Lead Consultant - Information Protection Lead

Job Title: Lead Consultant - Information Protection Lead

Career Level: E

Introduction to Role:

Are you ready to lead a team in safeguarding AstraZeneca's sensitive information assets? As the Information Protection Senior Analyst, you'll provide team leadership and advanced technical expertise, overseeing the implementation and continuous improvement of Data Loss Prevention (DLP) and Access Control programs. With your deep knowledge of cybersecurity and regulatory compliance, you'll ensure robust protection of our data while mentoring a team of analysts. This role offers the opportunity to deputize for the Information Protection Lead and make a significant impact on our organization's security posture.

Accountabilities:

As the Information Protection Lead, you will:

• Lead the development and optimization of Data Loss Prevention and Access controls under the guidance of the Information Protection Lead, setting the direction of the IP team day-to-day.
• Provide technical oversight and direction to a team of analysts, including coaching, critical issue support, training, and peer review of incident investigations and policy management.
• Work with IP Project resources to oversee the advanced deployment and continuous tuning of technologies for data discovery, classification, labeling, and protection across environments containing high-risk data.
• Oversee complex information incident management activity as a critical issue point, from triage and investigation through remediation and post-incident reviews, ensuring clear communication and documentation.
• Monitor and report on data access patterns, DLP events, and emerging threats, synthesizing findings into actionable intelligence for stake holders and recommending process improvements.
• Coordinate and chair multi-functional incident management efforts with IT, Cyber, Compliance, and SET Area contacts, leading small and large-scale DLP & Access controls reviews, rollouts, and remediations.
• Implement and continuously recommend improvements to monitoring strategies to identify risky behaviors, guide corrective action, and ensure continual compliance with Enterprise Standards & Regulatory Requirements, balanced with the Business’ target risk profile.
• Mentor team members to develop technical skillsets and business insight, providing direction in a supportive and inclusive manner.
• Ensure duties are split among the team, and that follow-the-sun coverage is in place.
• Consult with communications and education teams to ensure messaging related to change, and impact to our business are clearly understood.

Essential Skills/Experience:

• Bachelor’s degree in Computer Science, Information Security, or a related field; or equivalent professional experience.
• Substantial hands-on experience in Data Loss Prevention, access control frameworks, and incident management, including experience with Microsoft Purview and related DLP solutions in complex, regulated environments.
• Demonstrable track record in team leadership, including mentoring, coaching, resource management, and supporting professional development.
• Advanced understanding of cybersecurity standard methodologies, regulatory requirements (GDPR etc.), and security frameworks such as NIST or ISO 27001.
• Strong analytical, investigative, and problem-resolution skills, including the ability to handle multiple complex incidents concurrently.
• Experience presenting findings, risk reports, and recommendations clearly to technical and non-technical audiences, including senior leadership.
• Good communication, stake holder management, and multi-functional collaboration skills.
• Demonstrable ability to drive continuous improvement in a fast-paced, dynamic environment.

Desirable Skills/Experience

• Graduate degree in a relevant discipline or recognized security certifications such as CISSP, CISM, CCSP, Microsoft Certified: Information Protection Administrator, or equivalent in Cybersecurity.
• Experience in the life sciences, healthcare, or other highly regulated industries.
• Familiarity with agile project management or change management methodologies.

When we put unexpected teams in the same room, we unleash bold thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions. That's why we work, on average, a minimum of three days per week from the office. But that doesn't mean we're not flexible. We balance the expectation of being in the office while respecting individual flexibility. Join us in our unique and ambitious world.

AstraZeneca empowers its employees to innovate with innovative science combined with leading digital technology platforms. Our work directly impacts patients by transforming our ability to develop life-changing medicines. We are at a crucial stage of becoming a digital and data-led enterprise where you can make the impossible possible. With countless opportunities to learn and grow in a dynamic environment backed by significant investment, AstraZeneca is committed to driving industry-wide change.

Ready to take on this exciting challenge? Apply now to join our team!

Date Posted

Closing Date

AstraZeneca embraces diversity and equality of opportunity.  We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills.  We believe that the more inclusive we are, the better our work will be.  We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics.  We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorization and employment eligibility verification requirements.