IS Security Enterprise Architect Director

The IS Security Enterprise Architect Director develops strategy, direction and guidance for Global Information Protection (GIP)'s Security Architecture Program, Security Reference Architecture and is accountable to the Chief Information Security Officer. GIP's Enterprise Architect is responsible for delivery of secure design assurance that meet business requirements and security control efficacy as defined within GIP's adopted security control framework. The role enables the business to securely achieve its goals by adequately mitigating risk and ensuring service accountability across all phases and architectural layers of our solutions lifecycle process.

The Enterprise Architect Director is GIP's Lead in the Enterprise Architectural Review process responsible for developing and approving security design patterns for business solutions reviewed within our Solution Development Lifecycle (SDLC) process. The role closely collaborates with multi-functional Enterprise Architects, Security Domain Architects, Service Leads, key business partners to assesses the business' strategic direction and establish security objectives that produce organizational standard methodologies, approved architectural patterns and reusable elements.

The Enterprise Architect Director is part of Amgen's GIP team and will be encouraged to contribute and help deliver services and projects in other areas of information security.

This role is based at Amgen's Capability Center in Tampa, Florida.

Job Responsibilities:

The role will be part of the GIP Identity, Engineering and Architecture (IEA) Team responsible for delivering security services across Amgen globally. Areas of responsibility include:

• Develops strategy, objectives and guidance for GIP's Security Architecture Program, Security Reference Architecture and Neighborhood Plan in alignment with Enterprise City Planning strategy
• Steward of the Enterprise Architecture standards and practices across the GIP organization
• Maintain Security Architecture Program alignment with GIP's adopted security control framework
• Ensure defensible security control validation process is intrinsically coordinated into GIP Security Risk Assessments
• Establish and maintain approved security patterns, methods and reusable elements to expedite solutions approval through SDLC
• Work with GIP Domain Architects and Service Leads to ensure robust, well planned systems which are consistent with the Enterprise City Planning strategy
• Work with Security Domain Architects to develop proposals for review by the Enterprise Architecture Review Board
• Participate as an active, voting member of the Amgen's Architecture Review Board, representing GIP and its business partners
• Partner with the Enterprise Architecture team to refine and develop the Amgen IS City Plan, ensuring security requirements, priorities and business needs are considered
• Provide vision, architectural insight, testing and direction for introducing new technology into GIP
• Develop a solid grasp of GIP's business needs, processes, and environment
• Develop a good understanding of GIP deployed system landscape
• An understanding of how to work with, and empower technical and non-technical teams to achieve GIP and operations objectives in a technically sound manner
• Handle IS control exceptions that require architectural redesign of underlying architectural layers
• Maintain coordinated partnership with Governance, Risk and Compliance (GRC) Team to establish a service risk posture qualitative/quantitative reporting for GIP services
• Provide quarterly Security Architectural program review via GIP's Quarterly Defense Review (QDR) process
• Lead and mature Domain Reference Architectural characterization
• Provide security control posture reports to help derive strategic decisions and financial investments that trace directly mitigate control gaps
• Work closely with respective security service leads to develop, maintain and publish technical development plan for each GIP Service domains
• Develop and maintain secure configuration specifications for Amgen infrastructure (IoT, mobile, cloud...) on premise and in the cloud
• Mature and maintain appropriate security architect service metrics, key performance indicators, Key Risk Indicators and Service Level Agreements
• Provide mentorship and training on areas of expertise to Information Security and Amgen teams
• Participate in audits covering information security services and technologies
• Travel: Domestic and International travel up to 25% may be required

The Functional IS Security Architect Director will also present supported business cases as needed to senior leadership, adhere to policies, guidelines and standard methodologies relative to security. The role may also directly participate in the development of new policies and practices by suggesting innovative ideas.

Basic Qualifications

Doctorate degree and 4 years of Information Systems experience

OR

Master's degree and 8 years of Information Systems experience

OR

Bachelor's degree and 10 years of Information Systems experience
And

4 years of managerial experience directly managing people and/or leadership experience leading teams, projects, programs or directing the allocation of resources

Preferred Qualifications

US-Based role:

• Technical Expertise: Solid understanding of biotechnology information systems and associated technology
• Demonstrated ability to architect sophisticated IS systems
• Knowledgeable of the requirements for robust well designed IS and business systems
• Experience guiding solution design, business processes redesign and software implementation in a drug development lab / commercialization environment
• Solid grasp of working in a GMP environment and implementing solutions in a GMP validated state
• Demonstrable ability to understand, and establish adoption model for new technology
• Ability to run inexpensive proof of concepts to establish critical technical understandings
• Ability to lead a highly-skilled technical team
• Broad and deep technical expertise across multiple security domains
• Deep understanding of foundational security principles, standard methodologies, techniques, tactics and procedures
• Broad understanding of the workings of security-related services like firewalls, intrusion detection systems, sophisticated anti-malware, secure gateways, security monitoring, data protection, data encryption, cloud security and other industry-standard techniques and practices
• Ability to understand the risks and associated methods to efficiently implement appropriate security controls
• Practical understanding of Information Security frameworks, standards and policies like ISO 27001/27002, NIST, CCM and others
• Practical knowledge of security architectural frameworks (TOGAF/DODAF, SABSA, etc..)
• Effectively lead global, remote teams with team-centric social skills and excellent verbal/written communication skills
• Deep-seated understanding of Agile methodologies and supporting technologies platforms (JIRA)
• CISSP or equivalent security-related industry certifications

We understand that to successfully sustain and grow as a global enterprise and deliver for patients - we must ensure a diverse and inclusive work environment.

Amgen is committed to unlocking the potential of biology for patients suffering from serious illnesses by discovering, developing, manufacturing and delivering innovative human therapeutics. This approach begins by using tools like advanced human genetics to unravel the complexities of disease and understand the fundamentals of human biology.

Amgen focuses on areas of high unmet medical need and demonstrates its expertise to strive for solutions that improve health outcomes and dramatically improve people's lives. A biotechnology pioneer since 1980, Amgen has grown to be one of the world's leading independent biotechnology companies, has reached millions of patients around the world and is developing a pipeline of medicines with breakaway potential.

Join Us

If you're seeking a career where you can truly make a difference in the lives of others, a career where you can work at the absolute forefront of biotechnology with the top minds in the field, you'll find it at Amgen.

Amgen, a biotechnology pioneer, discovers, develops and delivers innovative human therapeutics. Our medicines have helped millions of patients in the fight against cancer, kidney disease, rheumatoid arthritis and other serious illnesses.

As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other but compete intensely to win. Together, we live the Amgen values as we continue advancing science to serve patients.

Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.