Drive global cybersecurity operations, implementing defense strategies and managing risk and vulnerability processes.

Lead the execution of global cyber defense strategies, manage risk and vulnerability management processes, and develop and maintain the company's security architecture.

Collaborate with cross-functional teams to design and implement secure infrastructure and application solutions.

Formulate and integrate cybersecurity strategies into a companywide strategic plan.

• Develop detection and protection measures to anticipate future internal and external trends and implications.
• Build understanding of cyber threats at each level and lead the technical solution implementations to defend against disruptive or destructive cyberattacks.

Manage security incident response processes, including tracking resolutions and ensuring known issues are addressed according to risk management methodology.

• Lead monthly operational meetings between the SOC team and the company to improve overall process and ensure KPIs are achieved.
• Verify and continuously improve the recovery process during or after a security incident to ensure it meets business requirements and is effective and practical.

Manage technical risk assessments of all new global solutions and third-party vendors, identifying potential gaps and making sound recommendations for mitigating risks on a global scale.

• Implement the Internal Cybersecurity Framework to support state-of-the-art technologies and company regulatory and organizational requirements.

Develop and own the budget proposal for the cybersecurity domain in accordance with company guidance on budget directions.

• Ensure financial governance and efficient use of resources to meet business objectives.

Perform ongoing security maturity level assessments to evaluate the effectiveness of security controls and explain the effectiveness to project teams, business stakeholders, and senior management.

Education:

Bachelor's degree in Business, Computer Sciences, Engineering, or related field.

Experience:

Minimum 10 years' experience in Information Systems, including 7 years in Information Security, Cybersecurity, Risk Management, and:

• Cross-functional leadership and stakeholder relationship management.
• Successfully implementing global cybersecurity programs and systems.
• Implementing a risk-based cybersecurity framework.
• Expert knowledge/experience with program implementations such as ISO, NIST CSF, COBIT, and other related compliance frameworks.
• Proven experience in performing risk, business impact, control, and vulnerability assessments.

Functional Competencies:

Expert understanding of cybersecurity concepts, principles, and practices.

Santen Leadership Competencies:

Independent and autonomous, with a strong sense of integrity, enthusiasm, and self-starting abilities.

Achieving Valuable Business Results:

• Stays focus on business value and sets clear, challenging goals.
• Deals with performance issues in a timely manner and looks for new solutions and technologies.

Thinking and Decision Making:

• Takes a systematic and methodical approach to work and makes clear and timely decisions.

Influencing:

• Good interpersonal and communication skills to share knowledge with various levels and communicate effectively with business and technical functions.

Santen is an Equal Opportunity Employer, committed to building a diverse team and providing a safe and inclusive physical and virtual workplace for all employees. All hiring decisions are based on business needs, role requirements, and individual skill sets, regardless of race, color, ethnicity, origin, religion, sexual orientation, gender, gender identity/expression, age, disability, medical condition, marital status, military/veteran status, or other protected characteristics.