Job Specifications
At Insmed, every moment and every patient counts — and so does every person who joins in. As a global biopharmaceutical company dedicated to transforming the lives of patients with serious and rare diseases, you’ll be part of a community that prioritizes the human experience, celebrates curiosity, and values every person’s contributions to meaningful progress. That commitment has earned us recognition as Science magazine’s No. 1 Top Employer for four consecutive years, certification as a Great Place to Work® in the U.S., and a place on The Sunday Times Best Places to Work list in the UK.
For patients, for each other, and for the future of science, we’re in. Are you?
About The Role
At Insmed, we are united by a shared purpose—to transform the lives of patients through bold innovation, collaboration, and integrity in everything we do.
We are seeking an experienced leader to oversee cybersecurity operations, enterprise risk management, and Computer Systems Validation (CSV) program. This role will manage cross-functional teams and ensure compliance with regulatory requirements while maintaining operational excellence.
The Executive Director, Cybersecurity & Risk Management plays a critical leadership role in safeguarding that mission. Reporting directly to the Chief Information Officer, this individual is responsible for defining and executing Insmed’s enterprise cybersecurity and risk strategy.
This role requires a strategic, hands-on leader who can think globally, act decisively, and remain technically engaged in building and protecting secure digital environments. The ideal candidate combines deep technical expertise with a proven ability to communicate complex risks in business terms, fostering trust and resilience across the organization.
What You'll Do
Strategic Leadership
Define, communicate, and execute Insmed’s cybersecurity and risk management vision, ensuring alignment with the company’s values, business priorities, and regulatory commitments.
Present cybersecurity posture, emerging threats, and key initiatives to the CIO, IT Leadership Team, and, as needed, the Executive Committee and Board of Directors.
Establish and maintain governance frameworks and control structures consistent with NIST and FDA data protection standards.
Partner with Legal, Compliance, Clinical Operations, Quality and R&D to proactively manage risk across Insmed’s technology landscape and protect sensitive patient and research data.
Demonstrated experience leading a Computer Systems Validation team in a regulated (pharmaceutical, biotech, or healthcare) environment is a plus.
Foster a culture of security accountability and awareness, ensuring every employee understands their role in protecting Insmed’s mission and assets.
Hands-On Technical Leadership
Lead and participate directly in cybersecurity operations, including incident response, threat detection, vulnerability management, and risk remediation.
Architect and operationalize security solutions across cloud, data, and endpoint environments, leveraging zero-trust principles.
Serve as a senior escalation point for major incidents, directing containment, recovery, and post-event reviews with a focus on continuous improvement.
Guide the adoption of AI-driven threat analytics, secure DevOps practices, and automated response frameworks to strengthen Insmed’s security posture.
Oversee penetration testing, red teaming, and risk assessments, ensuring timely follow-up and actionable outcomes.
Stay actively engaged with emerging technologies and regulatory developments impacting healthcare cybersecurity.
Deep understanding of GxP requirements, FDA 21 CFR Part 11, EU GMP Annex 11, and GAMP 5 guidelines a plus.
Experience collaborating with Quality, IT, and business stakeholders to ensure systems are validated and remain in a compliant state throughout their lifecycle a plus.
Familiarity with validation of documentation, audit readiness, and continuous improvement of CSV processes.
Risk Management
Define and implement risk management policies and frameworks aligned with organizational objectives
Conduct enterprise-level risk assessments and develop mitigation strategies
CSV Program Oversight
Oversee the CSV team, validation strategy and continuous process improvement
Ensure compliance with GxP regulations and industry standards
Familiarity with validation of documentation, audit readiness, and continuous improvement of CSV processes a plus.
Team & Organizational Leadership
Build, mentor, and inspire a high-performing cybersecurity organization, promoting continuous learning and professional growth.
Lead through influence and collaboration, working closely with peers across IT, R&D, Quality, and Business Operations to embed security into all technology initiatives.
Manage key vendor and service-provider partnerships, ensuring effective performance and alignment with Insmed’s security objectives.
Drive operational excellence by balancing strategic priorities with hands-
About the Company
Insmed is a people-rst global biopharmaceutical company striving to deliver rst- and best-in-class therapies to transform the lives of patients facing serious diseases. We are dedicated to making a meaningful impact in patients’ lives as well as the communities where we live and work. Our team is guided by our core values of collaboration, accountability, passion, respect, and integrity. Insmed is headquartered in Bridgewater, NJ, and has offices and research locations throughout the United States, Europe, and Japan. We are ...
Know more