Cybersecurity Manager Vision Commercial

About The Position

Requirements

• Bachelor’s degree in cybersecurity, computer science, information technology, business administration, or another rigorous discipline is required.
• 5+ years of working in IT and/or Engineering with a security focus is required, including hands-on implementation level understanding of key security technologies and controls (e.g., access control, IDP/IDR, anti-malware, patch management, encryption technologies, forensics etc.)
• Comprehensive knowledge of security technology, tools and techniques utilized in enterprise IT and digital business environments, including identity, endpoint, network, cloud, and enterprise commercial platform security capabilities.
• Direct working and/or supporting experience for MedTech commercial functions, including support for sales, market access, digital marketing, e-commerce, commercial operations, and the enterprise commercial technologies that enable customer engagement and commercial execution, with preferred experience supporting Vision commercial teams.
• Experience in leading/performing security assessments and providing security assurance across various levels of the enterprise architecture (data, application, host, middleware, network, Infrastructure) to ensure data protection
• Solid understanding of current security threats, mitigation measures, and security vendors/technologies.
• Experience with cloud security (e.g., AWS, Azure)
• Experience with security standards (ISO27001, HiTrust, NIST, etc.) is required.
• Fluency in English required.

Nice To Haves

• Masters strongly preferred.
• Certifications in cybersecurity (CISM, CISSP, etc.), audit (CISA), or risk management (CRISC) are preferred.
• Awareness of security trends in process, tooling, and threats
• Good understanding and exposure to data visualization tools such as PowerBI, Tableau etc.
• Big picture perspective and attention to detail focus to align strategic and tactical security aspects.
• Ability to collaborate, network and influence all levels of the organization, cross sector, cross-function and global and establish oneself as an inspiring leader with expertise in space.
• Excellent communication and collaboration skills, able to network, interface and influence at all levels of the organization, cross sector, cross-functionally and globally.
• Strategic mindset to develop capability roadmaps that will enable proactive reliability through data & automation.
• Experience leading and influencing security audits (e.g., SOC Type 2 reporting, PCI, ISO 27001) is preferred.
• Proficiency in other languages is a plus.

Responsibilities

• Provide early/proactive engagement with project teams to drive business understanding and execution of the security capabilities and services needed for innovative technology solutions; End to end support for large programs.
• Provide tailored security guidance (based on risk and complexity) - interpret & apply the Asset Protection Policy (IAPP) requirements and standards for unique technology and business initiatives.
• Drive cybersecurity adoption across Vision Commercial teams and markets, including sales, market access, digital marketing, e-commerce, and commercial operations, to secure go-to-market processes, end-user technologies, and enterprise commercial platforms.
• Drive the strategy and adoption of cybersecurity best practices across commercial operations to protect patient, customer and business data across enterprise commercial platforms, digital engagement capabilities, and core commercial workflows.
• Lead the cyber operational portfolio from identification > consulting remediation plan > completion partnering across ISRM, business, and technology teams.
• Establish data analytics to provide security posture across the business units, functions, and sites.
• Assist the Cyber Defense Center (CDC) with security incident investigation activities; work closely with business teams to support affected users and provide liaison with central investigation team.
• Drive business understanding of critical cybersecurity, privacy, and data protection requirements relevant to enterprise commercial platforms, digital engagement capabilities, and commercial data flows, ensuring solutions are compliant (NIST, ISO27001, NIS2, HDS, PGSSI-S, SOX, etc).
• Support the global deployment of security initiatives with awareness sessions, identify alternative ways of working to avoid business disruptions and review exception requests.
• Drive and manage security gap assessments and remediation efforts for Vision Commercial capabilities, including support for new market, platform, or business integration activities.

Benefits

• an annual bonus with set target (% of pay) depending on pay grade / location, where the actual amount is based on the employees’ and companies’ performance of the previous calendar year, or sales commissions.
• vacation days
• parental leave for a minimum of 12 weeks
• bereavement leave
• caregiver leave
• volunteer leave
• well-being reimbursement
• programs for financial, physical and mental health.
• service anniversary and recognition awards
• several insurance plans