Career Category

Job Description

Job Summary:

Amgen is searching for a Sr. Mgr.,  Information Security, Global Information Protection who will report to the Director, Information Security Governance, Risk and Compliance in the USA and will be based in Shanghai. At Amgen, our mission is simple: to serve patients.

The Sr. Manager, Global Information Protection will  lead Amgen’s response to the evolving regulatory landscape within China as it pertains to Cybersecurity and Information Governance and Protection.  The mission of the Sr. Manager will be to manage Amgen’s information protection governance approach in alignment with local China regulations.

Job Responsibilities:

• Support growth of China business and act as the cyber and information protection strategy lead for China
• Implement and manage local policy and governance structure with primary focus on protection and governance of systems, applications and data within China
• Work closely with Amgen Law, Privacy, Risk, Compliance and Information Systems teams to promote and receive buy-in for information protection strategy and governance approach
• Lead local Business Information Security Official, risk analysts and information governance and compliance analysts to successfully drive cybersecurity, security architecture, and information protection strategy within China
• Report to Global Director, Information Security, and will be the GIP lead for China on local regulatory updates, information governance and data protection efforts
• Assurance of core data protection and management controls within China, including implementation, measurement, and reporting against the effectiveness of those controls
• Manage China cybersecurity and information governance policy for alignment with evolving laws and regulations
• Execute the implementation of Business Development security activity relevant to China
• Develop and manage procedural controls to ensure compliance with all internal and external security standards
• Support and provide guidance related to intellectual property and trade secret protection, PHI/PII and sensitive
• Manage associated capital and expense budgets for cybersecurity efforts within China

Basic Qualifications:

Master’s degree and 8 years of Information Security experience

OR

Bachelor’s degree and 10 years of Information Security experience

AND

2 years of managerial experience directly managing people and/or leadership experience leading teams, projects, programs or directing the allocation of resources

Preferred Qualifications:
 

• Experience working in China on strategic cybersecurity, data protection, and governance efforts.
• Experience in collaborating with and influencing cross-functional leaders in the business to include, but not limited to, Privacy, Compliance, Law and Information Systems.
• Strong understanding of data protection, governance and security-related control systems, processes and teams.
• Ability to understand the risks and challenges associated with China’s regulatory landscape towards Amgen's business processes at enterprise scale.
• Current and strong knowledge and understanding of advanced information protection controls.
• Proficient in preparation of reports, dashboards and documentation.
• Practical Knowledge of Information Security standards and policies (e.g., ISO 27001/27002, NIST, and others)
• Bi-lingual in English and Mandarin.
• Effective at collaborating with global, virtual teams.
• Team-oriented interpersonal skills with the ability to effectively communicate and interact with a broad range of people and roles.
• Demonstrated ability to handle high pressure situations with key stakeholders.
• Ability to piece together different and complex technologies and solutions to help provide a solution that meets security requirements.
• Successful management of competing priorities under ambiguous circumstances.
• Team-oriented, placing priority on the successful completion of team goals.
• Highly motivated and able to work effectively under minimal supervision.
• Excellent verbal and written communication skills.
• Demonstrated leadership  skills.
• Experience in performing vendor management.
• Master Degree in Engineering, Information Systems, or Computer Science.
• 5+ years as a Manager supporting a multinational organization.
• CISSP or equivalent security-related industry certifications.
• Accepts responsibility and personal accountability.