Why choose AstraZeneca India?
Help push the boundaries of science to deliver life-changing medicines to patients. After 45 years in India, we’re continuing to secure a future where everyone can access affordable, sustainable, innovative healthcare.
The part you play in our business will be challenging, yet rewarding, requiring you to use your resilient, collaborative and diplomatic skillsets to make connections. The majority of your work will be field based, and will require you to be highly-organised, planning your monthly schedule, attending meetings and calls, as well as writing up reports.
Who do we look for?
Calling all tech innovators, ownership takers, challenge seekers and proactive collaborators. At AstraZeneca, breakthroughs born in the lab become transformative medicine for the world's most complex diseases. We empower people like you to push the boundaries of science, challenge convention, and unleash your entrepreneurial spirit. You'll embrace differences and take bold actions to drive the change needed to meet global healthcare and sustainability challenges.
Here, diverse minds and bold disruptors can meaningfully impact the future of healthcare using cutting-edge technology. Whether you join us in Bengaluru or Chennai, you can make a tangible impact within a global biopharmaceutical company that invests in your future. Join a talented global team that's powering AstraZeneca to better serve patients every day.
Success Profile
Ready to make an impact in your career? If you're passionate, growth-orientated and a true team player, we'll help you succeed. Here are some of the skills and capabilities we look for.
Tech innovators
Make a greater impact through our digitally enabled enterprise. Use your skills in data and technology to transform and optimise our operations, helping us deliver meaningful work that changes lives.
Ownership takers
If you're a self-aware self-starter who craves autonomy, AstraZeneca provides the perfect environment to take ownership and grow. Here, you'll feel empowered to lead and reach excellence at every level — with unrivalled support when you need it.
Challenge seekers
Adapting and advancing our progress means constantly challenging the status quo. In this dynamic environment where everything we do has urgency and focus, you'll have the ability to show up, speak up and confidently take smart risks.
Proactive collaborators
Your unique perspectives make our ambitions and capabilities possible. Our culture of sharing ideas, learning and improving together helps us consistently set the bar higher. As a proactive collaborator, you'll seek out ways to bring people together to achieve their best.
Responsibilities
Job Title - Associate Director - Cybersecurity Risk Remediation Leader
Career Level - F
Introduction to role
We are seeking an experienced and proactive Cybersecurity Risk Remediation Program Leader to drive the execution of our annual penetration testing and remediation program. In this role, you will manage a small team responsible for coordinating and overseeing the remediation of vulnerabilities identified in penetration tests, collaborating with platform owners, and ensuring vulnerabilities are resolved and retested to maintain a strong security posture across the organization. Additionally, you will lead efforts to continuously improve the remediation process, measure outcomes, and track risk reduction progress. If you are a results-driven leader with a keen eye for detail and the ability to manage complex remediation efforts, this is the role for you.
Accountabilities
Program Management and Continuous Improvement: Lead the end-to-end penetration testing and remediation program, ensuring all steps from testing coordination to remediation completion and retesting are handled effectively and within timelines. Continuously evaluate and improve the remediation process based on performance metrics and feedback.
Risk Reduction & Security Posture Improvement: Drive the reduction of risk across the organization through effective remediation of critical vulnerabilities, ensuring that remediations directly contribute to a reduction in overall risk exposure and improved security posture.
Coordinate Pentesting Efforts: Manage external pentesting vendors, ensuring that testing is conducted thoroughly and efficiently on the designated systems and platforms. Ensure scope alignment and that findings are clearly reported.
Performance Metrics & KPIs: Define, track, and report key metrics to assess the success of the program and its contributions to overall security.
Vulnerability Remediation: Analyze pentesting findings to identify the root causes of vulnerabilities and work with platform owners to develop remediation solutions. Coordinate efforts to prioritize, address, and implement fixes.
Cross-Functional Collaboration: Work closely with platform, infrastructure, and development teams to guide them on how to resolve vulnerabilities, provide necessary support, and track remediation progress.
Follow-up and Validation: Lead efforts to verify the successful remediation of vulnerabilities through retesting or other validation methods. Ensure that remediations are completed as intended and meet security standards.
Reporting and Metrics: Maintain detailed documentation of penetration testing findings, remediation efforts, and resolution statuses. Create regular reports for leadership and stakeholders on the progress of remediation activities and overall program health.
Risk Assessment: Help evaluate the severity and business impact of discovered vulnerabilities to ensure that the most critical issues are prioritized and addressed promptly.
Continuous Improvement: Continuously evaluate the effectiveness of the pentesting and remediation program, identifying areas for improvement and driving initiatives to streamline processes and enhance security controls.
Team Leadership: Lead, mentor, and develop a small team responsible for driving the program. Provide guidance, support, and foster a collaborative environment to achieve remediation goals.
Stakeholder Communication: Communicate remediation progress, risks, and challenges to senior management and key stakeholders in a clear and actionable manner.
Essential Skills/Experience
Bachelor’s degree in Information Security, Computer Science, or a related technical field (or equivalent experience).
6+ years of experience in cybersecurity, with at least 3 years focused on risk remediation, vulnerability management, or penetration testing.
Strong understanding of penetration testing methodologies, vulnerability identification, and risk remediation strategies.
Experience working with external penetration testing vendors and managing the relationship to ensure effective testing and reporting.
Proven track record of managing security remediation programs, including coordinating across multiple teams to address vulnerabilities.
Excellent communication skills, with the ability to explain technical issues to non-technical stakeholders and provide clear, actionable remediation steps.
Strong organizational and project management skills, with the ability to manage multiple remediation efforts and track progress against deadlines.
Ability to work under pressure, manage competing priorities, and lead remediation efforts in a timely and effective manner.
Desirable Skills/Experience
Industry certifications such as CISSP, CEH, or CISM.
Familiarity with regulatory requirements and frameworks such as NIST, ISO 27001, SOC 2, or GDPR.
Experience with threat modeling, risk assessments, and security control frameworks.
Knowledge of secure development practices and familiarity with DevSecOps environments.
When we put unexpected teams in the same room, we unleash bold thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions. That's why we work, on average, a minimum of three days per week from the office. But that doesn't mean we're not flexible. We balance the expectation of being in the office while respecting individual flexibility. Join us in our unique and ambitious world.
At AstraZeneca, our work has a direct impact on patients by transforming our ability to develop life-changing medicines. We empower the business to perform at its peak by combining cutting-edge science with leading digital technology platforms and data. Join us at a crucial stage of our journey in becoming a digital and data-led enterprise. Make the impossible possible by building partnerships and ecosystems, creating new ways of working, and driving scale and speed to deliver exponential growth.
Ready to take on this exciting challenge? Apply now!
AstraZeneca embraces diversity and equality of opportunity. We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills. We believe that the more inclusive we are, the better our work will be. We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics. We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorization and employment eligibility verification requirements.
Reasons to Join
Thomas Mathisen
There are many things I enjoy when working at AstraZeneca, mainly the Speak up culture, the great colleagues that are in my teams, the great products that AstraZeneca provides to our patients and the challenging conversations I have around our medicines.
Christine Recchio
Working at AstraZeneca has impacted my life in such a positive way. I now have an improved work-life balance through creating my own schedule and time management, I feel a balance that I didn’t have before.
Stephanie Ling
There are a lot of reasons why I enjoy working in AstraZeneca, my colleagues being one of them. My team members and the managers have provided a great deal of guidance in helping me to be more confident in my daily work.
What we offer
We're driven by our shared values of serving people, society and the planet. Our people make this possible, which is why we prioritise diversity, safety, empowerment and collaboration. Discover what a career at AstraZeneca could mean for you.
Lifelong learning
Our development opportunities are second to none. You'll have the chance to grow your abilities, skills and knowledge constantly as you accelerate your career. From leadership projects and constructive coaching to overseas talent exchanges and global collaboration programmes, you'll never stand still.
Autonomy and reward
Experience the power of shaping your career how you want to. We are a high-performing learning organisation with autonomy over how we learn. Make big decisions, learn from your mistakes and continue growing — with performance-based rewards as part of the package.
Health and wellbeing
An energised work environment is only possible when our people have a healthy work-life balance and are supported for their individual needs. That's why we have a dedicated team to ensure your physical, financial and psychological wellbeing is a top priority.
Inclusion and diversity
Diversity and inclusion are embedded in everything we do. We're at our best and most creative when drawing on our different views, experiences and strengths. That's why we're committed to creating a workplace where everyone can thrive in a culture of respect, collaboration and innovation.
We’ll keep you up to date
