Share this Job

Global IT Security & Compliance Officer (f/m/d)

Date: Jun 20, 2019

Location: Bad Vilbel, HE, DE, 61118

Company: STADA Arzneimittel AG


STADA Arzneimittel - Being a global company we are committed to care for people’s well-being. For over 120 years, STADA stands for highest quality on the health care market. Our company is pursuing a three-pillar strategy consisting of non-prescription OTC products, generics and specialty pharmaceuticals including biosimilars. In financial year 2017, we achieved global sales of over EUR 2 billion. The main drivers of this success are the roughly 10,200 employees in the Group.

 

For the department Corporate IT, which belongs to the holding company of the group, the STADA Arzneimittel AG, we are looking for a



Global IT Security & Compliance Officer (f/m/d) 

 

 

Your responsibilities will include:
 

Professional Tasks

  • Deliver and execute on a strategy with regards to corporate wide information security & compliance and ensures monitoring of IT security & compliance guidelines.
  • Developing and deploying the processes and standards to ensure that information systems are maintained in a fully functional, secure mode.
  • Ensuring day-to-day IT operations are compliant with regulatory, organizational and commercial requirements.
  • Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure that the integrity, confidentiality and availability of information is owned, controlled or processed by the organization.
  • Manage the enterprise's information security & compliance organization, consisting of multiple direct reports and indirect reports in other (IT) departments. This includes hiring, training, staff development, performance management and annual performance reviews.
  • Facilitate information security governance through the implementation of a hierarchical governance program, including the formation of an information security steering committee or advisory board.
  • Oversee the creation and management of information security, compliance and risk management awareness training programs for all employees, contractors and approved system users.
  • Leads and monitors the IT Compliance team members to ensure compliance with regulatory, organizational and commercial requirements, including license management.
  • Manage outsourcing contract with vendor that provides operational activities to detect and respond to security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation.
  • Manage outsourcing contract with vendor that provides operational activities to monitor the external threat environment for emerging threats, and ensure that relevant stakeholders are informed on the appropriate courses of action.
  • Advises the Global IT Director Service & Operations on IT Operational Governance, Risk & Compliance and delivers input regarding his/her specific responsibilities.

 

Your qualifications:

 

  • Bachelor's degree in computer science, business administration, engineering or a related discipline with an information technology focus.
  • M.B.A. degree in IT Project Management or equivalent professional experience desirable.
  • Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Officer (CISM), Certified Information Systems Auditor (CISA) or other similar credentials, is desired.
  • Minimum of 8 to 10 years of experience in a combination of risk management, information security and IT jobs. At least four must be in a senior leadership role. Employment history must demonstrate increasing levels of responsibility.
  • Proven track record and experience in developing information security policies and procedures, as well as successfully executing programs that meet the objectives of excellence in a dynamic environment.
  • Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences.
  • Poise and ability to act calmly and competently in high-pressure, high-stress situations.
  • Must be a critical thinker, with strong problem-solving skills.
  • Knowledge and understanding of relevant legal and regulatory requirements, such as Sarbanes-Oxley Act (SOX), Privacy laws, etc. and industry standards like ISO 2700X and CoBIT.
  • Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals.
  • High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity.
  • High degree of initiative, dependability and ability to work with little supervision.
  • Fluent language skills in English (German is a plus)

 

Alongside this interesting work, we offer a range of opportunities for professional and personal development as well as a working environment that enables a healthy work-life-balance. You will find comprehensive information at jobs.stada.com.

Are you interested in joining a friendly and committed team?
Then convince us with your application! Please use our online application portal to apply.

 

STADA Arzneimittel AG, Human Resources,
Phone: +49 6101 603-246, www.stada.de

 

 

Keywords: Global IT Security & Compliance Officer

Find similar jobs: