Information Security Manager

Multiple Locations: Morrisville, NC, USA • Nottingham, UK • United States

Notice

This position is no longer open.

Requisition Number: 4656

Position Title: Information Security Manager

External Description:

Who we are

We’re a global, midsize CRO that pushes boundaries, innovates and invents because the path to a cure for the world’s most persistent diseases is not paved by those who play it safe. It is built by those who take pioneering, creative approaches and implement them with quality and excellence.

We are Worldwide Clinical Trials, and we are a global team of almost 2,500 experts, bright thinkers, dreamers and doers and, together, we are changing the way the world experiences CROs – in the best possible way.

Our mission is to work with passion and purpose every day to improve lives and we are looking for others who value this same pursuit. 

 

What an Information Security Manager does at Worldwide

The Information Security Manager will lead the adoption of the Information Security framework throughout Worldwide Clinical Trials. This individual is responsible for managing aspects of the Information Security program including security policy & governance, identity & access management, risk management, audit and compliance reviews, and security operations.

 

What you will do

  • Assess compliance with policies, standards, and regulations through the management and performance of security risk assessments, vulnerability assessments, and penetration tests
  • Provide input into the enhancement of corporate IT policies and procedures in line with regulatory and organizational requirements
  • Develop management action plans related to non-compliance and at-risk areas and manage to completion including periodic reporting to key stakeholders
  • Manage overall support of internal and external audits with IT and business process owners related to CIS, ISO27001, and GxP
  • Respond to IT Security questions in Request for Information (RFI), Request for Comment (RFC), and language review of Master Service Agreements (MSA) for both Sponsors/Clients and Vendors
  • Manage security activities and staff; monitor, review, investigate, and escalate security events in technical areas relating to network, cloud, email, intrusion prevention, and other security systems in accordance with security procedures
  • Oversee the planning, design, implementation, and operationalization of security measures for the protection of the organization's data, systems, and networks
  • Lead IT Security projects, keeping milestones on target and providing regular updates, communication and guidance to teams and upper management as appropriate
  • Monitor for emerging security risks and issues including evaluating applicability to the company and providing recommendations to align with the company’s risk tolerance level
  • Identify improvement opportunities and provide recommendations to further mature IT processes and controls, including use of automation and optimization
  • Serve as a subject matter resource to assess security implications of technology solutions and other IT projects
  • Prepare ongoing reports with specified metrics, key performance indicators, and quality tolerance limits related to IT Security and present to IT and executive management
  • Promote security awareness training for IT and Worldwide Clinical Trials users

 

What you will bring to the role

  • Strong command of standard American English in a professional setting.
  • Experience documenting process utilizing the Nintex suite of tools is a plus.
  • Flexible, adaptable, and able to work under pressure
  • General knowledge of cloud service providers and cloud architecture
  • Knowledge of Computer System Validation (21 CFR Part11, GxP)

 

Your experience

  • Minimum of 6 years progressive experience ideally with a healthcare or medical organization in one or more of the following areas: IT Governance, Compliance, Audit, Risk Management and Operations
  • Bachelor's degree in Information Security, Computer Science, Information Systems, Information Assurance, or related professional security certification such as CISA, CISSP, CRISC, CGEIT, CISM
  • Knowledge and experience with compliance standards and regulatory frameworks such as NIST, ISO, HIPAA, GxP, etc.
  • Experience with performing technical risk assessments, analyzing risk, or managing security incidents and providing recommendations on risk mitigation strategies or responsive actions
  • Strong verbal and written communication skills collaborating with technical and non-technical individuals across the business and third parties
  • Project management and organizational skills with demonstrated ability to complete assignments timely and effectively
  • Professional certification in Information Technology or Information Security such as CISA, CISSP, CRISC, CGEIT, CISM

 

Why Worldwide

At Worldwide, we balance fun with the serious business of changing lives. We have a values-driven culture that is built from the ground up. We empower our team members to treat every clinical trial like a patient’s life depends on it – because it does. Our leaders are in the trenches with you - committed to advancing science and moving mountains for our customers. 

Interested in hearing more about Worldwide or our roles? Check out our careers page at www.worldwide.com/careers! 

 

City:

State:

Employment Type: Regular

Community / Marketing Title: Information Security Manager

Company Profile:

We’re a global, mid-size CRO that pushes boundaries, innovates and invents — because the path to a cure for the world’s most persist diseases is not paved by those who play it safe, but by those who take pioneering, creative approaches, and implement them with quality and excellence. We are experts, bright thinkers, dreamers and doers and, together, we are changing the way the world experiences CROs, in the best possible way.

Location_formattedLocationLong: Research Triangle Park (RTP), North Carolina US

CountryEEOText_Description: Worldwide is an equal opportunity employer that is committed to enabling professionals from all backgrounds and experiences to succeed and, to that end, we prioritize attracting diverse talent and cultivating an inclusive environment that encourages collaboration and creativity. We provide equal employment opportunities to all employees and applicants regardless of race, color, ethnicity, ancestry, religion, national origin, gender, sex, gender identity or expression, sexual orientation, age, citizenship, marital or parental status, disability, military status, or other class protected by applicable law. Worldwide is committed to working with and providing reasonable accommodations to applicants with disabilities. We are proud to be an equal opportunity workplace where people thrive by being themselves and are inspired to do their best work every day.

 Worldwide Clinical Trials does not accept unsolicited resumes from 3rd party vendors

© Worldwide Clinical Trials 2023

We only accept resumes from staffing organizations with pre-approved contractual agreements. Please do not forward resumes directly to our hiring managers, jobs alias, or any other company location. Unsolicited resumes from employment agencies will not be considered and Worldwide is not responsible for any fees related to unsolicited resumes.