Experience Inc. Jobs

Medidata: Powering Smarter Treatments and Healthier People

Medidata, a Dassault Systemes company, is leading the digital transformation of life sciences, creating hope for millions of people. Medidata helps generate the evidence and insights to help pharmaceutical, biotech, medical device and diagnostics companies, and academic researchers accelerate value, minimize risk, and optimize outcomes. More than one million registered users across 2,000+ customers and partners access the world's most trusted platform for clinical development, commercial, and real-world data. Known for its ground-breaking technological innovations, Medidata has supported more than 30,000 clinical trials and 9 million study participants. And Medidata's ongoing commitment to infusing the patient voice into trial designs and solutions is helping to create a better and more inclusive experience for all participants in clinical studies. Medidata is involved in nearly 40% of company-initiated trial starts globally, with studies conducted in more than 140 countries. More than 70% of novel drugs approved by the Food and Drug Administration (FDA) in 2022 were developed with Medidata software. Medidata is headquartered in New York City and has offices around the world to meet the needs of its customers. Discover more at www.medidata.com and follow us @medidata.

Our Team:

As the Lead Engineer of the SecOps team, you will play a critical role in safeguarding our organization's digital assets by leading a team responsible for the maintenance, configuration, and overall health of our security tools and platforms. You will work in collaboration with cross-functional teams to proactively identify and mitigate security risks, ensuring the integrity, confidentiality, and availability of our data. You will play a crucial role in safeguarding our organization against potential threats and ensuring compliance with industry standards. This role interacts closely with the Threat Intel and Security Posture teams as part of the Cyber Defense ecosystem.

You will be provided a hybrid work environment, with remote and in-office presence.

You will report to the Information Security Director of Cyber Defense.

Who we are looking for:

• 3+ years of experience with the operations and maintenance of cyber security tools.
• Lead the team responsible for maintaining, configuring, and optimizing security tools such as SIEM, IPS, cloud security, endpoint detection and response (EDR), vulnerability scanning, threat intel, insider risk, automation & orchestration, and other relevant security solutions. Ensure the effectiveness of these tools in identifying and mitigating security threats.
• Mentor a team of SecOps engineers. Provide guidance to team members, fostering a collaborative and results-driven environment.
• Collaborate with the various InfoSec teams and other stakeholders to develop and implement security strategies and policies. Stay current with industry best practices, emerging threats, and evolving security technologies.
• Oversee the development and execution of incident response automation. Participate and assist with findings as a result of purple team exercises.
• Ensure compliance with relevant security standards, regulations, and industry-specific requirements. Coordinate and participate in security audits and assessments.
• Implement continuous monitoring and analysis of security tool data to identify gaps in coverage. Develop and report on key security performance metrics.
• Maintain comprehensive documentation of security tool configurations. Generate regular reports for executive management and other stakeholders.

Requirements (Education & Experience):

• Bachelor's degree (or above) in Computer Science/Engineering, Information Technology or comparable experience required.
• Certifications such as CISM, CompTIA Security+, ISC2 CC or equivalent are highly desirable.
• Strong understanding of industry standards and best practices related to cybersecurity.
• 3+ years of experience with the operations and maintenance of cyber security tools.
• 3+ years of experience with Amazon Web Services and associated security functions.
• Proven experience in managing a multitude of security tools.
• Proven knowledge of security tools such as SIEM, IPS, cloud security, endpoint detection and response (EDR), network detection and response (NDR), vulnerability scanning, threat intel, insider risk, automation & orchestration, and other relevant security solutions.

As with all roles, Medidata sets ranges based on a number of factors including function, level, candidate expertise and experience, and geographic location.

The salary range for positions that will be physically based in the NYC Metro Area is $114,750-153,000.

The salary range for positions that will be physically based in the California Bay Area is $121,500-162,000.

The salary range for positions that will be physically based in the Boston Metro Area is $113,250-151,000.

The salary range for positions that will be physically based in Texas or Ohio is $101,250-135,000.

The salary range for positions that will be physically based in all other locations within the United States is $102,750-137,000.

Base pay is one part of the Total Rewards that Medidata provides to compensate and recognize employees for their work. Most sales positions are eligible for a commission on the terms of applicable plan documents, and many of Medidata's non-sales positions are eligible for annual bonuses. Medidata believes that benefits should connect you to the support you need when it matters most and provides best-in-class benefits, including medical, dental, life and disability insurance; 401(k) matching; unlimited paid time off; and 10 paid holidays per year.