What will you be doing as Business Information Security Officer?

• Cybersecurity Risk Assessment and Management: Conduct regular risk assessments specific to OT environments, identifying vulnerabilities, potential threats, and the impact on critical systems.
• Develop and implement risk management strategies to mitigate risks, ensuring alignment with organisational cybersecurity policies.
• Development and Implementation of Security Controls: Collaborate with OT teams to design, implement, and maintain security controls tailored to the unique requirements of OT systems.
• Compliance and Regulatory Adherence: Ensure that OT systems comply with relevant cybersecurity regulations, industry standards, and internal policies. Regularly audit and review OT environments to ensure ongoing compliance and address any gaps or deficiencies in security practices.
• Coordination with Cross-functional Teams: Facilitate collaboration between IT security teams and OT personnel to ensure a unified and effective incident response strategy. Regularly support joint exercises and simulations to test the preparedness of OT systems in responding to cyber threats.
• Lead Projects of medium complexity across the department and with our Manufacturing Network.

Who are you?

• At least 7 years of experience in a related field.
• Experience from working at a Manufacturing site (GxP environment is a bonus).
• Knowledge of risk management principles and methodologies.
• Excellent communication and leadership skills.
• Ability to work collaboratively with various departments and sites within the organization.
• Ability to communicate complex technical challenges in a non-technical manner.
• Ability to simplify regulatory and compliance requirements.
• Track issues for compliance gaps and facilitate the implementation of remediation plans.
• Understanding of some or either of the following control frameworks: ISO 27001, CIS Controls, NIST or IEC-62443.
• Ability to prioritize, manage multiple projects, and execute in a fast-paced environment with a strong work ethic and ownership mentality.
• Self-motivated and able to work independently.
• Bachelor's degree in a related field (e.g. Engineering, Automation, Computer Science, or Management Information Systems).
• Technical or risk management certification (e.g., CCNA or CISM) is a bonus.

What's the best thing about working with us?

• You help save lives - Every day is meaningful as we produce life-saving medicines.
• Family values - Long-term perspective for employees and relationships.
• Be rewarded with an attractive salary and benefits package.
• You will have a high level of influence where you can make a difference and leave your footprint.
• Work with skilled and fun colleagues in a relatively informal organization.
• Skills development - We offer various internal and external employee and leadership trainings, trainee programs and digital solutions.