Security Operations Lead

Are you ready to be part of the future of healthcare? Are you able to think big, be bold, and harness the power of digital and AI to tackle longstanding life sciences challenges? Then Evinova, a new health tech business part of the AstraZeneca Group might be for you

Transform billions of patients’ lives through technology, data and cutting-edge ways of working. You’re disruptive, decisive and transformative. Someone who’s excited to use technology to improve patients’ health. We’re building a new healthtech business - Evinova, a fully-owned subsidiary of AstraZeneca Group.

We are now hiring a **Security Operations Lead** to join the Cyber Security team.

Evinova delivers market-leading digital health solutions that are science-based, evidence-led, and human experience-driven. Thoughtful risks and quick decisions come together to accelerate innovation across the life sciences sector. Be part of a diverse team that pushes the boundaries of science by digitally empowering a deeper understanding of the patients we’re helping. Launch pioneering digital solutions that improve the patients’ experience and deliver better health outcomes. Together, we have the opportunity to combine deep scientific expertise with digital and artificial intelligence to serve the wider healthcare community and create new standards across the sector.

The Security Operations Lead role presents a unique opportunity to join Evinova from the beginning and implementing innovative cyber security practices that are designed by industry, for industry. The Security Operations Lead, reporting to the Evinova Head of Cyber Security, will be focused on leading and maturing Evinova’s capabilities in the areas of threat detection, intelligence, defense, and response - encompassing our enterprise infrastructure and external customer facing digital solutions.

**Key responsibilities include**:

- Develop and maintain a comprehensive Evinova security operations program, encompassing the areas of threat detection, analysis and response; threat intelligence; vulnerability management; security tools and technologies; log management and analysis; network security monitoring and segmentation; cloud posture monitoring, compliance monitoring / auditing, and operational resilience.
- Maintain relevant security operations related policies, procedures, and standards to establish clear and actionable guidelines for related controls, monitoring objectives, and incident response protocols. Ensuring the security operations activities are aligned to and compliant with leading practices, regulatory requirements, and end customer expectations.
- Partnering with the Cyber Architecture Lead and Product Security Engineering Lead to define and operate a portfolio of scalable and fit for purpose security tools and services.
- Establish and maintain metrics reports to evidence Security Operations trends - in collaboration with the Cyber Governance, Risk, and Compliance Lead.
- Maintain day-to-day oversight of outsourced / managed security service providers and their achievement of security operations relevant Service Level Agreement (SLA) and Key Performance Indicator (KPI) targets. Serving as the primary focal point for security operations, incident management, and compliance reporting capabilities.
- Develop and maintain Evinova-wide cyber security incident response plans and procedures to ensure conformity with relevant standards / regulatory requirements, and end customer expectations for incident response timelines and reporting.
- Lead security incident investigations and coordinating response efforts to ensure adequate containment, risk-based prioritization, mitigation, and remediation of realized cyber risks. Develop post-incident briefings and lessons learned artifacts - contributing to the overall cyber program continuous improvement objectives.
- Support the Head of Cyber Security and Chief Technology Officer in conducting periodic tabletop exercises and cyber crisis simulations to ensure organizational preparedness for realized cyber risks.
- Support the Head of Cyber Security in the identification and evaluation of advanced threat detection technologies and techniques to enhance our holistic detection capabilities and proactively maintaining defenses against emerging cyber threats.
- Drive the operationalization of a comprehensive Evinova-wide vulnerability management program to ensure timely identification and assessment of technological vulnerabilities in our infrastructure and coordinating with the relevant teams to deploy patches and remediation activities to address identified vulnerabilities.
- Ensure optimal threat detection capability through frequent review of log sources / sensors, event correlation and detection logic, and overall health of the SIEM platform.
- Leverage external sources of Threat Intelligence (e.g., Service Providers, Memberships, IoC Feeds, Open Source Reporting, etc.) to proactively identify and assess threats tha