Data Access & Transfer Lead

Introduction to role

Are you ready to lead the charge in designing and improving AstraZeneca´s data access and transfer standards? As the Data Access & Transfer Lead, you´ll be at the forefront of ensuring our data governance aligns with regulatory, compliance, and cybersecurity requirements. This pivotal role involves translating these requirements into actionable controls, enabling secure and effective data movement across AstraZeneca. Working with the Information Protection Lead, you´ll play a crucial role in our multi-year information protection project. Are you up for the challenge?

Accountabilities

- Strategy and Stewardship: Define and evolve global data access and transfer standards, aligning them with AstraZeneca´s values and business priorities.
- Standards and Control Lifecycle: Own the standards and control requirements for data access and transfer, ensuring traceability from regulatory obligations to enterprise evidence.
- Program of Change Engagement: Partner with major regulatory, compliance, security, and technology transformation programs to assess impacts and prioritize risk mitigations.
- Multi-functional Leadership: Provide mentorship to various teams to enable informed decisions and readiness for change.
- Operating Model and Capability Build: Be a key partner in designing processes, tooling, and reporting for control design and assurance.
- Implementation and Assurance: Oversee operationalization of data access and transfer controls, contributing to internal audit scoping and control efficiency metrics.
- Horizon Scanning and Risk Monitoring: Maintain awareness of evolving regulatory requirements and emerging data risks.
- Policy and Standards Adoption: Partner with collaborators to embed standards within processes and platforms.
- Education and Culture: Collaborate to develop role-based guidance, playbooks, and training to build data literacy.

Essential Skills/Experience

- Standards and Controls Expertise: Proven experience crafting, implementing, and managing data access and data transfer standards and controls in large, global organizations.
- Regulatory and Change Enablement: Strong track record supporting major programs driven by regulatory, compliance, or cybersecurity requirements, including translation of obligations into practical controls.
- Multi-functional Collaboration: Excellent customer engagement across diverse technical and non-technical groups; ability to influence decisions and drive consensus.
- Information Protection and Risk: In-depth knowledge of data risk management, information protection principles, and relevant regulatory frameworks impacting access and transfer.
- Communication: Clear, audience-appropriate written and verbal communication; ability to produce pragmatic guidance and executive materials.

Desirable Skills/Experience

- Adaptability and Analytical Acumen: Skilled at assessing risks, prioritizing mitigations, and recommending improvements that balance compliance, security, and business outcomes.
- Leadership and Operating Model Experience: Experience enabling federated implementations and continuous improvement of controls; familiarity with assurance practices and evidence requirements.
- Professional Certifications: Certifications in privacy/security/risk or data management (e.g., CISSP, CISA, CRISC, CIPP/E, CIPM, CIPT) are advantageous.
- Education and Qualifications: Bachelor´s degree or equivalent experience in Information Security, Data/Information Management, Computer Science, or related field. Relevant professional certifications in privacy, security, or risk are advantageous.

When we put unexpected teams in the same room, we unleash bold thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions.

That´s why we work, on average, a minimum of three days per week from the office. But that doesn´t mean we´re not flexible. We balance the expectation of being in the office while respecting individual flexibility. Join us in our unique and ambitious world.

At AstraZeneca, your work directly impacts patients by transforming our ability to develop life-changing medicines. We empower our business through modern science combined with leading digital technology platforms.

Join us at a crucial stage of our journey as we become a digital and data-led enterprise. With opportunities to innovate, take ownership, and explore new solutions in a dynamic environment, you´ll be part of a team that drives cross-company change to redefine the industry.

Ready to make a difference? Apply now to join our team!