Director Cloud Cyber Security Delivery Lead

The Global Cybersecurity Operations Leader owns the 24×7 protection, detection, and response capabilities for the enterprise. This role leads follow-the-sun Security Operations (SOC), detection engineering, incident response, threat intelligence, and vulnerability/attack surface management across on-premises, cloud, and OT/edge environments. The leader partners closely with infrastructure, application, data, and compliance teams to reduce risk, meet regulatory obligations, and enable resilient business operations in a highly regulated global organization., * Lead 24×7 SOC with follow-the-sun coverage and clearly defined tiers, roles, and escalation paths.

• Own SIEM, SOAR, case management, and threat-hunting practices; drive continuous tuning to lower alert noise and false positives.
• Define service catalog, SLAs/OLAs, and capacity plans; align with ITIL for incident/problem/change management.

Incident Response & Threat Management

• Serve as executive incident commander for major cyber events; coordinate cross-functional response and communications.
• Maintain and test incident response plans, runbooks, and decision trees; ensure forensics, evidence handling, and post-incident reviews.
• Integrate threat intelligence (internal/external) into detections, hunting hypotheses, and risk prioritization.

Vulnerability & Attack Surface Management

• Own enterprise scanning, attack surface discovery (including cloud, OT/ICS, and third-parties), and risk-based remediation workflows.
• Drive timely remediation with platform/product owners; report exposure trends and exceptions to governance forums.
• Champion secure configuration baselines and hardening standards (CIS/NIST).

Identity, Endpoint, Network & Cloud Defense

• Partner with platform teams to implement zero-trust principles across identity (MFA/SSO/PAM), endpoints (EDR/XDR), email, and network (SASE/ZTNA).
• Oversee logging and telemetry coverage across cloud (Azure/AWS/GCP), on-prem, and SaaS; ensure retention meets legal/regulatory needs.
• Collaborate with OT/plant/site teams to improve visibility and segmentation for manufacturing and lab environments.

Governance, Risk & Compliance

• Ensure operational controls align to frameworks (NIST CSF/800-53, ISO 27001, SOC 2) and industry regulations (e.g., SOX, GDPR, FDA 21 CFR Part 11).
• Support audits and assessments; manage evidence, exceptions, and corrective actions with Quality/Compliance partners.
• Maintain policy-aligned playbooks, SOPs, and records to keep systems in a controlled and validated state.

People Leadership & Operating Model

• lead high-performing global teams (managers, engineers, analysts); develop skills matrices, career paths, and training plans.
• Foster a blameless learning culture with metrics, retrospectives, and continuous improvement.
• Manage budget, sourcing strategy (FTE/managed services), and vendor relationships; negotiate performance-based contracts.

Stakeholder Partnership & Communication

• Engage executives and business stakeholders with clear, non-technical narratives that tie cyber risk to business impact.
• Partner with Cloud/Infrastructure, Enterprise Apps (incl. SAP), Data/AI, and Privacy/Legal on secure-by-design initiatives.

Report program maturity, KPIs, and risks to the CISO and relevant governance boards

• 15+ years in cybersecurity with 7+ years leading global security operations in large, regulated enterprises.
• Proven ownership of SOC, SIEM/XDR, SOAR, incident response, and vulnerability management at scale.
• Deep knowledge of detection engineering and adversary tradecraft mapped to MITRE ATT&CK; hands-on with tools such as Microsoft Sentinel/Defender, Splunk, CrowdStrike, Tenable/Qualys, CyberArk (or equivalents).
• Strong grasp of cloud security (Azure/AWS/GCP), identity (Entra ID/Azure AD, SSO/MFA), and network security (SASE/ZTNA, micro-segmentation).
• Experience operating under NIST CSF, ISO 27001, SOC 2; familiarity with SOX, GDPR, and pharma GxP/FDA/EMA is a plus.
• Demonstrated ability to hire, develop, and retain diverse global teams; exceptional communication and executive presence.
• Bachelor's degree in Computer Science, Engineering, or related field; advanced degree preferred.
• Relevant certifications (one or more): CISSP, CISM, CCSP, GIAC (GCIA/GCIH/GCTI/GDSA), Microsoft SC-200/SC-100, ITIL.

We're Teva, a leading innovative biopharmaceutical company, enabled by a world-class generics business. Whether it's innovating in the fields of neuroscience and immunology or delivering high-quality medicine worldwide, we're dedicated to addressing patients' needs now and in the future. Here, you will be part of a high-performing, inclusive culture that values fresh thinking and collaboration. You'll have the room to grow, the flexibility to balance life with work, and the opportunity to better health worldwide, together.