The Head of IT Global Infrastructure Security Engineer is responsible for building out the organizational capabilities to lead and manage Eisai’s security engineering activities related to Identity & Access Management, Network Security, Endpoint security and X (Anything) as a Service Security. The role includes (but not limited to) securing Cloud computing, on-premises data centers, network topology, endpoints (PCs, Printers, mobile devices, etc), and strategic infrastructure platforms such as O... more details
At Eisai, satisfying unmet medical needs and increasing the benefits healthcare provides to patients, their families, and caregivers is Eisai’s human health care (hhc) mission. We’re a growing pharmaceutical company that is breaking through in neurology and oncology, with a strong emphasis on research and development. Our history includes the development of many innovative medicines, notably the discovery of the world's most widely-used treatment for Alzheimer’s disease. As we continue to expand, we are seeking highly-motivated individuals who want to work in a fast-paced environment and make a difference. If this is your profile, we want to hear from you.
Job Summary
The Head of IT Global Infrastructure Security Engineer is responsible for building out the organizational capabilities to lead and manage Eisai’s security engineering activities related to Identity & Access Management, Network Security, Endpoint security and X (Anything) as a Service Security. The role includes (but not limited to) securing Cloud computing, on-premises data centers, network topology, endpoints (PCs, Printers, mobile devices, etc), and strategic infrastructure platforms such as Office 365. The role is directly accountable for Eisai’s first line of defense. This role reports to the Global Infrastructure Operations Head and will dotted line report into the Global Security & Compliance team (second line of defense). The primary objective of this position is to leverage sound technical acumen to ensure the confidentiality, integrity, and availability of the organization's global IT infrastructure, while actively remediating and mitigating potential security threats and vulnerabilities.
Responsibilities:
1. Provide global strategic technical direction related to security:
Develop and implement a comprehensive technical strategy for IT infrastructure security engineering, aligning with the organization's overall security objectives and industry best practices.
2. Leadership and management:
Lead a team of infrastructure technical security professionals across the globe, fostering a culture of excellence, collaboration, and continuous improvement. Provide coaching, guidance, and support to team members, ensuring their professional development goals can be achieved.
3. Identity and Access Management (IAM):
Oversee staff in the development, implementation, and maintenance of effective IAM processes and controls, ensuring proper user access provisioning, authentication, and authorization across various platforms. IAM processes and controls execution should include, but are not limited to, routine monitoring of user access management solutions at the network, application and information layers as well as oversight of Privileged Account Management procedures. IAM will require close collaboration with authentication teams (Active Directory and/or Azure AD) and the Security & Compliance team which are not directly under the Infrastructure Security organization.
4. Security incident drills and response:
Collaborate with the Global Security & Compliance team to develop and maintain an incident response plan, which includes incident detection, analysis, containment, eradication, and recovery procedures. This role is responsible to ensure proper resources are deployed to execute against the plan, coordinate with internal stakeholders to promptly respond to security incidents, minimize impact, and prevent future occurrences. This role will be required to provide input into vulnerability management, risk management, security architect, security operations center operations, red/blue team drills, and data protection practices.
5. Security monitoring and threat intelligence:
Collaborate with the Global Security & Compliance team to Implement and manage robust security monitoring and threat intelligence systems to detect and respond to potential security threats and vulnerabilities. This role must stay abreast of emerging security technologies and trends to continuously enhance the organization's security posture. This role will ensure security platforms are configured for optimal protection.
6. Security controls and compliance:
Collaborate with internal and external stakeholders to ensure compliance with relevant security standards, frameworks, and regulations. Establish and maintain effective security controls and processes to protect the organization's infrastructure assets.
7. Risk assessment and mitigation:
Collaborate with the Global Security & Compliance team to conduct regular risk assessments to identify potential security risks and vulnerabilities. Develop and execute risk mitigation plans, working closely with cross-functional teams to implement necessary security measures.
8. Incident reporting and documentation:
Collaborate with the Global Security & Compliance team to prepare and deliver comprehensive incident reports, including root cause analysis and recommended remediation actions. Maintain accurate documentation of security incidents, policies, procedures, and infrastructure configurations.
9. Vendor management:
Collaborate with vendors, service providers, and internal stakeholders to evaluate and select security solutions and services, ensuring they align with the organization's security requirements and objectives.
10. Stakeholder collaboration:
Foster strong working relationships with key stakeholders, including the Global Security & Compliance team, global IT Infrastructure Security network, and other relevant teams. Collaborate on cross-functional projects and initiatives to enhance the organization's overall security posture.
Qualifications and Experience:
- Bachelor's degree in Computer Science, Information Security, or a related field (Master's degree preferred).
- Relevant industry certifications such as CISSP, CISM, Certified White Hacker, or GIAC preferred.
- Proven deep technical experience (10 years) in IT infrastructure security engineering, including IAM, across cloud and on-premise environments and network security.
- Strong leadership and management skills, with experience in leading and developing high-performing teams.
- In-depth knowledge of security frameworks, standards, and regulations (e.g., ISO 27001, NIST, GDPR).
- Expert knowledge and experience driving change through IT Service Management methodologies leveraging key ITIL principles for service introduction & transition and continuous improvement through service operations.
- Demonstrated expertise in incident response, threat intelligence, security controls, and risk management.
- Solid understanding of protocols (ie., SAML, SMB, RDP, UDP, TCP, OAuth and LDAP model).
- Experience with security monitoring tools and technologies, including SIEM, IDS/IPS, and endpoint security solutions.
- Strong understanding of cloud security best practices and technologies (e.g., AWS, Azure, Office 365).
- Foundational understanding of Zero Trust Architecture and use of PDP and PEP policies.
- Ability to operate and deliver in a highly matrixed environment through influence and oversight of managed service provider (“MSP”) resources.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively with diverse stakeholders at all levels of the organization. Must be able to present complex technical topics to non-technical audiences.
- Proven ability to work in a fast-paced, dynamic environment and manage
multiple priorities simultaneously.
- Off-hours availability for security related emergencies is a must for this role
- Due to the global nature of this role, a valid passport and availability to travel is required to other Eisai locations included but not limited to EMEA, Americas, Japan, and APAC. Travel time is expected to be limited up to 15% per year.
#LI-JL1
# IND 123
Eisai is an equal opportunity employer and as such, is committed in policy and in practice to recruit, hire, train, and promote in all job qualifications without regard to race, color, religion, gender, age, national origin, citizenship status, marital status, sexual orientation, gender identity, disability or veteran status. Similarly, considering the need for reasonable accommodations, Eisai prohibits discrimination against persons because of disability, including disabled veterans.
Eisai Inc. participates in E-Verify. E-Verify is an Internet based system operated by the Department of Homeland Security in partnership with the Social Security Administration that allows participating employers to electronically verify the employment eligibility of all new hires in the United States. Please click on the following link for more information:
Right To Work
E-Verify Participation