Job Specifications
Job Title
Executive Director & CISO
Requisition
JR000015365 Executive Director & CISO (Open)
Location
Bridgewater, NJ
Additional Locations
Malvern, PA, Philadelphia, PA
Job Description Summary
The Chief Information Security Officer (CISO) is responsible for shaping and implementing our cybersecurity vision & strategy. This role manages the enterprise’s information security program, identifies, and evaluates IT and cybersecurity risks, and ensures the protection of information assets and associated technology. They work with executive management to determine the organization’s acceptable risk levels and implement security practices that meet agreed policies and standards. They drive digital transformation by enabling secure adoption of AI/ML, automation, and zero-trust principles across the enterprise.
The CISO communicates the impact of cybersecurity on the business to senior stakeholders and ensures that information systems are secure and compliant with legal, regulatory, and contractual obligations. This role presents regularly to the Executive Team & Board of Directors, translating complex security risks into actionable business insights. The CISO is a thought leader who builds consensus between business and technology and coordinates various drivers and constraints while maintaining objectivity. This role involves overseeing the protection of sensitive data, managing risks, ensuring compliance with regulations, and promoting and continuously enhancing a culture of cyber safety & awareness within the company.
Job Description
Key Responsibilities:
Developing, implementing, and monitoring a strategic, comprehensive enterprise information security and IT risk management program.
Working directly with the business leaders & IT business partners to facilitate risk assessment and risk management processes.
Developing and enhancing an information security management framework.
Understands and interacts with related disciplines, either directly or through committees, to consistently apply policies and standards across all technology projects, systems, and services, including privacy, risk management, compliance, and business continuity management.
Works collaboratively with colleagues to continuously enhance Endo’s security profile and respond to new & emerging threats while balancing risks, business operations, and longer-term strategic goals.
Providing leadership to the enterprise’s information security organization.
Partnering with business stakeholders across the company to raise awareness of risk management concerns.
Develop, mentor, and manage a motivated staff of information security professionals, including hiring, training, development, and performance management.
Key Accountabilities
Strategic Leadership
Develops an information security vision, strategy & roadmap that is aligned with organizational priorities and enables and facilitates the organization's business objectives.
Collaborate with the CIO, executive leadership & IT business partners to align security initiatives with business objectives.
As a member of the IT Leadership team, actively participate and assist in leading the delivery and evolution of IT’s strategy, which includes a portfolio of imperatives focusing on people, processes, and technology.
Lead the secure adoption and integration of emerging technologies, including artificial intelligence (AI), machine learning (ML), and automation, to enhance threat detection, response, and operational efficiency.
Leads the information security function across the company to ensure consistent and high-quality information security management in support of the business goals.
Provides cybersecurity strategy, risk posture, and key metrics to the Board of Directors and executive committees on a regular basis, translating technical risks into business impact. Serve as a trusted advisor to the Board and executive leadership, providing insights on emerging threats, regulatory changes, and the organization’s security maturity
Develop and maintain a comprehensive metrics and reporting framework for Board-level visibility into the effectiveness of the information security program.
Determines the information security approach and operating model in consultation with stakeholders.
Develops, implements, and monitors a strategic, comprehensive information security program to ensure appropriate levels of confidentiality, integrity, availability, safety, privacy, and recovery of information assets owned, controlled, or/and processed by the organization.
Maintain relationships and connectivity with industry peers, relevant threat intelligence sources, and regulatory agencies to collaborate and stay abreast of cyber events or topics.
Risk Management
Identify, assess, and prioritize information security risks.
Implement effective risk management strategies and controls to mitigate potential threats.
Liaises with external agencies, such as law enforcement and other advisory bodies, as necessary to
About the Company
At Mallinckrodt, we use strategic vision and employee-driven momentum to pursue a powerful mission: Listening for needs and delivering solutions. As a leader in specialty pharmaceuticals, we develop, manufacture, market and distribute innovative treatments for underserved patient populations within neurology, rheumatology, hepatology, nephrology, pulmonology, ophthalmology, and oncology; immunotherapy and neonatal respiratory critical care therapies; analgesics; cultured skin substitutes and gastrointestinal products. . Our ...
Know more