Cybersecurity Regulatory Compliance Manager
Macclesfield, UK (3 days on site per week)
About AstraZeneca
AstraZeneca is a global, science‑led, patient‑focused biopharmaceutical company that focuses on the discovery, development and commercialisation of prescription medicines for some of the world’s most serious diseases. We pioneer new frontiers by identifying and treating patients earlier, working towards the aim of eliminating cancer as a cause of death.
Come and join our AZ team where you will play a pivotal role in this exciting period of development!
Key Responsibilities
* Lead AstraZeneca’s cybersecurity regulatory compliance delivery, translating regulations into practical business and control requirements and setting governance and delivery plans for readiness.
* Run regulatory governance activities, track actions, and provide updates on compliance, risks, readiness, and delivery.
* Deliver cybersecurity regulatory training and awareness for leaders and key functions, ensuring stakeholders understand obligations and practical impacts.
* Maintain and improve the cybersecurity regulatory control framework, ensuring alignment with regulatory expectations and supporting audits and readiness with robust evidence.
* Coordinate audit and review materials, ensure evidence is complete and defensible, and drive closure of compliance gaps.
* Lead or support gap assessments, track remediation, and help ensure improvements are implemented effectively across functions, markets, and sites.
* Own cybersecurity incident reporting obligations and coordinate cross‑functional input for reporting, documentation, and regulatory response.
* Work across business, technical, and regional teams, as well as external partners, to embed and evidence cybersecurity regulatory requirements.
* Track regulatory developments and emerging risks, translating them into clear actions for stakeholders.
Requirements
* BA/BSc degree or equivalent experience in information security, cybersecurity, computer science, law, risk, compliance, or a related subject area.
* Strong, demonstrable understanding of the principles of security governance, risk and controls frameworks within a large matrix organisation with diverse countries, cultures and languages.
* Strong communication and stakeholder management skills, with the ability to translate complex regulatory requirements into practical actions and clear updates.
* Experience of interpreting and applying cybersecurity regulations, standards, or supervisory expectations in a practical business environment, ideally across multiple jurisdictions including EMEIA and the UK.
* Demonstrated ability in prioritisation and decision‑making for targeting resources, i.e. markets with robust regulatory enforcement vs more relaxed regimes.
* Experience developing the implementation and maintenance of cybersecurity control frameworks, compliance activities, and assurance processes.
* Solid grasp of the relationship between cybersecurity, enterprise risk, legal interpretation, operational resilience, and regulatory compliance.
* Experience in working with data to validate decisions over risk and priority decisions.
* Proven ability in applying security standards / frameworks such as ISO27001, NIST 800‑53.
* Familiarity with technical concepts in Cybersecurity, infrastructure or applications.
Desirables
* Experience and involvement with major IT Security transformation projects or programmes.
* Project or programme management experience.
* Experience managing and/or delivering gap assessments, remediation tracking, and control uplift activities.
In‑Office Requirement
In‑person working gives us the platform we need to connect, work at pace and challenge perceptions. That is why we work, on average, a minimum of three days per week from the office. We also respect individual flexibility.
Competitive Salary and Benefits Package
The successful candidate will have access to a flexible employee benefits fund, including holiday purchase and flexible time off, pension contributions, Share Save Plans, a performance recognition scheme and a competitive, generous remuneration package.
Our mission is to build an inclusive and equitable environment. We want people to feel they belong at AstraZeneca and Alexion, starting with our recruitment process. We welcome and consider applications from all qualified candidates, regardless of characteristics. We offer reasonable adjustments/accommodations to help all candidates to perform at their best. If you have a need for any adjustments/accommodations, please complete the section in the application form.
#J-18808-Ljbffr