MSD Director Architecture Risk Management Security ITRMS 

United States, New Jersey, Rahway 

392577245

The Director of Architecture ITRMS is responsible for leading and executing hands-on technical activities related to security, risk management and compliance, specifically within the context of architecture. You will work closely with various stakeholders to design and implement cybersecurity solutions that align with the organization's strategic direction and comply with industry standards.

Key Responsibilities:

• Provide leadership to the team of solution architects. This includes setting clear goals, providing mentoring and guidance ensuring the team is working towards delivering effective and efficient solutions.

• Design and guide implementation of risk informed secure solutions aligned to the organization`s standards and best practices that enable the organization to identify, protect, detect, and recover from cyber threats. Collaborate with technical teams and solution architects to ensure that security controls are integrated into the architecture, ensuring the security of on-premises, cloud, OT, AI, and emerging technologies.

• Maintain architecture framework specific to advancing the cyber strategy of the organization. This framework will guide solution architects in implementing controls correctly and ensuring compliance with company standards.

• Driving the declaration of standard technologies and use of architecture patterns within the domain area

• Provide strategic recommendations and technical guidance on cybersecurity and information security matters to executives, business leaders, and solution architects. Leverage their expertise to advise on security best practices, ensuring that security objectives are properly addressed within solution designs.

• Collaborate with the (Chief Information Security Officer) CISO office, Enterprise Architecture, and other stakeholders to align security objectives with the strategic direction, compliance requirements, and security standards specifically within the context of architecture. Work with technical teams to ensure that security requirements are properly defined and integrated into solution designs.

• Perform threat modeling in design and analyze existing solutions to identify areas of improvement and recommend appropriate security controls.

• Identify opportunities to advance innovative cybersecurity capabilities and framework within ITRMS products. Stay up to date with industry trends, emerging technologies, evolving threat landscapes, and best practices in implementing appropriate countermeasures within solution designs.

• Drive the development of new standards and patterns specific to solution architecture, considering the unique challenges and requirements of on-premises, cloud, OT, AI, and emerging technology domains. Work with technical teams to ensure patterns are effectively implemented and enforced within solution designs.

• Bring industry trends, emerging technologies, evolving threat landscapes, and best practices in implementing appropriate countermeasures within solution architectures. Foster a culture of cybersecurity knowledge within the organization to proactively address security risks and vulnerabilities through continuous improvement measures.

Qualifications: Required:

• Bachelor’s degree in computer science, Information Security, or a related field

• 10 years prior experience in Information Technology

• 5 years prior experience in Enterprise, Business, Information, Systems & Application or Solution Architectures

• Applied architecture experience of IT systems and business processes that support Security and Risk Management, applied against a regional and global enterprise footprint.

• Work across IT to drive capability-led investment planning decisions.

• Results-orientation with the proven ability and reputation for developing plans and implementing them successfully.

• Solid understanding of security and risk management tools: Splunk, zScaler, etc.

Preferred Qualifications:

• Prior experience in the Pharmaceutical Industry, including a strong understanding of modern Pharmaceutical Commercial Operations, Contracting & Pricing.

• In-depth knowledge of security frameworks, standards, and best practices (e.g., ISO 27001, NIST Cybersecurity Framework.

• Knowledge/certification in TOGAF or other EA methodology frameworks.

• Knowledge of business process re-engineering principles and processes.

• Strong understanding of application development methodologies.

• Drive investment decisions with a mindset to optimize total cost of ownership delivered business value.

• Familiarity with cloud security, network security, endpoint security, and encryption technologies.