Do you want to be part of an inclusive team that works to develop innovative therapies for patients? Every day, we are driven to develop and deliver innovative and effective new medicines to patients and physicians. If you want to be part of this exciting work, you belong at Astellas! Astellas’ Global Capability Centres (GCCs) are strategically located sites that give Astellas the ability to access talent across various functions in the value chain and to co-locate core capabilities that are currently dispersed. Our three GCCs are in India, Poland and Mexico. The GCCs will enhance our operational efficiency, resilience and innovation potential, enabling a timely response to changing business demands. Our GCCs are an integral part of Astellas, guided by our shared values and behaviors, and are critical enablers of the company’s strategic priorities, sustainable growth, and commitment to turn innovative science into VALUE for patients www.astellas.com . This is a hybrid position and is based in Bangalore, India. At Astellas we recognize the importance of work/life balance, and we are proud to offer a hybrid working solution allowing time to connect with colleagues at the office with the flexibility to also work from home. We believe this will optimize the most productive work environment for all employees to succeed and deliver. Hybrid work from certain locations may be permitted in accordance with Astellas’ Responsible Flexibility Guidelines. **Purpose and Scope:** This role will be responsible to lead our organization's data protection strategy and ensure compliance with security standards and regulations. This role will play a key part in safeguarding sensitive data, managing risks, and strengthening our overall cybersecurity posture. **Responsibilities and Accountabilities:** + Develop, implement, and maintain comprehensive data security policies, standards, and procedures. + Perform regular risk assessments to identify and mitigate data security threats, such as data loss and insider threats. + Ensure ongoing compliance with data protection laws and industry standards (e.g., GDPR, HIPAA, NIST, ISO 27001). + Manage, maintain, and configure security tools such as DSPM, DLP, CASB, etc. + Work cross-functionally with IT, legal, compliance, and business units to integrate security into all projects and initiatives. + Maintain audit logs, generate security reports, and present findings to executive leadership. + Advise and support system owners on access control to systems and sensitive data, following least-privilege principles. **Required Qualifications:** + 5+ years of experience as a Data Security Manager or in a similar role. + Proficiency in security tools and technologies (e.g., DSPM, DLP, CASB, etc.). + Strong knowledge of security frameworks (e.g., NIST, ISO 27001, CIS). + Excellent problem-solving and analytical skills to identify and mitigate data security threats. + Strong communication and interpersonal skills to effectively collaborate with various departments and provide training. + High attention to detail to ensure thorough data security assessments and accurate reporting. **Preferred Qualifications:** + Bachelor's degree in Cybersecurity, Information Technology, or a related field. + Familiarity with industry-specific regulations and security requirements (e.g., pharmaceutical, healthcare). + Strong understanding of data protection regulations and compliance requirements (e.g., GDPR, HIPAA). + Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Ethical Hacker (CEH) are highly desirable. Category Astellas is committed to equality of opportunity in all aspects of employment. EOE including Disability/Protected Veterans