Director Cloud Cyber Security Delivery Lead

We Are Teva

We’re Teva, a leading innovative biopharmaceutical company, enabled by a world-class generics business. Whether it’s innovating in the fields of neuroscience and immunology or delivering high-quality medicine worldwide, we’re dedicated to addressing patients’ needs now and in the future. Here, you will be part of a high-performing, inclusive culture that values fresh thinking and collaboration. You'll have the room to grow, the flexibility to balance life with work, and the opportunity to better health worldwide, together.

The opportunity

The Global Cybersecurity Operations Leader owns the 24×7 protection, detection, and response capabilities for the enterprise. This role leads follow‑the‑sun Security Operations (SOC), detection engineering, incident response, threat intelligence, and vulnerability/attack surface management across on‑premises, cloud, and OT/edge environments. The leader partners closely with infrastructure, application, data, and compliance teams to reduce risk, meet regulatory obligations, and enable resilient business operations in a highly regulated global organization.

How You’ll Spend Your Day

Global Security Operations (SOC)

• Lead 24×7 SOC with follow‑the‑sun coverage and clearly defined tiers, roles, and escalation paths.
• Own SIEM, SOAR, case management, and threat‑hunting practices; drive continuous tuning to lower alert noise and false positives.
• Define service catalog, SLAs/OLAs, and capacity plans; align with ITIL for incident/problem/change management.
  
  

Incident Response & Threat Management

• Serve as executive incident commander for major cyber events; coordinate cross‑functional response and communications.
• Maintain and test incident response plans, runbooks, and decision trees; ensure forensics, evidence handling, and post‑incident reviews.
• Integrate threat intelligence (internal/external) into detections, hunting hypotheses, and risk prioritization.
  
  

Vulnerability & Attack Surface Management

• Own enterprise scanning, attack surface discovery (including cloud, OT/ICS, and third‑parties), and risk‑based remediation workflows.
• Drive timely remediation with platform/product owners; report exposure trends and exceptions to governance forums.
• Champion secure configuration baselines and hardening standards (CIS/NIST).
  
  

Identity, Endpoint, Network & Cloud Defense

• Partner with platform teams to implement zero‑trust principles across identity (MFA/SSO/PAM), endpoints (EDR/XDR), email, and network (SASE/ZTNA).
• Oversee logging and telemetry coverage across cloud (Azure/AWS/GCP), on‑prem, and SaaS; ensure retention meets legal/regulatory needs.
• Collaborate with OT/plant/site teams to improve visibility and segmentation for manufacturing and lab environments.
  
  

Governance, Risk & Compliance

• Ensure operational controls align to frameworks (NIST CSF/800‑53, ISO 27001, SOC 2) and industry regulations (e.g., SOX, GDPR, FDA 21 CFR Part 11).
• Support audits and assessments; manage evidence, exceptions, and corrective actions with Quality/Compliance partners.
• Maintain policy‑aligned playbooks, SOPs, and records to keep systems in a controlled and validated state.
  
  

People Leadership & Operating Model

• lead high‑performing global teams (managers, engineers, analysts); develop skills matrices, career paths, and training plans.
• Foster a blameless learning culture with metrics, retrospectives, and continuous improvement.
• Manage budget, sourcing strategy (FTE/managed services), and vendor relationships; negotiate performance‑based contracts.
  
  

Stakeholder Partnership & Communication

• Engage executives and business stakeholders with clear, non‑technical narratives that tie cyber risk to business impact.
• Partner with Cloud/Infrastructure, Enterprise Apps (incl. SAP), Data/AI, and Privacy/Legal on secure‑by‑design initiatives.
  
  

Report program maturity, KPIs, and risks to the CISO and relevant governance boards

Your Experience And Qualifications

• 15+ years in cybersecurity with 7+ years leading global security operations in large, regulated enterprises.
• Proven ownership of SOC, SIEM/XDR, SOAR, incident response, and vulnerability management at scale.
• Deep knowledge of detection engineering and adversary tradecraft mapped to MITRE ATT&CK; hands‑on with tools such as Microsoft Sentinel/Defender, Splunk, CrowdStrike, Tenable/Qualys, CyberArk (or equivalents).
• Strong grasp of cloud security (Azure/AWS/GCP), identity (Entra ID/Azure AD, SSO/MFA), and network security (SASE/ZTNA, micro‑segmentation).
• Experience operating under NIST CSF, ISO 27001, SOC 2; familiarity with SOX, GDPR, and pharma GxP/FDA/EMA is a plus.
• Demonstrated ability to hire, develop, and retain diverse global teams; exceptional communication and executive presence.
• Bachelor’s degree in Computer Science, Engineering, or related field; advanced degree preferred.
• Relevant certifications (one or more): CISSP, CISM, CCSP, GIAC (GCIA/GCIH/GCTI/GDSA), Microsoft SC‑200/SC‑100, ITIL.
  
  

Already Working @TEVA?

If you are a current Teva employee, please apply using the internal career site available on "Employee Central". By doing so, your application will be treated with priority. You will also be able to see opportunities that are open exclusively to Teva employees. Use the following link to search and apply: Internal Career Site

The internal career site is available from your home network as well. If you have trouble accessing your EC account, please contact your local HR/IT partner.

Teva’s Equal Employment Opportunity Commitment

Teva Pharmaceuticals is committed to equal opportunity in employment. It is Teva's global policy that equal employment opportunity be provided without regard to age, race, creed, color, religion, sex, disability, pregnancy, medical condition, sexual orientation, gender identity or expression, ancestry, veteran status, national or ethnic origin or any other legally recognized status entitled to protection under applicable laws. We are committed to a diverse and inclusive workplace for all. If you are contacted for a job opportunity, please advise us of any accommodations needed to support you throughout the recruitment and selection process. All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.

How We’ll Take Care Of You 

At Teva, better health starts from within, and that includes you. From day one, you’ll be supported with benefits designed to help you thrive in and out of work. This includes generous annual leave, reward plans, flexible working schedules (dependent on role), access to tailored health support, and meaningful ways to give back to the community. 

When it comes to your career, you’ll be encouraged to explore, evolve, and shape your path. Twist, our one-stop shop for career development platform, gives you access to a wide range of possibilities, from learning programs and short-term projects to opportunities for internal growth. Here, you’ll be part of a culture that empowers you to reach your goals and prioritize your wellbeing every step of the way. 

Teva Pharmaceuticals is committed to equal opportunity in employment. It is Teva's policy that equal employment opportunity be provided without regard to age, race, creed, color, religion, sex, disability, pregnancy, medical condition, genetic information, marital status, sexual orientation, gender identity or expression, ancestry, national or ethnic origin, citizenship status, military status or status as a disabled or protected veteran, or any legally recognized status entitled to protection under applicable federal, state, or local laws.