Health & Science Cybersecurity Architect

Our Team:

Our Security Architecture team, reporting directly to the CISO alongside the Security Operations & SOC and Governance, Risk, and Compliance teams, plays a pivotal role in designing and implementing robust security solutions across all digital domains. Under the leadership of the Security Architecture Lead, this team ensures our organization's technological infrastructure is secure, aligned with industry best practices, and effectively supports our cybersecurity strategy.

Main responsibilities:

The Health & Science Cybersecurity FTE, reporting to the Security Lead, will play a pivotal role in ensuring the cybersecurity resilience of our Health & Science sectors. This role focuses on implementing robust security measures and strategies tailored to the unique challenges of healthcare and scientific environments. Key responsibilities include:

• Portfolio Optimisation & Functional Gaps:
  • Assess the efficacy of deployed security solutions specific to health and scientific environments against leading solutions from all vendors.
  • Assess the organisation's cybersecurity solution portfolio within the Health & Science sectors and address identified gaps.
• Policies, Tech Standards & Security by Design:
  • Work with other teams (e.g., IT, enterprise risk, business owners, HR) to update and design policies and tech standards as required for the HW / SW, applications and systems being deployed exclusively in health and scientific settings.
  • Work with product development teams to provide guidance, support and involvement from cybersecurity to ensure products are developed in a secure way and are "secure by design" throughout the lifecycle of health and scientific projects.
  • Regularly review and update security policies throughout the development and acquisition lifecycle for health and scientific data protection.
  • Perform certification and accreditation processes for new systems in healthcare and scientific environments to ensure compliance and security readiness.

About you

• Experience:
  • 5-7 years of professional experience (equivalent combination of experience and education accepted)
  • Previous work in an international environment.
  • Demonstrated experience in working within cybersecurity teams, particularly in health and scientific environments.
  • Proven track record of contributing to the design and implementation of security solutions tailored to the unique challenges and regulatory requirements of health and science sectors.
• Soft skills:
  • Broad experience in working in large digital teams, with an understanding of how digital and business processes are linked.
  • Stakeholder management and communication skills, especially when interacting with senior leadership.
  • Skilled problem solver and self-starter.
  • A hands-on pragmatic attitude to driving change.
  • Positive, "can-do" attitude.
• Technical skills:
  • Proficiency in the Microsoft tech stack and leveraging ecosystem synergies.
  • Experience with AGILE or similar project management frameworks.
  • Working knowledge of common information security management frameworks (ISO/IEC 27001, ITIL, NIST, NISD, CISSP/CCSP, QxP, CIS20).
• Education:
  • Bachelor's and master's degree (preferred) in any of the following fields of study: Information Technology, Computer Science, Cybersecurity or Information Security
• Languages:
  • English

Pursue progress, discover extraordinary

Better is out there. Better medications, better outcomes, better science. But progress doesn't happen without people - people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let's be those people.

At Sanofi, we provide equal opportunities to all regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, or gender identity.

Watch our ALL IN video and check out our Diversity Equity and Inclusion actions at sanofi.com!