Job Description

By clicking the Apply button, I understand that my employment application process with Takeda will commence and that the information I provide in my application will be processed in line with Takedas and . I further attest that all information I submit in my employment application is true to the best of my knowledge.ACCOUNTABILITIES :xc2xb7 Responsible for conducting static code analysis, threat modelling, and creating/managing the developer training programxc2xb7 Lead in the development and execution of the secure software development strategy for theenterprise, including policies, standards, and governancexc2xb7 Implements automation to integrate Application Security into various applications across theenterprisexc2xb7 Provides input and guidance on the various DevOps security tools/processes for threat modelling, code repository security, container security, dynamic application security testing, secrets management, penetration testing, and cloud infrastructure securityxc2xb7 Assists in the development of a communications program for application threats and external and internal security eventsxc2xb7 Improves and expands application security risk posture and processes across the enterprisexc2xb7 Creates and supports metrics that report application risk posture and progress over timexc2xb7 Manages continuous release planning and execution, and integrates with security design and engineering work across multiple groups and technical constituenciesEDUCATION, BEHAVIOURAL COMPETENCIES AND SKILLS:xc2xb7 Bachelors degree in related field (Business, Information Services, IT, Information Security,etc.)xc2xb7 At least 3 years of experience with Application Security, including familiarity with the leadingtoolsets supporting Application Security (dynamic and static)xc2xb7 At least 1 year of experience with product design, delivery, ownership, and threat modellingxc2xb7 Experience in enabling organizations with DevSecOpsxc2xb7 Strong experience with establishing and executing application security strategyxc2xb7 Experience in static code analysis and third-party software composition analysisxc2xb7 Experience in establishing and rolling out Threat Modelling enterprise-wide that can be consumed by developers and engineersxc2xb7 Strong problem-solving and program execution skills; Ability to prioritize and drive difficult decisions among heads of development teamsxc2xb7 Ability to solve very complex security issues that span legal, compliance, and regulatory obligations across various lines of business and shared service areas of the companyxc2xb7 Knowledge of common information security management frameworks, including but not limited to: ISO 27001/27002, ITIL, COBIT, and NISTxc2xb7 Ability to provide ongoing metrics and reportingxc2xb7 Ability to communicate ideas and data both verbally and written in a persuasive and appropriate mannerDesired:xc2xb7 In-depth pharmaceutical industry and drug development experiencexc2xb7 Experience with validated systemsxc2xb7 Information security certification (CISSP, CISM, GIAC, CEH)Locations IND - BengaluruWorker Type EmployeeWorker Sub-Type RegularTime Type Full time

Takeda