Company Overview
Advarra is a leader in clinical research, advancing human health through ethical review services and innovative technology solutions.
Job Overview
Senior Cyber Security Manager (BISO) – Enterprise GRC Platform – Ireland office. Reporting to the Senior Director, Enterprise Security Governance, Risk, and Compliance, the BISO is the primary security liaison for the Ireland office and owns the global GRC platform administration.
Location
Hybrid – Limerick, Ireland
Responsibilities
* Serve as the primary security liaison for the Ireland office, ensuring alignment with global enterprise security strategy.
* Own and administer the enterprise GRC platform, including user access, workflows, control mapping, integrations, and reporting.
* Provide dashboards, training, and governance to support risk, compliance, and audit readiness.
* Partner with IT, Compliance, and Privacy Offices to lead risk management efforts.
* Act as the local CSIRT lead and escalation for regional incident response, maintaining plans, playbooks, and logging/reporting mechanisms.
* Act as the point of contact for regional IT Security and risk audits, assessments, and compliance reviews.
* Oversee governance for Business Continuity Planning (BCP) and Disaster Recovery (DR) activities.
* Help coordinate the policy governance lifecycle, including communication, awareness, and enforcement of enterprise security and compliance policies.
* Champion awareness, training, and workforce engagement to adopt risk‑aware behaviors.
* Partner with local business leaders to embed security and compliance requirements into projects, operations, and technology initiatives.
* Support continuous improvement initiatives that strengthen security posture and operational efficiency.
* Perform other duties as assigned to support enterprise Governance, Risk, and Compliance objectives.
Basic Qualifications
* 10 years of related experience with a Bachelor’s degree; 8 years with a Master’s degree; or a PhD with 4 years’ experience; or equivalent experience.
* 5+ years of leadership experience in Enterprise Risk Management, IT Risk, Information Security, Compliance, or Governance.
* 4+ years of previous experience in an FDA regulated and ISO9001/ISO27001 environment.
* Experience developing, implementing, and managing enterprise‑wide risk management frameworks, policies, and governance programs.
* Expert working knowledge of relevant authoritative source material (ISO 27001, HITRUST, HIPAA, PCI, GDPR, etc.) and industry best practices (NIST, FIPS, FISMA, COBIT, ITIL, State/FedRAMP, etc.).
Preferred Qualifications
* Professional certifications: CISSP, CISM, CRISC, CIA, ISO 27001 Lead Implementer/Lead Auditor, or equivalent.
* Expert working knowledge of security, governance, risk, compliance, and privacy concepts and practices as they apply to healthcare and information technology.
* Experience managing large, complex, and high‑visibility projects.
* Experience with stakeholder engagement, negotiation, and influence across technical and non‑technical audiences.
* Excellent communication and organizational skills and superb attention to detail.
* Experience in project management, change management, and staff training.
* Expert leadership skills with the ability to work effectively at all levels of the organization.
* Strong analytical, problem‑solving, and decision‑making skills.
* Working knowledge of cloud technologies like AWS, CSPM, etc.
* Proven ability to lead cross‑functional initiatives and manage diverse stakeholder groups across business, IT, and compliance functions.
Physical Requirements
* Sit or stand for extended periods at a stationary workstation.
* Regularly carry, raise, and lower objects of up to 10 lbs.
* Learn and comprehend basic instructions, focus, and attention to tasks and responsibilities.
* Verbal communication, listening, understanding, responding, and speaking.
Advarra is an equal opportunity employer that is committed to diversity, equity, and inclusion. Advarra provides equal employment opportunity to all individuals regardless of race, color, religion, creed, sex (including pregnancy, childbirth, and related medical conditions, sexual orientation, and gender identity), national origin, age, disability, or genetic information or any other protected status. Advarra takes affirmative action to ensure that applicants and employees are treated without regard to any of these protected characteristics in all terms and conditions of employment, including, but not limited to, hiring, training, promotion, discipline, compensation, benefits, and separation from employment.
#J-18808-Ljbffr