Work with us
Our team are passionate in the pursuit of excellence and in pushing the boundaries of cancer therapy and Autoimmune disease to deliver life-changing treatments to patients.
Whilst working at Autolus you will enjoy a flexible, diverse and dynamic working environment which actively promotes creativity, leadership and teamwork β together we are ONE Autolus.
Job Description:
Job Title: Associate Director, IT Infrastructure & Cyber Security
Reports to Executive Director, IT Operations
Department: Corporate
Hours: Monday β Friday 0900/1700 (35 hours per week)
Location: Stevenage OR London (Mediaworks)
Role Summary
The Associate Director of IT Infrastructure & Cyber Security is responsible for leading the design, delivery and continuous improvement of the organisation's IT Infrastructure and Cyber Security capabilities. The role provides both strategic direction and hands-on leadership across infrastructure services, cloud platforms, cyber security, governance, risk, compliance and technology transformation, ensuring that technology remains secure, resilient, scalable and aligned to business needs.
Working closely with senior stakeholders, the role is accountable for maintaining high-performing technology services, strengthening cyber resilience, supporting regulatory and audit requirements, and enabling the organisation's operational and strategic priorities through effective technology leadership. The role also plays a key part in shaping future capability, improving service maturity and ensuring that infrastructure and security investments deliver measurable business value.
Key Responsibilities
Strategic Leadership
- Develop and implement the enterprise IT Infrastructure and Cyber Security strategy aligned to business objectives.
- Define technology roadmaps, translating strategic goals into prioritised and deliverable initiatives.
- Provide strategic leadership for infrastructure modernisation, cloud adoption, automation, resilience and emerging technologies.
- Act as a trusted advisor to Executive Leadership on technology investments, cyber risks and enterprise architecture.
Infrastructure & Technology Services
- Own the architecture, implementation and operational management of enterprise infrastructure services.
- Ensure infrastructure platforms are secure, resilient, highly available, scalable and fit for future business requirements.
- Oversee cloud platforms, networking, datacentre technologies, storage, end-user computing, collaboration platforms, identity management and infrastructure monitoring.
- Drive standardisation, automation and continual service improvement.
Cyber Security
- Define and maintain the Cyber Security strategy, governance framework and operating model.
- Ensure compliance with recognised security frameworks including ISO 27001, NIST Cyber Security Framework and IEC 62443.
- Lead security architecture, Security Operations Centre (SOC), vulnerability management, incident response and cyber resilience activities.
- Conduct technology and cyber risk assessments, developing mitigation plans and providing executive reporting.
- Lead business continuity and disaster recovery planning.
- Champion security-by-design principles and promote a security-first culture across the organisation.
Governance & Service Delivery
- Establish governance, operational policies, standards and procedures across Infrastructure and Cyber Security.
- Ensure compliance with applicable legal, regulatory and industry requirements.
- Define and monitor KPIs, SLAs and service performance metrics.
- Drive continual service improvement and operational excellence.
Financial & Vendor Management
- Own the Infrastructure and Cyber Security budgets, ensuring effective resource allocation and cost optimisation.
- Lead supplier selection, contract negotiation and vendor performance management.
- Develop strategic partnerships with technology vendors and managed service providers.
Leadership & Transformation
- Build, lead, mentor and develop high-performing Infrastructure and Cyber Security teams.
- Foster a culture of collaboration, accountability, innovation and continuous improvement.
- Lead enterprise infrastructure upgrades, cloud migrations and technology transformation programmes.
- Ensure projects are delivered to agreed scope, budget and timelines.
Demonstrated skills and competencies
E β Essential
P β Preferred
Experience
- Professional certifications such as ITIL, CISSP, CISM, CCSP, ISO 27001 Lead Implementer/Auditor, TOGAF or cloud platform certifications (Azure, AWS or Google Cloud). (P)
- Minimum 10 years' experience in enterprise IT Infrastructure and Technology Operations with at least 5 years in a senior leadership role. (E)
- Proven experience developing and implementing enterprise Infrastructure and Cyber Security strategies. (E)
- Demonstrated experience managing enterprise infrastructure including cloud, networking, datacentres, storage, end-user computing and cyber security technologies. (E)
- Experience leading Security Operations, incident response, vulnerability management, technology transformation and cloud migration programmes. (E)
- Experience managing technology budgets, strategic suppliers, managed service providers and vendor contracts. (E)
- Strong knowledge of enterprise infrastructure architecture, cloud computing, cyber security, IT Service Management (ITSM), business continuity and disaster recovery. (E)
- Knowledge of ISO 27001, NIST Cyber Security Framework, IEC 62443 and relevant regulatory requirements including GDPR and GxP. (E)
- Experience working within regulated pharmaceutical, biotechnology or healthcare environments. (P)
- Excellent leadership, stakeholder management, communication, commercial, analytical and decision-making skills with the ability to balance strategic planning and operational delivery. (E)
Qualifications
- Bachelor's degree in Information Technology, Computer Science, Cyber Security, Engineering or a related discipline. (E)
- Postgraduate qualification (e.g. MSc or MBA) or equivalent professional qualification. (D)
Autolus Core Competencies
Focus on Results: Works to meet business goals set by management and leaders
Builds Trust and Relationships: Ensures trust with internal and external partners by delivering on commitments
Resilience: Has the capacity to recover quickly from difficulties; toughness
Communicates and Collaborates: Builds partnerships and works collaboratively with others to meet objectives
Autolus is committed to the protection of the personal information that we collect & process and we are fully compliant with General Data Protection Regulations (GDPR)
Autolus is committed to providing an inclusive and fair workplace for all. We are an equal opportunity employer and do not discriminate on the basis of race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other legally protected characteristic. We also provide reasonable accommodations where appropriate.
Autolus is committed to the protection of the personal information that we collect & process and we are fully compliant with General Data Protection Regulations (GDPR).
Autolus is committed to providing an inclusive and fair workplace for all. We are an equal opportunity employer and do not discriminate on the basis of race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other legally protected characteristic. We also provide reasonable accommodations throughout the recruitment process.
Autolusβ success is driven by equality and inclusion; we believe all voices are of equal value and must be heard. Whilst operating with focus and integrity, we are committed to improving diversity and inclusion within our business and our industry.