AstraZeneca
Pharmaceutical
Director-Cybersecurity,SecurebyDesign
Neural analysis suggests this role is
optimal for Director candidates.
“Director- Cybersecurity, Secure by Design at AstraZeneca. Skills: Secure by Design, DevSecOps, Cloud Security, AI Security. Define engineering strategy. Establish Secure Development Lifecycle”
What You'll Achieve.
Measurable risk reduction; Accelerate releases; Protect data; Reduce systemic risk; Achieve scaled automation; Measurable risk reduction; Adoption standards enterprise-wide
Industry & Context.
Risk reduction; Problem resolution; Root cause analysis
What They're Looking For.
Must Have
Bachelor's degree in Computer Science, 15+ years cybersecurity engineering experience, Deep expertise Secure by Design, Significant experience modern software development, Proven experience threat modelling, Experience cloud security engineering, Experience AI/GenAI security controls, Experience quality and compliance environment, Meaningful experience leading large-scale projects
Nice to Have
Relevant professional certification, Experience agile software development, Experience utilising modern test management, Experience OT/ICS security architecture, Familiarity EU Cyber Resilience Act, Experience co-working global leadership, Pharmaceutical or life sciences experience
What You'll Do.
Define engineering strategy
Establish Secure Development Lifecycle
Convert CISO vision roadmaps
Lead threat modelling
Coordinate penetration testing
Convert findings remediation improvements
Direct engineering activities
Implement secure-by-default configurations
Oversee build cybersecurity solutions
Govern lifecycle security needs
Lead incident resolution
Prevent recurrence design patterns
Provide technical feedback
Evaluate integrate platforms
Serve engineering authority
Partner AI centre excellence
Drive engineering standards
Incorporate IEC 62443
Protect critical systems
Codify security standards
Lead security design reviews
Represent cybersecurity engineering
Ensure solutions meet compliance
Embed compliance code
Build mentor empower team
Drive performance metrics
Recruit develop talent
Shape future-focused skills
Baseline operationalize SDL
Achieve scaled automation
How You'll Work.
Team & Collaboration
Partner across architecture; Partner product engineering; Partner operations; Engage architecture; Engage DevOps; Engage product engineering; Engage third parties; Co-working global leadership; Collaborate diverse experts; Connect across company
Communication Scope
Technical feedback; Governance forums
Process & Methodology
Roadmaps, Agile methodologies
Full Job Description
## **Job Title: Director- Cybersecurity, Secure by Design** **GCL: F** **Introduction to role:** Are you ready to hardwire security into every design decision and release, so science can move faster with confidence? Can you lead global engineering teams to move from reactive fixes to design-led, measurable risk reduction? This senior technical leadership role anchors security in the full lifecycle of our digital ecosystem. You will translate a Trust-by-Design vision into practical engineering patterns that safeguard cloud platforms, software, AI/GenAI capabilities, operational technology, and enterprise applications. Your work will help ensure that the platforms powering discovery, development, and delivery of medicines are secure by default—so teams can innovate at speed without compromising integrity. You will partner across architecture, product engineering, and operations to embed security standards and automate controls at scale. By shaping guardrails and enabling secure development practices, you will reduce systemic risk, accelerate releases, and protect data that matters for patients and the business. ## ## Accountabilities: * Define and drive the engineering strategy aligned to CISA, NIST SSDF, ISO/IEC 27034, and EU CRA principles; establish a Secure Development Lifecycle across software, cloud, and OT, and convert the CISO’s vision into 18–24 month roadmaps with measurable outcomes. * Lead threat modelling, secure code reviews, penetration test coordination, and portfolio-wide vulnerability management; convert findings into prioritized remediation and control improvements that demonstrably reduce risk. * Direct engineering activities across complex software and application projects; design and implement secure-by-default configurations for cloud (IaaS/PaaS/SaaS), containers (Docker, Kubernetes), hybrid and on‑premise; oversee build, configuration, testing, and release of cybersecurity solutions with a focus on secure architecture, DevSecOps, and data secur
Applying for this Director- Cybersecurity, Secure by Design role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about AstraZeneca?
Real rants from real employees. Read before you apply.