Head of Information Security & Risk Management

1886! We have more than 130 years of experience treating patients. Sandoz, a division of Novartis, is a global leader in generics and biosimilars, and strives to play a leading role in improving access to medicines worldwide.
- The Executive Director for Information Security shall be responsible for planning, overseeing, implementing, and maintaining the Information Security program.Your key responsibilities:

• Develop, maintain and enable a proactive Information Security Strategy that evolves with the business needs, partnering with the company’s functions, business units and subsidiaries.
• Provide expert leadership in developing, implementing and maintaining an information security program and associated infrastructure.
• Provide guidance and advocacy regarding prioritization of IT investments that impact information security and manage the development, implementation, and maintenance of information security policy, standards, and guidelines..
• Work with the Chief Privacy Officer, Corporate Security, Internal Audit and HR to ensure their functions and information security are aligned with IT.
• Work with stakeholders to ensure that information security risks are balanced with business needs in both ongoing and planned operations.
• Monitor information security trends internal and external to the company and keep their senior management team informed about information security-related issues, assisting business units as necessary to address security incidents.
• Understand potential threats, vulnerabilities, and control techniques and communicate this information to departmental system administrators.
• Monitor and report on information security activities, compliance and effectiveness of controls. Develop and maintain a security awareness and training program.
• Develop, manage and grow a team of security and compliance experts; providing opportunities for personal and professional growth.

Commitment to Diversity & Inclusion:

• Novartis is committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve._

Minimum requirements

What you’ll bring to the role:

• Information security strategies within a global IT healthcare environment (SOX, GXP, etc).
• Knowledgeable in information security trends while developing policies and standards along all levels.
• Able to develop programs and guidelines that are fit for purpose for the organization; in alignment with business needs, regulatory requirements and identified threats.
• BA/BS degree - preferably in computer science/information systems; MBA a plus.
• 10 to 15 years in information and IT security. Minimum of 5 years’ experience in a security-related thought leadership or management.
• Certifications
• Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or Certification Information Systems Security Professional (CISSP)
• Proven ability to operate within a global healthcare business environment.
• Superb communication skills, writing and public speaking
• Ability to collaborate with top management as well as the diverse cultures of domestic and international corporate and IT security.

Why Sandoz?

500 million patients were touched by Sandoz generic and biosimilar medicines in 2021 and while we’re proud of this, we know there is more we could do to continue to help pioneer access to medicines for people around the world.

• How will we do this? We believe new insights, perspectives and ground-breaking solutions can be found at the intersection of medical science and digital innovation. That a diverse, equitable and inclusive environment inspires new ways of working.
• We believe our potential can thrive and grow in an unbossed culture underpinned by integrity, curiosity and flexibility. And we can reinvent what's possible, when we collaborate with courage to aggressively and ambitiously tackle the world’s toughest medical challenges. Because the greatest risk in life, is the risk of never trying!Imagine what you could do here at Sandoz!

Commitment to Diversity & Inclusion:
Novartis embraces diversity, equal opportunity and inclusion. We are committed to building diverse teams, representative of the patients and communities we serve, and we strive to create an inclusive workplace that cultivates bold innovation through collaboration, and empowers our people to unleash their full potential.-
Division
- SANDOZ

Business Unit
- Digital SZ

Country
- Switzerland

Work Location
- Basel

Company/Legal Entity
- Sandoz AG

Functional Area
- Technology Transformation

Job Type
- Full Time

Employment Type
- Regular

Shift Work
- No

Early Talent
- No