Listing Description
SENIOR IT INFRASTRUCTURE OPERATIONS AND SECURITY MANAGER
Day One Biopharmaceuticals is an emerging, mission-driven, drug development company intentionally designed to identify, clinical evaluate, and successfully commercialize novel treatments for pediatric oncology patients, and ultimately to expand those benefits to patients of all ages. For more information, please visit our website at http://www.dayonebio.com.
POSITION SUMMARY:
Day One Biopharmaceuticals is seeking to hire a Sr. IT Infrastructure Operations and Security Manager. This position will oversee the desktop, cloud platforms, mobile and help desk support services, as well as lead a portfolio of Information Security initiatives at Day One.
Reporting the head of IT, the role will require subject matter expertise in managing workforce productivity tools, systems and practices in a high SaaS utilization environment for a small to mid-size Life Sciences or Pharmaceutical company. Specific areas of knowledge on the IT systems side include current Windows and Mac laptop environments, desktop productivity tools including common suites such as Microsoft Office, Adobe, Google Workspace, and a combination of AWS and other cloud virtual services infrastructure, including VPC, EC2, serverless, and web/CDN architectures
This position is located at our corporate headquarters in Brisbane, CA, but has the potential to be fully remote. Occasional travel will be required for in person meetings.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
· On the security side, the ideal candidate will have deep familiarity with current comprehensive desktop and mobile security suites, including web/DNS/app access/AV and threat detection capabilities. Additionally strong background with SAML SSO, Backup/recovery, CASBI, VPN systems, DLP, as well as SIEM, cloud monitoring, benchmarking, security automation suites and incident response tools.
· The candidate should have a background of successfully implementing technology and security enhancement programs, from portfolio planning through project management, implementation, integration, 3rd party vendor supervision and change control processes. The candidate should have a breadth of knowledge of the predominant and leading edge players in the IT and InfoSec vendor landscape, and be able to lead structured vendor selection, implementation and ongoing operations for IT and security infrastructure.
· The candidate should be comfortable working both in a collegial small team, ‘start-up” like environment, but also in implementing industry standards and best practice processes and structure to achieve a rigorously controlled, robust systems and security environment.
· This role will work directly with internal leadership, business leads, IT technical resources, and vendors, and will require communications skills to interact with executive and non-technical staff, as well as highly technical team members within the organization. The role will supervise or directly manage contractors, implementation vendors and help desk support teams.
· The candidate should ideally have significant knowledge of current line-of-business systems and process such that they can easily develop and manage the implementation of workflows, as well as support the evolving needs of the organization as new programs are brought on.
· The candidate should be highly familiar with managing IT systems in the regulated Pharmaceutical/Life Sciences industry including governance processes to both support 21CFR11/Annex 11/ICH and related GCP/GMP/GLP (“GxP”) data and system regulations. They should be experienced with managing IT systems in a US publicly traded company, and as well as operating within California, US and international privacy regulations.
QUALIFICATIONS:
· 5-7 years experience managing IT systems, infrastructure and support in a small/mid-sized life sciences company, including supervising help desk operations and leading project implementation portfolios for desktop and cloud infrastructure systems.
· 5-7 years experience with Windows and Mac systems, including identity access and applications management, MDM, including tools such as NinjaRMM, Manage Engine, Labtech, Addigy, Jamf, etc) as well as related patch management tools.
· 3-5 years experience leading Information Security, including desktop, server, cloud and centralized administration, monitoring and incident response (AV, SentinelOne, Trend, CrowdStrike, ESET, Cylance, etc), backup suites (Code42, Backblaze, Druva, Carbonite, Acronis, etc), SIEM and network monitoring tools (SumoLogic, Splunk, NewRelic, Huntress, Darktrace, etc).
· 3-5 years experience in managing SSO (Okta, Ping, OneLogin etc) as well as SaaS platform suites such as Office 365, Gsuite, common desktop tools (Adobe, file managers, browsers, etc) and broad SaaS integration with SSO
· 3-5 years experience with linux/bash, mac/zsh and powershell admin, as well as physical network and firewall systems (Miraki)
· 3-5 years cloud PaaS/Iaas (AWS, GCP, Azure)
· 3+ years experience evaluating vendor platforms through standardized security frameworks (SOC2, ISO27001, HITRUST, NIST-CSF, CIS Controls etc)
· 2-3 years experience in IT portfolio and project management, leading projects from requirements, through vendor selection, contracting, implementation, support and change controls.
· 2-3 years experience with external IT security audit, web and network stack test automation, read team and pen testing.
· 1-3 years experience with administration, setup and repository stewardship of general doc storage and authoring systems (Box, Egnyte, Dropbox, Sharepoint/Office365, S3, sFTP, etc).
· Familiarity with ticket and IT process management, SDLC tools (Confluence/Jira, SpiceWorks, Manage Engine, ServiceNow, LabTech, Asana, Pivotal, etc).
· Familiarity with CDN, CMS and web systems (Akami, CloudFront, Fastly, NginX, Lightspeed, Apache, Wordpress, HAPROXY, Joomla, Drupal, Typo3). Web frameworks (Node.js, express.js, next.js) also a plus
· Strong background coordinating and interacting with business groups on a non-technical level.
· Excellent technical and non-technical communications skills
The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification.
DISCLAIMER
Day One Biopharmaceuticals is committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status.
Employment is conditioned upon full vaccination from the COVID-19 virus, including submission of documented proof thereof, as of the start date. Day One Biopharmaceuticals will comply with applicable law regarding the reasonable accommodation of individuals who are not vaccinated because of a disability and/or sincerely held religious belief.
Recruitment & Staffing Agencies: Day One Biopharmaceuticals do not accept unsolicited resumes from any source other than candidates. The submission of unsolicited resumes by recruitment or staffing agencies to Day One Biopharmaceuticals or its employees is strictly prohibited unless contacted directly by Day One Biopharmaceutical’s internal HR team. Any resume submitted by an agency in the absence of a signed agreement will automatically become the property of Day One Biopharmaceuticals, and Day One Biopharmaceuticals will not owe any referral or other fees with respect thereto.
Listing Details
- Citizenship: Not Provided
- Incentives: Not Provided
- Education: Not Provided
- Travel: Not Provided
- Telework: Not Provided