Presentación
The position plays a critical role in monitoring and maintaining the organization’s adherence to its ICT cybersecurity policies, standards, and best practices. He/she will be responsible for planning and conducting activities to assess the effectiveness of cybersecurity controls and drive remediation efforts at ICT global level. This position requires a strong understanding of security frameworks, regulations, and the ability to translate them into practical solutions.
Organización
You will work at a prominent Italian pharmaceutical company with a global presence and a solid track record of over 130 years in the industry, located in Badalona. With a team of more than 700 professionals in Spain, they are among the top 15 pharmaceutical companies in the country. Their current focus covers key areas such as cardiovascular risk, respiratory, analgesia, male sexual health, and the digestive system. Additionally, they are committed to research and development of new products in various therapeutic areas, including oncology.
Función
Key Responsibilities – Control the status of vulnerabilities related to the infrastructure datacenter and clients. – Monitor the patching activities related to the vulnerability remediation reports sent to the HUBs. – Lead the technical maintenance and continuous improvement of our Information Security Management System (ISMS) to ensure ongoing ISO 27001 certification across the organization. – Continuously monitor compliance of internal ICT security policies and standards across the Group. – Define and measure performance Indicators (KPIs) and Key Risk Indicators (KRIs) to measure the effectiveness of the cybersecurity systems and operations. – Prepare clear and concise reports for senior management. – Collaborate with cross-functional teams such as IT, CISO, Legal and Risk Management on cybersecurity topics. – Stay up-to-date on the latest security threats and trends.
Requisitos
Qualifications – Bachelor’s degree in Cybersecurity, Information Technology or a related field (Master’s degree preferred). – Minimum of 3–5 years of experience in security governance or a related field. – Strong understanding of security frameworks such as NIST, ISO 27001, COBIT. – Experience with security risk assessments and mitigation strategies. – Excellent communication, interpersonal and presentation skills. – Ability to work independently and as part of a team. – Excellent proficiency (verbal and written) in English. Desired Skills – Experience with security compliance audits and assessments. – Knowledge of relevant security regulations (e.g., GDPR, HIPAA, NIS 2). – Experience with security incident response. – Excellent analytical and problem-solving skills. – Strong attention to detail.
Oferta
The process will be managed from the global talent adquisition deparment.