The Cyber Risk Analytics & Automation Manager serves as the business product owner for cyber risk data analytics and automation capabilities used to drive risk-informed decision making across the enterprise.

This role is responsible for developing and executing the product strategy and roadmap for cyber risk analytics ensuring that cybersecurity technology and business leaders have clear actionable insights into risk exposure control effectiveness and investment priorities.

A core capability of this role is expert storytelling with datatranslating complex cyber risk information into compelling narratives visualizations and analytical insights that enable stakeholders to understand risk exposure evaluate trade-offs and take decisive action. The role will ensure that cyber risk analytics are not simply reports or dashboards but decision-support products that clearly communicate risk and drive accountability across the organization including at the executive and Board level.

The individual will develop a deep understanding of the user journeys and decision needs of key stakeholder personasincluding business leaders technology leaders risk owners and executive leadershipand deliver analytics products that enable data-driven risk treatment decisions accountability and board-level assurance.

Working at the intersection of cybersecurity data engineering analytics and automation this role will drive the development of modern analytics platforms and intelligent automation capabilities that transform cyber risk management from static reporting to dynamic decision support.

Key responsibilities:

• Cyber Risk Analytics Product Ownership

Serve as the product owner for cyber risk data and analytics capabilities including dashboards analytical models automation workflows and decision-support tools.

Define and maintain the product vision strategy and multi-year roadmap for cyber risk analytics aligned with organizational cybersecurity and enterprise risk objectives.

Translate business and cybersecurity needs into analytics product requirements and prioritized feature backlogs.

• Data Storytelling & Risk Communication

Develop compelling data-driven narratives and visualizations that translate complex cyber risk information into clear insights for diverse stakeholders.

Ensure analytics outputs enable stakeholders to quickly understand risk exposure trends and recommended actions.

Design dashboards reports and analytical outputs that support effective storytelling with data for senior leadership and Board-level audiences.

Establish standards and best practices for communicating cyber risk through data visualization narrative framing and decision-oriented analytics.

• User-Centered Analytics Design

Develop deep understanding of user personas and decision journeys including:

o Business risk owners

o Technology leaders

o Cybersecurity leadership

o Risk and compliance teams

o Executive leadership and Board reporting stakeholders

Design analytics products that enable stakeholders to:

o Understand cyber risk exposure

o Evaluate risk treatment options

o Prioritize security investments

o Track accountability and risk reduction outcomes.

• Data & Analytics Platform Development

Partner with data engineering and architecture teams to build scalable cyber risk data platforms and analytics pipelines.

Design and implement quantitative risk analytics metrics frameworks and statistical models to support risk measurement and decision-making.

Enable advanced analytics capabilities including:

o Predictive risk indicators

o Control effectiveness analytics

o Investment prioritization models

o Scenario and impact analysis.

• Automation & Intelligent Systems

Identify opportunities to apply automation machine learning and generative/agentic AI to improve cyber risk analytics and operational efficiency.

Lead the development of automated workflows intelligent analytics tools and decision-support systems that scale risk insights across the organization.

• Cross-Functional Collaboration

Collaborate with cybersecurity engineering risk management GRC enterprise architecture and business teams to ensure analytics solutions meet operational needs.

Partner with data science and technology teams to deliver robust scalable analytics capabilities.

Drive adoption and value realization of cyber risk analytics products across stakeholder groups.

• Risk Transparency & Executive Reporting

Enable clear defensible risk reporting and assurance for senior leadership and the Board of Directors.

Translate complex technical risk data into clear narratives and insights that support executive decision-making.

Why you

Basic Qualifications:

We are looking for professionals with these required skills to achieve our goals:

• 4 years of professional experience in analytics data science cybersecurity or risk management roles.

• Experience designing and delivering analytical decision-support systems or analytics products.

• Experience applying product management principles to analytics or data platforms.

• Experience working with quantitative models statistical analysis and data-driven decision frameworks.

Preferred Qualifications:

If you have the following characteristics it would be a plus:

• Strong background in statistics quantitative analysis and data modeling.

• Experience with data engineering or large-scale data architectures (data lakes analytics platforms or big data environments).

• Familiarity with machine learning generative AI agentic AI or intelligent automation technologies.

• Ability to translate complex analytical insights into clear actionable business intelligence and narratives.

• Experience in or strong interest in cybersecurity cyber risk management or technology risk.

• Familiarity with cyber risk frameworks control environments and risk measurement concepts.

• Demonstrated ability to act as the voice of the customer in prioritizing product capabilities.

• Strong track record of driving outcomes through cross-functional collaboration.

• Ability to define product strategy roadmap and feature prioritization in a complex environment.

#GSK-LI

Please visit GSK US Benefits Summary to learn more about the comprehensive benefits program GSK offers US employees.

Why GSK

Uniting science technology and talent to get ahead of disease together.

GSK is a global biopharma company with a purpose to unite science technology and talent to get ahead of disease together. We aim to positively impact the health of 2.5 billion people by the end of the decade as a successful growing company where people can thrive. We get ahead of disease by preventing and treating it with innovation in specialty medicines and vaccines. We focus on four therapeutic areas: respiratory immunology and inflammation; oncology; HIV; and infectious diseases to impact health at scale.

People and patients around the world count on the medicines and vaccines we make so were committed to creating an environment where our people can thrive and focus on what matters most. Our culture of being ambitious for patients accountable for impact and doing the right thing is the foundation for how together we deliver for patients shareholders and our people.

If you require an accommodation or other assistance to apply for a job at GSK please contact the appropriate Recruitment Staff by emailing us at -

GSK is an Equal Opportunity Employer. This ensures that all qualified applicants will receive equal consideration for employment without regard to race color religion sex (including pregnancy gender identity and sexual orientation) parental status national origin age disability genetic information (including family medical history) military service or any basis prohibited under federal state or local law.

Important notice to Employment businesses/ Agencies

GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSKs commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.

Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license GSK may be required to capture and report expenses GSK incurs on your behalf in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSKs compliance to all federal and state US Transparency requirements. For more information please visit the Centers for Medicare and Medicaid Services (CMS) website at Experience:

Manager