Associate Director, Information Security
Medpace is a full-service clinical contract research organization (CRO). We provide Phase I-IV clinical development services to the biotechnology, pharmaceutical and medical device industries. Our mission is to accelerate the global development of safe and effective medical therapeutics through its scientific and disciplined approach. We leverage local regulatory and therapeutic expertise across all major areas including oncology, cardiology, metabolic disease, endocrinology, central nervous system, anti-viral and anti-infective. Headquartered in Cincinnati, Ohio, employing approximately 3,500 people across almost 40 countries.
Plan, direct and manage the day to day operations of the IT Security department;
Develop, maintain, and enforce IT security procedures and policies that are effective and efficient in protecting Medpace computer systems & data and are consistent with regulatory requirements;
Safeguards information system assets by identifying and solving potential and actual security problems;
Protects system by defining access privileges, control structures, and resources;
Recognizes problems by identifying abnormalities; reporting violations;
Implements security improvements by assessing current situation, evaluating trends, anticipating requirement;
Determines security violations and inefficiencies by conducting periodic audits;
Upgrades system by implementing and maintaining security controls;
Keeps users informed by preparing performance reports; communicating system status;
Maintains quality service by following organization standards;
Collaborate with Functional Areas/business units across the company to assist in their evaluation and implementation of technology tools;
Oversee the hiring, training, evaluation, and retention of associates;
Represent department/functional area in Business Development; and
Conduct policy training and ensure employees are working in compliance with SOPs and Good Clinical Practice guidelines.
Bachelor's degree in computer science, information technology or related discipline;
5-10 years of IT management experience;
Advanced certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP and/or SIEM-specific training and certification preferred;
Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements;
Hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, FPC), and other attack artifacts in support of incident investigations;
In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. LogRhythm);
Understanding of mobile technology and OS (i.e. Android, iOS, Windows) and VMware technology;
Extensive experience in all Microsoft related products including operating systems, Active Directory, Remote Server and Desktop Access, SQL Server, Office 365, Teams and SharePoint;
Experience with Perimeter Security systems and software (e.g., Firewalls, Intrusion Protection Systems, VPN); and
Excellent management, leadership. communication, presentation, organization and positive influencing skills.
When you join Medpace, you become part of a team dedicated to supporting the development of ground-breaking drugs and devices. Our employees provide hope for those living with debilitating diseases. We invite you to be a part of something that is impacting millions of people around the globe while enjoying a competitive total compensation and benefits package and internal growth opportunities.
Medpace historically named a Top Cincinnati Workplace by the Cincinnati Enquirer
Recognized by Forbes as one of America's Best Mid-size Companies in 2021
Medpace ranks amongst top CROs for site ratings across all 10 important attributes including CRA training, preparation & organization, accessibility of staff, open communication, and ensuring timely drug availability
Continually recognized with CRO Leadership Awards from Life Science Leader magazine based on expertise, quality, capabilities, reliability, and compatibility
What to Expect Next:
A member of our recruitment team will review your qualifications and, if interested, you will be contacted for an interview.
*WARNING:Please beware of phishing scams that offer opportunities with Medpace in exchange for sending money. These scammers pose as legitimate employees from actual companies. Please be advised that a Medpace employee will never ask you for a credit card, send you a check, or ask you for any type of payment as part of consideration for a role with our company. All of our careers require that you first complete an online application and go through some sort of interview process.
EO/AA Employer M/F/Disability/Vets