Operational Technology Security, Operations Lead

GSK

Operational Technology Security, Operations Lead

Salary Not Specified

GSK, Eggleston, County Durham

  • Full time
  • Permanent
  • Onsite working

Posted 2 weeks ago, 3 May | Get your application in now before you miss out!

Closing date: Closing date not specified

job Ref: 6a4770b4ec774a559a305533d4a9f0f7

Full Job Description

We make and supply medicines and vaccines all around the globe and our teams own every production stage, from creating quality products at our manufacturing sites to designing effective supply forecasting and regulatory inspections; all powered by digital, data and analytics. We operate at impressive scale, producing over 2.3 billion packs of medicines and doses of vaccines in 2023.

We continue to modernise, so we can launch even more new products at speed whilst continuing to deliver across our entire portfolio through our relentless focus on quality, safety, and service. The way we work will change. For some, the shift in technology and products will be revolutionary. Our R&D pipeline demands a new kind of supply chain, and we need the very best minds and capability to help us on our journey to make more complex products, harnessing the power of smart manufacturing technologies including robotics, digital solutions, and artificial intelligence to deliver for patients.

Job Purpose

The Global Supply Chain (GSC) Operational Technology (OT) Security Operations Lead is part of the GSC Engineering OT Resilience, Connectivity & Data Delivery Leadership Team.

This person will lead the team that support & manage technologies or processes that protect the OT environments at GSC sites from being impacted by Cyber Security threats - providing the secure connectivity needed for GSC to deliver our digital ambition.

The lead role will be accountable for the performance of their team, ensuring operational activities are delivered and lifecycle managed to meet & exceed business requirements.

The lead role will be required to report performance to senior leaders and engage stakeholders across Engineering, Tech, Cyber Security Office (CSO), Finance and Business Unit Operations.

As part of this they will be expected to understand the broader strategic business context of OT Security, balancing risk and other business factors such as cost & downtime, to make informed decisions to protect the business.,

  • Engage with customers across multiple time zones and regions, ensuring the team not only delivers incidents & requests against agreed service levels (eg Firewall Policy design) but also drive to continually improve these service levels via AARs / RCAs, Performance Management and Service Reporting.

  • Evaluate & Manage OT Security Risks or Exceptions for GSC, including generation of Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs)

  • Lead Management Monitoring of processes owned & delivered by own team.

  • Lead Independent Business Monitoring of OT Security controls at GSC sites.

  • Establish & maintain OT Cyber Security capability of all staff that interact with OT equipment at circa 30 GSC sites globally, including Workforce planning.

  • Develop in depth knowledge of the GSK technology, systems and processes deployed to protect our manufacturing automation systems from OT cyber security threats.

  • Ensure that any OT Cyber Alerts released by the central team, or events / incidents that are detected, are responded to & resolved with the appropriate sense of urgency to ensure that OT cyber security risks are minimized, including Response to & Recovery from real incidents.

  • Act as a Subject Matter Expert for technology & processes related to OT Cyber Security, to ensure that good security practices are embedded across GSC sites - providing oversight & making recommendations for improvements., We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.


  • Should you require any adjustments to our process to assist you in demonstrating your strengths and capabilities contact us on Ukdiversity.recruitment@gsk.com or .

    Please note should your enquiry not relate to adjustments, we will not be able to support you through these channels. However, we have created a UK Recruitment FAQ guide. Click the link and scroll to the Careers Section where you will find answers to multiple questions we receive .

    As you apply, we will ask you to share some personal information which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially.

    Important notice to Employment businesses/ Agencies

    GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.

    Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK's compliance to all federal and state US Transparency requirements. For more information, please visit GSK's Transparency Reporting For the Record site.

    We are looking for professionals with these required skills to achieve our goals:
  • Degree Qualification (BSc/BEng/MSc or equivalent)

  • Specialist training in OT Cyber Security (e.g. NIST or IEC62433)

  • In depth expert knowledge of diverse range of manufacturing OT / automation systems.

  • Considerable experience working within Automation or Operations at Manufacturing sites in a regulated industry (exposed to GxP & EHS requirements)

  • Global experience obtained either by working at multiple manufacturing sites in different regions or as part of a central organisation delivering / operating globally.

  • Significant experience in leading & managing operations teams of 5+ people.


  • Preferred Qualifications:

    If you have the following characteristics, it would be a plus:
  • Chartered Engineer Status (CEng) or equivalent and specialised in either areas Automation / Mechanical / Electrical, or equivalent IT advanced level qualification.

  • Broad knowledge and practical experience of computer and application validation (preferably using GAMP methodology), cGMPs, and 21 CFR Part 11 in an FDA regulated environment.

  • Working knowledge and understanding of current Good Manufacturing Practices including Good Documentation Practices.

  • Experience with Lean Sigma or similar process improvement methodologies.

  • Experience & understanding of GSK OT Security Standards.

    Why GSK?


  • Uniting science, technology and talent to get ahead of disease together.

    GSK is a global biopharma company with a special purpose - to unite science, technology and talent to get ahead of disease together - so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns - as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).

    Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it's also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves - feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.