Director of IT, Security
Waltham, MA, United States
At Viridian (NASDAQ: VRDN), we aim to advance new treatments for patients underserved by today's therapies. Our team consists of talented, entrepreneurial-minded professionals dedicated to improving the lives of patients suffering from serious diseases. We strive for data-driven decisions, thoughtful risk-taking, and efficient use of time and funds to best position our ideas for success. We value thoughtful ideas, open communication, and transparency, and are committed to a culture that allows employees to contribute at a high level, grow their careers, and balance their personal and professional ambitions.
Viridian has an exciting new opportunity to join our growing IT team as a Director of Security. As the Director of IT Security, you will be responsible for leading and overseeing all aspects of information security within our organization. You will play a critical role in protecting our sensitive data, systems, and networks from cyber threats, ensuring compliance with industry regulations, and implementing best practices to safeguard our intellectual property and maintain the trust of our stakeholders.
This role is based in our Waltham, MA headquarters. Our office-based employees follow a hybrid in-office schedule. Remote work is allowed, and the frequency is at the discretion of management.
Responsibilities (including, but not limited to):
Develop and implement a comprehensive IT security strategy aligned with the company's goals and objectives.
Continuously assess risks and emerging threats, and proactively identify opportunities to enhance our security posture.
Conduct regular risk assessments and vulnerability scans to identify potential weaknesses in our systems and infrastructure.
Develop mitigation strategies and controls to minimize risks and vulnerabilities.
Lead the incident response team in promptly investigating and addressing security incidents, breaches, and vulnerabilities.
Develop and maintain incident response plans and procedures to ensure a timely and effective response to security incidents.
Regularly report on the status of IT security initiatives, risks, and compliance to executive leadership and the board of directors.
Ensure compliance with relevant regulatory requirements, such as HIPAA, GDPR, and industry standards such as ISO 27001.
Ensure SOX 404b compliance, including continuous improvement of our internal control environment, thorough documentation and testing, and participation in independent audits by external auditors.
Coordinate with legal, compliance, and regulatory teams to address any compliance-related issues and requirements.
Evaluate the security posture of third-party vendors and service providers, and ensure that appropriate security controls are in place to protect our data and assets.
Manage vendor relationships and contracts to ensure compliance with security requirements.
Establish and enforce IT security policies, standards, and procedures in accordance with regulatory requirements and industry best practices.
Ensure that policies are communicated effectively and adhered to across the organization.
Develop and deliver training programs and awareness campaigns to educate employees about security best practices, policies, and procedures.
Foster a culture of security awareness and accountability throughout the organization.
Requirements Bachelor's degree in Computer Science, Information Technology, or related field; Master's degree preferred.
Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent certification.
Minimum of 8 years of experience in IT security, with at least 3 years in a leadership or managerial role.
Deep understanding of cybersecurity principles, technologies, and best practices.
Proven track record of developing and implementing IT security strategies and programs in a complex organizational environment.
Excellent communication and interpersonal skills, with the ability to effectively collaborate and influence stakeholders at all levels of the organization.
Strong leadership abilities, with a demonstrated ability to build, motivate, and mentor high-performing teams.
Experience in the biotech or pharmaceutical industry preferred, with a solid understanding of relevant regulations and compliance requirements.
The salary range for this position is commensurate with experience.
Viridian offers a comprehensive benefits package including:
•C ompetitive pay and stock options for all employees
•Medical, dental, and vision coverage with 100% of premiums paid by Viridian for employees and their eligible dependents
•Fertility and mental health programs
•Short- and long-term disability coverage
•Life, Travel and AD&D
•401(k) Company Match with immediate company vest
•Employee Stock Purchase plan
•Generous vacation plan and paid company holiday shutdowns
•Various mental, financial, and proactive physical health programs covered by Viridian
Viridian Therapeutics, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination, harassment, or retaliation of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by Federal, State, and Local laws. Viridian will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Viridian Therapeutics, Inc participates in E-Verify, the federal program for electronic verification of employment eligibility.