Senior Information Security Governance Expert (all genders)

Senior Information Security Governance Expert (all genders)

Apply locations: Hamburg, Abingdon, Verona, Modena

Time type: Full time

Posted on: Posted Yesterday

Job requisition id: JOB ID-11900

The Global Information Security department of Evotec is searching for a highly motivated and dedicated

Senior Information Security Governance Expert (all genders)

Full time and permanent

Responsibilities:

• Support the implementation of the ISO 27001 standard across the organisation with the ability to take the lead on some specific domains such as Identity & Access Management, IT Operation Security, Asset Management, or Secure Software Development.
• Support the ISMS certification programs, including taking part in internal and external audits.
• Ensure that the organization's information security policies are maintained and remain relevant for the organization.
• Initiate and control the implementation of information security measures.
• Initiate and coordinate target group-oriented awareness and training measures on the topic of information security.
• Conduct Information Security risk assessments (ISMS risks, application and infrastructure risks, TPRM).
• Support customer security assessments and perform supplier security assessments.
• Support information security incident management.

Qualifications:

• Bachelor's or Master's degree in Business Administration, Information Technology, or a related field or an equivalent qualification, or equivalent work experience.
• Sound professional working experience in a complex Information Security Governance environment, including practical years of acting in global information security organizations and belonging teams, ideally in a highly regulated field such as pharmaceuticals, biotech, or healthcare.
• Profound technical knowledge of security technologies as well as of enterprise IT Security solutions.
• Excellent knowledge of security management systems and respective standards (ISO 27001, NIST, CIS, GMP).
• Industry certifications such as PMP, ITIL, Agile are a plus.
• Industry certifications such as ISO 27001 Lead Implementer, ISO 27001 Lead Auditor, CISSP, CISM, SANS, GSEC, etc. are desired.
• Experience in leading projects in terms of design and assessment of information security structures and processes.
• Proven track record in dealing with complex information security & change projects and meeting conflicting situations and crisis scenarios.
• Ability to adapt to a fast-moving information security landscape and keep pace with the latest concepts, new security challenges, and cyber threats.
• Thrives on change, showing an ability to develop the information security constantly forward.
• Proficiency in verbal and written communication in English. German, French, or Italian language skills are an advantage.

Our offer (Hamburg, Germany based):

• A position within a vigorous and exciting professional environment promoted by an open culture and a spirit of community.
• A diverse, international workforce with a dynamic working environment that fosters creativity, innovations, and teamwork.
• 30 days of annual holiday, monthly allowance for public transportation, and in-house canteen.
• Capital forming benefits, flexible working hours, holiday pay, and annual bonus depending on performance.
• Benefits may vary by location and will be discussed separately.

To apply, please click on the “Apply” button and provide your application documents (CV and cover letter, including earliest possible start date and salary requirements). We are looking forward to getting to know you and to your application.

FR: Dans le cadre de sa politique Diversité, Evotec étudie, à compétences égales, toutes les candidatures dont celles des personnes en situation de handicap.

ENG: In the frame of our Diversity policy, Evotec considers, with equal competences, all applications including people with disabilities.

Evotec is a life science company with a unique business model that delivers on its mission to discover and develop highly effective therapeutics and make them available to the patients. The Company’s multimodality platform comprises a unique combination of innovative technologies, data, and science for the discovery, development, and production of first-in-class and best-in-class pharmaceutical products. Evotec leverages this “Data-driven R&D Autobahn to Cures” for proprietary projects and within a network of partners including all Top 20 Pharma and over 800 biotechnology companies, academic institutions, as well as other healthcare stakeholders. Evotec has strategic activities in a broad range of currently underserved therapeutic areas, including e.g. neurology, oncology, as well as metabolic and infectious diseases. Within these areas of expertise, Evotec aims to create the world-leading co-owned pipeline for innovative therapeutics and has to-date established a portfolio of more than 200 proprietary and co-owned R&D projects from early discovery to clinical development. Evotec operates globally with more than 5,000 highly qualified people. The Company’s 17 sites offer highly synergistic technologies and services and operate as complementary clusters of excellence. For additional information please go to www.evotec.com and follow us on X/Twitter @Evotec and LinkedIn.

Please click on the link below to access and review our Privacy Information for Applicants: