EXPERIENCE 16+ years of relevant experience 12+ years of cybersecurity professional experience, risk management, and governance practiceA minimum of 8-10 years of leadership responsibilities.Knowledge of information security risk management frameworks and compliance practices Knowledge of securing network technologies, client, and server operating systems Strong knowledge of Secure Software Development Lifecycle (SDLC) processes and methodologies
Excellent interpersonal, communication, and presentation skills, including formal writing experience to assess complex multi-location projects as well as Strong customer service orientation and the ability to project that attitude to customers in remote locationsPrevious work experience in a Biopharma organization is a plusPrevious work experience in a cloud centric environment is a plusPrevious Deputy CISO or equivalent experience is a plus #J-18808-Ljbffr