Senior Cybersecurity Engineer

Job OverviewIQVIA Connected Devices is a service that accelerates trial outcomes by streamlining the selection and deployment of medical devices to collect and analyze data. It provides customized solutions to accelerate clinical development and commercialization in such things as diabetes trials with enhanced glucose data collection, closer to the patient.Connected devices are physical objects that can connect with each other and other systems via the internet. They span everything from traditional computing hardware, such as a laptop or desktop, to common mobile devices, such as a smartphone or tablet, to an increasingly wide range of physical devices and objects. In this role you will provide the subject matter expertise on and oversight of an information security capability and/or control.The Senior Cybersecurity Engineer role is a vital part of our Cybersecurity Engineering team as part of the IQVIA Connected Devices organisation. This is a hands-on security engineering role ensuring the secure operation of the IQVIA information technology (IT) infrastructure and secure software development processes through operating and maintaining our security safeguards for Connected Devices.You will work alongside and partnering with the IT community and business teams across IQVIA as required in support of Connected Devices and deliver an ongoing Information Security program for Connected Devices. You will contribute to success of the Connected Devices work streams through operation of advanced technologies that provide adequate protection against the threats to information systems and in particular, the data assets.Essential FunctionsManage the operation of one or more information security capabilities and/or controls.Provide leadership and direction within area of responsibility.Oversee the development and implementation of functional governance and Regulatory standards (Standard Operating Procedures, Engagement Models/Workflows, Key Performance Indicators) within area of responsibility.Familiarity with DevSecOps, shift left and security as code methods and approaches.Experience implementing Static and Dynamic Security Testing, Software Composition Analysis, Secret Scanning, Container Vulnerability Scans, Open-Source License checks, Trusted Dependency StoresFamiliarity with Security tooling (Application security, Cloud Security Management, Cloud SIEM etc.) - preferably Datadog.Provide regular performance updates on area of responsibility.Act as Subject Matter Expert for area of responsibility, works on issues where analysis of situations or data requires detailed knowledge of area of responsibility.Designs, develops and maintains IT security programs and processes that may include vulnerability and risk assessments, threat analysis, and security code reviews to identify potential design and implementation vulnerabilities.Defines and implements IT security policies and features for products including systems, applications and/or solutions; plans, assesses and executes risk mitigation strategies and business continuity planning.Implements assessment and treatment processes to adequately identify, manage, communicate and control operational, information and regulatory risks within IT; and monitors third party service providers, partners and vendors for IT security related risks and requirements." QualificationsBachelor's Degree Computer Science, a related field, or equivalent experienceEquivalent work experience may substitute for degree3 years of related work experienceDesirableCISSP - Cert Information Systems Security ProfessionalCISM - Certified Information Security ManagerCRISC - Certified in Risk and Information Security ControlsIQVIA is a leading global provider of advanced analytics, technology solutions and clinical research services to the life sciences industry. We believe in pushing the boundaries of human science and data science to make the biggest impact possible – to help our customers create a healthier world. Learn more at