Cyber Security Solution Review Manager

**Positions are open to Mexican Citizens and official residents of Mexico.****Location: Guadalajara (hybrid)****Strong English interpersonal skills required**:**About the AstraZeneca**:**AstraZeneca is a global, science-led, patient-focused pharmaceutical company that focuses on the discovery, development, and commercialization of prescription medicines for some of the world’s most serious disease. But we’re more than one of the world’s leading pharmaceutical companies. At Astra Zeneca, we’re dedicated to being a Great Place to work**:**AstraZeneca is a global, science-led biopharmaceutical business whose innovative medicines are used by millions of patients worldwide. We are increasing our focus on leading with AI insights, accelerating delivery and innovation, optimizing how we run and prioritizing our people and sustainability.**:**Cyber Security will need to be the cornerstone of our IT strategy as we move towards our future objectives. Our goal is to protect patients by protecting ourselves.**:**We’re looking for Cyber Security professionals that can help us on the journey through this challenging and ever-changing technology landscape. Individuals who**:- ** Understand that security is a journey and not a destination. Cyber Security is not something that can be “fixed”, and we instead need to focus on innovation to maintain a sustainable risk position against the evolving threat landscape.**:- ** Have a passion for ensuring and maintaining the Confidentiality, Integrity, and Availability of the data that they are entrusted to protect.**:- ** Acknowledge that we are potentially working against state-sponsored attacks and multi-billion-dollar organized crime syndicates. So, they need to understand attackers, their motivations, and their ways of working to be able to get ahead and keep ahead of them.**:- ** Will do good things for AstraZeneca and our Cyber Security organization.**:**Accountabilities**:**In this role of Cyber Security Solution Review Manager, you’ll be part of AstraZeneca’s Cyber Security Governance organization to lead review and analyze solutions against established Cyber Security standards and best practices, to strengthen our security position across the enterprise. You will collaborate with Business, Solution Delivery, Architecture, Engineering, Quality and GRC functions across a global organization spanning US, UK, Sweden, China, Japan, Mexico, India and beyond.**:**The core accountabilities for the role include**:- ** Manage and lead the solution review processes and team, conducting security assessments of suppliers, IT solutions, software, and data transfer processes.**:- ** Drive continuous improvement of security assurance processes by analyzing and identifying innovative ways to simplify processes while maintaining a security by-design mindset and improving user experience.**:- ** Work closely with solution architects, solution engineering, and support functions to ensure that solutions are secure and align with AZ Security policies and guidelines.**:- ** Provide guidance and advice to solution architects and engineers on security considerations during solution design decisions.**:- ** Analyze whether security controls for a computer system are suitable based on an understanding of both use and context, and how the system will likely be attacked.**:- ** Conduct security architectural reviews throughout the project and solutions design lifecycle to identify and address potential security issues.**:- ** Keep up with the latest security trends and technologies considered for secure solution design to ensure the organization remains ahead of emerging threats.**:- ** Help drive awareness of security principles, policies, standards, and governance through the security solution review processes to foster a culture of security awareness within the organization.**:**Requirements**:- ** Must have 7+ years of direct experience in Cyber Security, and 3+ years of experience with IT Technologies & Architecture.**:- ** Experience being a team lead/manager/coach.**:- ** A deep understanding of Security Architecture and technologies including firewalls, proxies, SIEM, antivirus software, and IDPs.**:- ** Experience with security protocols, cryptography, authentication, authorization, and network security implementations.**:- ** Working knowledge of common attack techniques and their remediation/defence including DoS, DDoS, Social engineering, Virus, Malware, Vulnerability exploitation, Phishing & Spear Phishing, Worms, Trojans, Rootkits, Ransomware, XSS, SQL Injection, Remote Command Execution, Session Hijacking, etc.**:- ** Effective team management and coaching**:- ** Process analysis and improvement**:- ** Security Architecture and solution design.**:- ** Ability to think critically and innovatively about keeping data safe within a solution while still allowing the business to operate and grow.**:- ** Ability to prior