Associate Director, Information Security and Data Compliance - Scholar Rock Cambridge, MA Bookmark Share Print 5 0 0

Listing Description

Scholar Rock is a biopharmaceutical company that discovers, develops, and delivers life-changing therapies for people with serious diseases that have high unmet need. As a global leader in the biology of the transforming growth factor beta (TGFβ) superfamily of cell proteins and named for the visual resemblance of a scholar rock to protein structures, the clinical-stage company is focused on advancing innovative treatments where protein growth factors are fundamental. Over the past decade, the company has created a pipeline with the potential to advance the standard of care for neuromuscular disease, cardiometabolic disorders, cancer, and other conditions where growth factor-targeted drugs can play a transformational role.
 
Scholar Rock is the only company to show clinical proof of concept for a muscle-targeted treatment in spinal muscular atrophy (SMA). This commitment to unlocking fundamentally different therapeutic approaches is powered by broad application of a proprietary platform, which has developed novel monoclonal antibodies to modulate protein growth factors with extraordinary selectivity. By harnessing cutting-edge science in disease spaces that are historically under-addressed through traditional therapies, Scholar Rock works every day to create new possibilities for patients. Learn more about the company’s approach at ScholarRock.com and follow @ScholarRock and on LinkedIn.

Summary of Position:

In this role, you will have an opportunity to lead the IT Security and Data Protection efforts for a fast-growing life sciences organization.  This is a high impact, high visibility role!  You will form close partnerships with many departments across the company and immediately have influence on not only the Security tools but also business processes, operational efficiency, and vendor management. 

You will be immersed in a fast paced, collaborative environment which values its employees and prides itself on its unique culture.  As a hands-on leader, you will have the opportunity to learn many different facets of a small to mid-size life sciences company as well as work with some extremely talented teams.  

You may be the right fit if you are interested in helping to build a growing organization, work as a team with colleagues in a collegial way and enjoy leading high impact projects, developing a team and driving operational excellence.  If you have an ear to the ground on compliance and risk, those interests will also serve you well.  Candidates who are curious and consider themselves “life learners” will thrive at Scholar Rock.  While technical aptitude is appreciated, we deeply value soft skills such as creativity, interpersonal, written and communication skills. This role reports to the Senior Director of IT Operations but will work with ALL departments across the organization.  


Position Responsibilities
  • Manage, through internal resources and outsourced vendors, the day to day running of Information Security and Data Protection operations.
  • Develop, implement, and update strategies, policies, and procedures to identify and mitigate risks, ensure compliance with industry regulations, and respond effectively to security incidents.
  • Follow processes for reporting and communicating security incidents to appropriate stakeholders, including executives, legal counsel, and regulatory bodies. Ensure that incident reports are timely, accurate, and comprehensive.
  • Stay abreast of emerging threats, vulnerabilities, and technologies in the information security field. Continuously evaluate and enhance the organization's security posture, controls, and processes through regular reviews, audits, and testing.
  • Work together with our Virtual CISO and IT Operations to ensure the organization’s ability to recover from disruptive incidents is in line with our risk tolerance. 
  • Planning and execution of projects related to security, risk, compliance, and data protection that support the company’s strategic goals and projected growth.
  • Execution of a cybersecurity strategy in partnership with the CFO and Audit Committee as well as management of a robust SOX environment supported by policies, procedures, and training.
  • Work collaboratively with IT teams, internal business partners and external vendors to identify, understand, implement, and support security, and data protection related initiatives.
  • Anticipate critical activities and risks, identify issues, and demonstrate initiative to appropriately escalate and resolve. Plan mitigations for risks with significant impact.
  • Demonstrate leadership, build partnerships, and communicate in a way that is motivating, optimistic and pragmatic; foster effective team interaction, collaboration, and accountability.
  • Foster a positive employee relations environment and a culture of continuous improvement, partnership, and teamwork using good and consistent management principles.

    • Candidate Requirements
  • Bachelor’s Degree and 5-7 Years experience within IT Security and IT Operations. And experience with a wide variety of security tools.
  • Master's degree level training a plus.
  • In-depth knowledge regarding cybersecurity and data privacy concepts.
  • Experience with SOX and/or 21 CFR Part 11 Compliance.
  • Experience with current and evolving privacy regulations such as GDPR and HIPAA.
  • Knowledge about cloud concepts such as SaaS, IaaS and PaaS, as well as integration of cloud systems.
  • Collaborative, open-minded, and have experience with the selection, implementation, rollout and support various systems which support different processes.
  • Strong interpersonal skills with a “seek to understand” mentality.
  • Life sciences industry experience would be great but a person who can work autonomously on projects and be willing and able to adapt to new responsibilities is much more important.  
    • Scholar Rock is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees

    Listing Details

    • Citizenship: Not Provided
    • Incentives: Not Provided

     

    • Education: Not Provided
    • Travel: Not Provided
    • Telework: Not Provided

    About Us

    NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

    Useful Links

    Our Contacts

    1765 Greensboro Station Pl.
    Suite 900
    Tysons Corner Va 22102

    (703) 594-7765

    requests@ninjajobs.org
    www.ninjajobs.org
    Chat with us!