Job Overview
IQVIA Connected Devices is a service that accelerates trial outcomes by streamlining the selection and deployment of medical devices to collect and analyze data. It provides customized solutions to accelerate clinical development and commercialization in such things as diabetes trials with enhanced glucose data collection, closer to the patient.
Connected devices are physical objects that can connect with each other and other systems via the internet. They span everything from traditional computing hardware, such as a laptop or desktop, to common mobile devices, such as a smartphone or tablet, to an increasingly wide range of physical devices and objects.
In this role you will provide the subject matter expertise on and oversight of an information security capability and/or control.
The Senior Cybersecurity Engineer role is a vital part of our Cybersecurity Engineering team as part of the IQVIA Connected Devices organisation. This is a hands-on security engineering role ensuring the secure operation of the IQVIA information technology (IT) infrastructure and secure software development processes through operating and maintaining our security safeguards for Connected Devices.
You will work alongside and partnering with the IT community and business teams across IQVIA as required in support of Connected Devices and deliver an ongoing Information Security program for Connected Devices. You will contribute to success of the Connected Devices work streams through operation of advanced technologies that provide adequate protection against the threats to information systems and in particular, the data assets.
Essential Functions
1. Manage the operation of one or more information security capabilities and/or controls.
2. Provide leadership and direction within area of responsibility.
3. Oversee the development and implementation of functional governance and Regulatory standards (Standard Operating Procedures, Engagement Models/Workflows, Key Performance Indicators) within area of responsibility.
4. Familiarity with DevSecOps, shift left and security as code methods and approaches.
5. Experience implementing Static and Dynamic Security Testing, Software Composition Analysis, Secret Scanning, Container Vulnerability Scans, Open-Source License checks, Trusted Dependency Stores
6. Familiarity with Security tooling (Application security, Cloud Security Management, Cloud SIEM etc.) - preferably Datadog.
7. Provide regular performance updates on area of responsibility.
8. Act as Subject Matter Expert for area of responsibility, works on issues where analysis of situations or data requires detailed knowledge of area of responsibility.
9. Designs, develops and maintains IT security programs and processes that may include vulnerability and risk assessments, threat analysis, and security code reviews to identify potential design and implementation vulnerabilities.
10. Defines and implements IT security policies and features for products including systems, applications and/or solutions; plans, assesses and executes risk mitigation strategies and business continuity planning.
11. Implements assessment and treatment processes to adequately identify, manage, communicate and control operational, information and regulatory risks within IT; and monitors third party service providers, partners and vendors for IT security related risks and requirements."
Qualifications
12. Bachelor's Degree Computer Science, a related field, or equivalent experience
13. Equivalent work experience may substitute for degree
14. 3 years of related work experience
Desirable
15. CISSP - Cert Information Systems Security Professional
16. CISM - Certified Information Security Manager
17. CRISC - Certified in Risk and Information Security Controls
IQVIA is a leading global provider of advanced analytics, technology solutions and clinical research services to the life sciences industry. We believe in pushing the boundaries of human science and data science to make the biggest impact possible – to help our customers create a healthier world. Learn more at