Executive Director & CISO

* Stay abreast of relevant laws, regulations, and industry standards.
* Ensure compliance with applicable security standards and frameworks.
* Collaborates and liaises with the data privacy officer to ensure that data privacy requirements are met.
* Represents Endo in interactions with government agencies, as needed.
* Demonstrated experience and success in senior leadership roles in risk management, information security, and IT or OT security.
* Bachelor’s degree or advanced degree in Information Security, Business Administration, or a technology-related field.
* 10+ years of experience operating in an Information Security Leadership and/or CISO role.
* Strong background in healthcare cybersecurity, especially medical device ecosystems
* Experience with developing, socializing, and executing a security roadmap for the business.
* In-depth knowledge of information security principles and best practices.
* Strong understanding of information security, data privacy laws, regulations, and standards.
* Professional security management certification is strongly desired, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials.
* Pharmaceutical industry experience strongly desired.
* Knowledge of regulations, frameworks, and standards, including NIST, ITIL, GDPR, and ISO.
* Understanding of FDA cybersecurity guidance, ISO 13485, IEC 81001-5-1, and NIST Cybersecurity Framework. understanding of FDA cybersecurity guidance, ISO 13485, IEC 81001-5-1, and NIST Cybersecurity Framework
* Knowledge of risk management frameworks and regulatory submission processes
* Expert knowledge and insight into threat vectors, ransomware risks, and data privacy regulations
* Expert knowledge of industry best practice methodologies
* Expert knowledge of available monitoring and threat-detection tools
* Knowledge of physical security, network and systems infrastructure, and security-related tools such as whitelisting, IDS/IPS, anti-malware, patch management, baselining, SIEM, access control, and firewalls.
* Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences at various hierarchical levels, ranging from board members to technical specialists.
* Experienced and skilled at presenting and public speaking (small and large groups); being able to engage and inspire personnel relating to areas of responsibilities.
* Strategic leader and builder of both vision and bridges and able to energize the appropriate teams in the organization.
* Excellent stakeholder management skills
* Excellent communication skills to translate technical risks into business impact
* Analytical thinking and problem-solving skills, with acute attention to detail, accuracy, and accountability balanced with sound business judgment.
* Project management skills
* Experience in financial/budget management
* A master of influencing entities and decisions in situations where no formal reporting structures exist, but achieving the desirable outcome is vital.
* Expertise in technical infrastructure, network architecture, and data movement
* Expertise in IT infrastructure (on-prem and IaaS), cloud technologies, identity management, data protection techniques
* Prior and currently active experience and membership with Security consortiums/groups
* Expertise in system monitoring and threat detection toolsets and techniques
* Excellent listening, analytical, and communication skills
* Exceptional interpersonal skills
* Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
*** Disclaimer:
** The above statements are intended to describe the general nature and level of work performed by employees assigned to this job. They are not intended to be an exhaustive list of all duties, responsibilities, and qualifications.  Management reserves the right to change or modify such duties as required.
* #J-18808-Ljbffr