Associate Director, Information Security

What if the work you did every day could impact the lives of people you know? Or all of humanity?

At Illumina, we are expanding access to genomic technology to realize health equity for billions of people around the world. Our efforts enable life-changing discoveries that are transforming human health through the early detection and diagnosis of diseases and new treatment options for patients.

Working at Illumina means being part of something bigger than yourself. Every person, in every role, has the opportunity to make a difference. Surrounded by extraordinary people, inspiring leaders, and world changing projects, you will do more and become more than you ever thought possible.

Job Summary – Sr. Information Security Engineer (Associate Director)

Job Description:

Reporting to the Director, Information Security Engineering (DISE), this Sr. Information Security Engineer is a functional technical and team leader role at Illumina. Responsible for successfully executing enterprise-wide Information Security controls and processes that protect the company’s data and functions across all business areas, adhering to data protection standards, procedures, regulatory oversight, and technical solutions for the Information Security department.  Support of program control processes to ensure mitigation of risks and approved configuration certification of systems.  This position requires experience, knowledge and skills in the areas of engineering, architecture, strategy, and design.

Supporting established processes, analysis of computing environment, coordination, testing, hardware introduction and release, cybersecurity-based awareness and education, cloud security control management, and participation in periodic audits.  Performs all duties in accordance with the company’s policies and procedures, all state, federal, and country laws and regulations, wherein the company operates.  Delivery of activity reporting, including metrics, environment impact, effectiveness progress, and performance indicators.  The role will also assist with ensuring discretionary and regulatory audits are aligned with Illumina’s current processes and procedures.

Duties & Responsibilities

• Assists in the execution of the Information Security Program, Data Governance practices, and Privacy assurance
• Analyzes risk of existing network and system architectures against correlating policies and risks, and provides appropriate remediation or risk reduction plans
• Evaluates ongoing practices and procedures, technical documentation, and diagrams for appropriate security measure maturity and effectiveness
• Independently leads projects, coordinates with team members and other technical departments, ensuring proper communication and management of the overall success through completion and validation
• Generates and monitors effective and actionable Information Security reporting across the InfoSec technical landscape and provides pertinent input to briefing presentations
• Executes as a reliable second line-of-defense via documented processes, controls, templates, and rigors
• Provide evidence for security controls that demonstrate processes, procedures, and standards that meet existing and emerging regulatory requirements.  (i.e.g, HIPAA, PCI-DSS, SOX, SOC 1 & 2, GDPR, C5, CCPA)
• Acts in a leadership capacity for both Information Security and business unit teams for timely and effective delivery of enterprise-wide cybersecurity-based technology design, implementation, deployment, and support
• Provides consulting on best practices to internal customers to ensure processes are embedded at the correct time and frequency and to ensure compliance to security standards
• Define technical control requirements, evaluate existing tool effectiveness, and propose solutions to enhance the company’s security posture

Qualifications

• Minimum 15+ years experience implementing and supporting Information Technology enterprise-level tools with track record of creating enterprise wide scalable solutions based on industry standard security concepts, technical controls, and best practice frameworks
• Minimum 3+ years technical experience identifying technical and procedural gaps across information technology-focused solutions and processes
• Multiple years of experience with cloud computing workflows and infrastructure (i.e., AWS, MS Azure, and GCP)
• Expert-level knowledge and experience managing technical solutions and devices (i.e., Endpoint protections, firewalls, IDS/IPS, SIEMs, Endpoint detect & response (EDR/XDR), sandboxing, vulnerability scanning tools, Identity & access management (IAM/IDM), etc.)
• Extensive investigation and incident response experience analyzing log and forensic data from multiple sources (e.g., endpoint technologies, cloud, networking, server, cloud, etc.)
• Ability to proactively collaborate by sharing information, managing knowledge across many technology domains, and championing solutions for broad adoption to improve security posture
• Strong oral and written communication skills appropriate for consultation with all levels of management
• Proven leadership delivering on team goals, projects, and work efficiency showing drive to achieve results
• The ability to thrive in a fast-paced, dynamic environment
• A self-starter with a hands-on style, high level of energy, stamina, drive, and commendable organization and time management skills

Education

• Bachelor's degree in Information Systems, Computer Science, Information Security, and/or related work experience
• Professional qualifications are preferred: CISSP, SANS, GIAC, ITIL, or similar

Illumina believes that everyone has the ability to make an impact, and we are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information.