Business Information Security Official (BISO)
Amgen is searching for a Business Information Security Official (BISO) who will report to the Manager Information Systems and will be based in Tampa, FL, at Amgen s new Capability Center. At Amgen, our mission is simple: to serve patients. Our new Tampa Capability Center provides essential services that enable us to better pursue this mission. This state-of-the art center serves as a base for finance, information systems, and human resources professionals to make a meaningful impact at one of the world s leading biotechnology companies.
As a member of the Business Information Security Team, the Business ISO will engage with key business stakeholders to ensure Amgen s information security strategy, standards, policies, and procedures are aligned accordingly to dynamic business objectives. They will be responsible for educating business functions on information security services and process by developing and implementing comprehensive branding, communication, staff awareness and change management strategies. In addition, the Business ISO will oversee the coordination and management of Information Security s resources directly to the business functions. They will interact with key leadership, staff, and external vendors. Travel requirements may vary as they depend on specific client-facing engagements.
Serve as the business-facing lead for the Information Security organization to enable strong understanding and alignment of business needs, control objectives, and risk appetite
Implement Information Security s strategy, standards, policies and procedures across the business functions and oversee compliance of information security program objectives within business functions
Advise the business on Information Security s services, processes, and available resources and ensure proper alignment with business objectives
Facilitate general information security consulting services and communicate security threats, vulnerabilities, control objectives, and risks; ensure security by design across all business function s emerging systems, network enclaves, and applications
Coordinate and manage Information Security s resources for all business function initiatives to include efficient and proper usage of Amgen s Decision, Advice, Informed Stakeholder model
Serve as the first point of contact and escalation for all business information security matters; serve as the business security incident response coordinator and advisor on emergency actions to protect the business
Develop insightful strategies for engaging the Amgen business functions on information security matters and gain buy-in from Amgen s functional business leaders to define what the business requires from information security
Collaborate with Corporate Communications, IS training, GSS and other functions to lead and coordinate the information security change management effort around branding, communications, staff awareness and training
Work cross-functionally to identify and remove stakeholder resistance and other barriers to progress tighter cohesion of information security with the business
Master s degree and 3 years of Information Systems experience
Bachelor s degree and 5 years of Information Systems experience
Associate s degree and 10 years of Information Systems experience
High school diploma / GED and 12 years of Information Systems experience
Previous managerial experience directly managing people and/or experience leading teams, projects, programs or directing the allocation of resources
5+ years of experience in leading cross-functional strategic business initiatives and / or process improvement and / or strategic executive level decision-making
5+ years of IT/Business experience
3+ years of IT Security experience
Proven working knowledge of Risk Management, Information Security, Controls, and IT Audit practices or some combination thereof
Comprehensive working knowledge of industry standards (ISO, COBIT, COSO, ITIL, NIST)
Master s degree in business or information systems or equivalent experience
3+ years of experience within biotechnology / pharmaceutical industry
Exceptional teaming skills encompassing cross-functional teams, peer relationships, informing, understanding and appreciating differences
Strong ability to convey and influence complex information risk and security issues in a manner that is easily understood and actionable
Effective communication with senior leadership and medium to large audience discussions / presentations
Demonstrated ability to effectively facilitate and drive organizational change
Developing / delivering presentations to large audiences and at all levels within the organization
Working in large / global corporate environments involving multiple businesses
Experience applying change management methodologies
Proven experience as a member and leader of a high performing team
One or more of the following certifications, including but not limited to:
Certified Information Security Manager (CISM)
Certified Information Systems Security Professional (CISSP)
SANS Global Information Assurance Certifications (GIAC)
Certified in Risk & Information Systems Control (CRISC)
Certified Information Systems Auditor (CISA)
Amgen is committed to unlocking the potential of biology for patients suffering from serious illnesses by discovering, developing, manufacturing and delivering innovative human therapeutics. This approach begins by using tools like advanced human genetics to unravel the complexities of disease and understand the fundamentals of human biology.
Amgen focuses on areas of high unmet medical need and leverages its expertise to strive for solutions that improve health outcomes and dramatically improve people s lives. A biotechnology pioneer since 1980, Amgen has grown to be one of the world s leading independent biotechnology companies, has reached millions of patients around the world and is developing a pipeline of medicines with breakaway potential.
The invaluable contributions of our talented Tampa team will help us develop the vital and innovative medicines that treat serious illness and unmet medical needs around the globe.
Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.
Associated topics: identity access management, idm, information security, leak, malicious, phish, security engineer, threat, violation, vulnerability