Myovant Sciences aspires to be the leading healthcare company focused on innovative treatments for women’s health and advanced prostate cancer designed to improve the lives of millions. We are on a mission to redefine care for women and for men through purpose-driven science, empowering medicines, and transformative advocacy. We are looking for passionate and hard-working individuals who share our excitement for this mission.

We are currently seeking a qualified, highly motivated, experienced individual for the position of Senior/Principal Information Security Engineer. The position reports to the Director, IT - Network, Security, and Cloud Architecture. The location of the position is in Brisbane, CA.

Summary Description

The Senior/Principal Information Security Engineer will play a key contributor role in supporting and driving all enterprise-wide information technology security programs and initiatives. This individual has the skill set to identify and trend security issues on the network, create reports and remediation paths that are sent to key stakeholders. In addition, draft and implement new policies and procedures that protect Myovant’s digital assets.

Essential Duties and Responsibilities

  • Monitor and detect threats, including viruses, malware, phishing attempts, and other suspicious activities in the Myovant environment
  • Create documentation of event or incident reports and discovered vulnerabilities
  • Analyze logs and alerts and to search for trends in the environment across our data centers and on the WAN.
  • Mitigate any deficiencies or discovered risks and inform IT leadership of any necessary actions required.
  • Manage and participate in annual cybersecurity and penetration tests, and remediate any findings identified.
  • Develop plans to regularly perform and analyze enterprise-wide security tests and reviews, as well as incident response plans.
  • Develop the security review process (risk assessment, mitigation and action plans) for both existing and proposed systems within the Myovant environment.
  • Implement and maintain programs to ensure education, awareness, understanding, and adherence to established cybersecurity policies and procedures
  • Develop and publish metrics and dashboards demonstrating the state of Movant's security initiatives and incident activity.
  • Liaise with other business stakeholders and external auditors to articulate the organization's security strategy, policies, data classification, educational initiatives, and response plans.
  • Assist the infrastructure team with other network operations improvement projects

Core Competencies, Knowledge, and Skill Requirements

  • Comprehensive understanding of internal auditing, internal controls, and risk management
  • A strong working knowledge of network architecture- both traditional on-premise and cloud technology (AWS, Azure, Google Cloud)
  • Strong experience supporting a diverse set of SaaS applications across a geographically diverse workforce.
  • Experience with SSL certificate management, Single-Sign-On, IdP (identity provider).
  • Experience in IAM, KMS, permission, roles, firewall rules in cloud platforms.
  • Experience with different authentication and encryption technologies.
  • Experience with Firewalls, WAF, IPSec VPN, Endpoint Protection and Response (EDR), DLP, SASE/CASB, SIEM tools, Cryptography methodology, WiFi security etc.
  • Experience with penetration testing and threat intelligence.
  • Experience working with outside audit firms and IT consulting firms
  • Demonstrate communication and collaboration skills with an ability to manage and influence stakeholders in a matrix environment effectively
  • Exercise good judgment and make decision that is appropriate for the organization
  • Results-driven, take initiative and ownership to accomplish work
  • Ability to demonstrate flexibility and embrace change in a dynamic, rapidly growing environment
  • Strive for continuous improvement and embrace innovative ideas in daily work
  • Strong PC experience and demonstrated proficiency in MS Office Suite and Outlook.

REQUIREMENTS

Education

  • Bachelor of Science/ Bachelor of Arts degree in Computer Science, Computer Engineering, Information Technology, or related field
  • Certified in one of the major firewall products preferred
  • Certified in one of the cloud security specialties preferred
  • Certified in CISA (certified information systems auditor), or CISSP (certified information systems security professional) preferred

Experience

  • 5+ years' experience leading corporate information security initiatives and vulnerability assessment efforts
  • Experience working in the biotechnology industry preferred
  • Demonstrated knowledge of data center operations, security, disaster preparedness/recovery, incident response and mitigation, capacity planning
  • Strong understanding of SOX (Sarbanes Oxley), GAMP5, NIST, and 21 CFR Part 11

Disclaimer: The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities from time to time, as needed.

If you require any accommodations, please email careers@myovant.com.

Equal Employment Opportunity

 

Apply for this Job

* Required
  
  


U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at Myovant Sciences are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.