Cybersecurity Manager Jobs

Company Overview

Rhythm is a global, commercial-stage biopharmaceutical company committed to transforming the care of people living with rare melanocortin-4 receptor (MC4R) pathway diseases. Working at Rhythm means that you are part of a team that’s passionate about transforming the lives of people living with hyperphagia (pathological, insatiable hunger) and severe obesity caused by rare MC4R pathway diseases. We recognize the courage it takes for patients and their caregivers to begin their journey of advocacy to find the answers they need. Their courage inspires us to challenge convention, ask bold questions and seek answers for them. Every day, we strive for excellence through our willingness to adapt, learn, and our tenacity to overcome barriers, together.

Opportunity Overview

Reporting to the Head of Information Technology, the Cybersecurity Manager will focus on ensuring the overall security health of our ecosystem through both providing guidance on long term security program and systems / tools and providing hands on incident management throughout the organization.

Responsibilities And Duties

• Partner with business units to ensure that risk management processes and security standards are understood and consistently applied across systems, projects, and practices.
• Manage the framework for evaluating the company's cybersecurity program and continual improvements.
• Provide the expertise to build upon existing cybersecurity infrastructure and processes with the goal of ensuring the company is well-protected.
• Supports the creation of business continuity/disaster recovery plans, including conducting disaster recovery tests, publishing test results and making changes necessary to address deficiencies.
• Oversee third-party cybersecurity technology and service vendors.
• Works with security information and event management (SIEM) to manage/tune the system, create/manage the detection content and actively watch for alerts.
• Execute projects on the cybersecurity roadmap within budget, scope, and timeline.
• Raise organizational cybersecurity awareness and develop and deliver security training.
• Establish and improve security policies, procedures, and standards.
• Conducts network monitoring and intrusion detection analysis such as intrusion detection/prevention systems, firewalls, and host-based security systems.
• Deploys cloud-centric detection to detect threats related to cloud environments and services used by the organization.
• Correlates activity across assets (endpoint, network, apps) and environments (on-premises, cloud) to identify patterns of anomalous activity.
• Perform risk-based internal and vendor security audits as needed.
• Provide management with information on real-time threats and vulnerabilities facing the organization and recommended actions.
• Act as the primary control point during cybersecurity incidents.

Qualifications And Skills

• Excellent verbal, written and interpersonal communication skills.
• The successful candidate shall be adept at strategic and technical execution and have demonstrated experience working in a cybersecurity program leveraging outsourced resources.
• Strong ability to identify needs, take initiative and prioritize work efforts, balancing operational tasks with longer-term strategic security efforts.
• Significant travel is not expected to be associated with this position.
• Bachelor's degree in Information Technology or a related field
• Has the ability to move from high level strategy activities to hands on activities easily.
• Demonstrated ability to drive projects with minimal oversight and following Project Lifecycle practices.
• 6 years of prior relevant experience including both oversight and hands on experiences.
• Understanding of networks, operating systems, logical access controls, and preventive and detective security solutions with an accompanying understanding of system vulnerabilities and cyberattack vectors and surfaces.
• Can interface with, and gain the respect of, stakeholders at all levels and roles in the company.
• Strong knowledge of common information security management frameworks and practices such as ISO/IEC27001, NIST, SOX, GDPR, and HIPAA.
• Is a confident, energetic self-starter, with strong interpersonal skills.

This role is based out of our corporate office in Boston, Massachusetts. Rhythm operates in a hybrid-work model. Candidates applying must be willing and able to be in the Boston office in coordination with their department and business needs. This role may involve some travel.

More about Rhythm

Rhythm is a global, commercial-stage biopharmaceutical company aimed at developing and commercializing therapies for the treatment of rare genetic diseases of hyperphagia and severe obesity due to rare melanocortin-4 receptor (MC4R) pathway diseases. This is a key biological pathway that regulates weight and hunger. A central element of Rhythm’s mission is to improve the understanding of these diseases and develop management strategies for patients who have no treatment options available to them. Rhythm was founded in 2008 and is based in Boston, MA. The company’s clinical development program is currently focused on several rare MC4R pathway diseases. For healthcare professionals, visit www.RareObesity.com for more information. For those who may be affected or would like to learn more, visit www.LEADforRareObesity.com for more information.