Job was saved successfully.
Job was removed from Saved Jobs.

Job Details


Bristol Myers Squibb

Senior Manager, Cybersecurity

Technology

Development Manager

No

Princeton, New Jersey, United States

At Bristol Myers Squibb, we are inspired by a single vision – transforming patients’ lives through science. In oncology, hematology, immunology and cardiovascular disease – and one of the most diverse and promising pipelines in the industry – each of our passionate colleagues contribute to innovations that drive meaningful change. We bring a human touch to every treatment we pioneer. Join us and make a difference.

This Senior Manager, Cybersecurity role is directly responsible for acting as a “single point of contact” for requirements gathering, sourcing, negotiation and contracting of strategic, complex, high risk and innovative capabilities supporting the Network, Access & Cyber Fusion in Cybersecurity organization. This individual is expected to own the end-to-end architecture, engineering, and support of Imperva Cloud Web Application Firewall. This individual will also closely collaborate and contribute to BMS’s Cloud Security and Application Security program. This individual is expected to be highly skilled in effective cross-functional stakeholder management and must have the ability to identify optimal solutions to meet business requirements in accordance with BMS’s policies and strategies.

Responsibilities:

  • Manage Imperva Cloud Web Application Firewall (CWAF) platform.

  • Provide comprehensive service to BMS’s mission & business critical applications, including onboarding, proactive monitoring, configuration, integration assistance in CWAF.

  • Act as a trusted advisor, providing a high quality of troubleshooting, investigation, and consultation when requested by application teams.

  • Take ownership of issues, work with internal CWAF run team and Imperva support.

  • Research & develop solutions for complex application integrations with CWAF.

  • Collaboration and contribution to BMS’s Cloud Security and Application Security program.

Job Requirements:

  • Two (2) + years’ experience in technology support, production support, networking, or IT security.

  • Good communication skills.

  • Analytical and problem-solving mindset with the drive to research and learn in pursuit of solutions.

  • Developed soft-skills capable of supporting both IT and business teams, and comfortable with presenting and leading calls.

  • Experience working with application developers and application support team.

  • Domain knowledge of Networking Technologies and Protocols – anycast, web applications, and associated protocols - HTTP/S, TLS, DNS, TCP/IP.

  • Familiarity and experience with OWASP top 10 risks.

  • Familiarity with common web technology concepts such as HTML, Javascript, JSON, and REST APIs.

  • Experience with AWS or Azure or GCP is an advantage.

  • Experience with Cloud Security and Application Security is an advantage.

  • Imperva CWAF certifications are desirable.

Preferred Qualifications

  • Bachelor's degree in Information Technology or similar degree (or equivalent combination of education and experience) required.

  • Professional Certifications (e.g. CISSP, CISM etc)

  • Experience in the pharmaceutical or consulting industry is an advantage.

  • Willingness to learn and get required security and product specific certifications and training.

Around the world, we are passionate about making an impact on the lives of patients with serious diseases. Empowered to apply our individual talents and diverse perspectives in an inclusive culture, our shared values of passion, innovation, urgency, accountability, inclusion and integrity bring out the highest potential of each of our colleagues.

Bristol Myers Squibb recognizes the importance of balance and flexibility in our work environment. We offer a wide variety of competitive benefits, services and programs that provide our employees with the resources to pursue their goals, both at work and in their personal lives.

Physical presence at the BMS worksite or physical presence in the field is an essential job function of this role which the Company deems critical to collaboration, innovation, productivity, employee well-being and engagement, and enhances the Company culture.

To protect the safety of our workforce, customers, patients and communities, the policy of the Company requires all employees and workers in the U.S. and Puerto Rico to be fully vaccinated against COVID-19, unless they have received an exception based on an approved request for a medical or religious reasonable accommodation. Therefore, all BMS applicants seeking a role located in the U.S. and Puerto Rico must confirm that they have already received or are willing to receive the full COVID-19 vaccination by their start date as a qualification of the role and condition of employment. This requirement is subject to state and local law restrictions and may not be applicable to employees working in certain jurisdictions such as Montana. This requirement is also subject to discussions with collective bargaining representatives in the U.S.

Our company is committed to ensuring that people with disabilities can excel through a transparent recruitment process, reasonable workplace adjustments and ongoing support in their roles. Applicants can request an approval of accommodation prior to accepting a job offer. If you require reasonable accommodation in completing this application or if you are applying to a role based in the U.S. or Puerto Rico and you believe that you are unable to receive a COVID-19 vaccine due to a medical condition or sincerely held religious belief, during or any part of the recruitment process, please direct your inquiries to adastaffingsupport@bms.com. Visit careers.bms.com/eeo-accessibility to access our complete Equal Employment Opportunity statement.

BMS will consider for employment qualified applicants with arrest and conviction records, pursuant to applicable laws in your area.

Any data processed in connection with role applications will be treated in accordance with applicable data privacy policies and regulations.