Director Information Security - GCC India & JAPAC
Regeneron · Hyderabad
Regeneron · Hyderabad
Build our future together: Regeneron is founded on the belief that the right idea, combined with the right team, can lead to significant transformations. Our growing global network is dedicated to inventing, developing, and commercializing medicines that change lives for those with serious diseases. In doing so, we are pioneering innovative approaches to science, manufacturing, and commercialization, as well as redefining our understanding of health. At Regeneron, we are strengthening our global Information Security organization to protect critical business, research, manufacturing, and patient-related assets. We are seeking a Director, Information Security – GCC India & JAPAC to build and lead our India-based Information Security Digital & Technology organization while serving as the regional Information Security leader for JAPAC. In this highly visible leadership role, you will establish a high-performing security organization, drive delivery excellence across multiple security domains, and act as a strategic partner within Regeneron's global security operating model. You will collaborate with senior leadership, regional collaborators, and cross-functional teams to advance security capabilities, manage risk, and ensure regulatory and compliance readiness across a complex global environment. When & where: Hyderabad (Hybrid) Discover your role: • Build, lead, and scale the India GCC Information Security organization, fostering a high-performance, inclusive culture focused on accountability, innovation, and continuous improvement. • Provide leadership across core security functions including Cyber Operations, Cyber Risk & Assurance, Data Protection & AI Security, Security Architecture, Identity & Access Management, and Attack Surface Management. • Lead end-to-end delivery across security engineering, operations, architecture, and data teams applying both agile and traditional delivery models. • Drive the adoption and optimization of security technologies including SIEM/SOAR, EDR/XDR, cloud-native security platforms, IAM/PAM, DLP, and vulnerability management solutions. • Establish the India GCC security organization as a strategic extension of the global security team, ensuring operational excellence, delivery predictability, and continuous process improvement. • Lead recruiting, onboarding, workforce planning, contractor-to-FTE conversions, and capability expansion across security functions. • Serve as the JAPAC Information Security lead, representing Regeneron’s security posture to business, regulatory, and partner collaborators throughout the Asia-Pacific region. • Design and oversee security governance, risk management, compliance, and control assurance programs aligned with industry frameworks and regulatory requirements. • Ensure continuous audit, inspection, and compliance readiness across security programs and technology environments. • Partner with executive leaders to translate business objectives into security strategies, investment priorities, and organizational initiatives. • Communicate complex security, technology, regulatory, and risk matters to executive, board-level, and operational audiences with clarity and credibility. • Evaluate and govern AI and GenAI capabilities to enhance security operations while maintaining compliance, privacy, and governance standards. This role requires: • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related discipline. • Significant leadership experience managing enterprise Information Security organizations within global companies. • Deep expertise across cyber operations, incident response, cyber risk and assurance, data protection, AI security, security architecture, identity and access management, vulnerability management, and attack surface management. • Demonstrated success leading security engineering, operations, architecture, and delivery teams in complex global environments. • Experience with modern security technologies including SIEM/SOAR, EDR/XDR, cloud security, IAM/PAM, DLP, and vulnerability management platforms. • Strong knowledge of security frameworks and regulations including NIST CSF, ISO 27001, SOC 2, GDPR, HIPAA, SOX IT controls, and GxP data integrity requirements. • Experience evaluating, implementing, and governing AI and GenAI security capabilities within regulated environments. • Proven track record building, scaling, and retaining high-performing technical organizations. • Experience establishing or significantly expanding Global Capability Center (GCC) operations, including workforce transformation and organizational growth initiatives. • Strong strategic planning, business insight, and decision-making skills with the ability to translate ambiguity into actionable security strategies. • Exceptional written, verbal, and executive communication skills with experience engaging senior collaborators across multiple geographies and cultures. • Familiarity with APAC information security and privacy regulations, including India's Digital Personal Data Protection (DPDP) Act and related regional requirements. • Experience within pharmaceutical, biotechnology, life sciences, or other highly regulated industries. • Relevant certifications such as CISSP, CISM, CISA, CCSP, PMP, SAFe, Scrum, or cloud security certifications. • Experience operating security programs across multiple jurisdictions and compliance frameworks simultaneously. <br