Security Officer responsible for maintaining a safe environment for clients and employees. Enforcing policies and responding to emergencies at the client's site.
About the role
- Enterprise Security Architect responsible for security architecture in Novartis' Digital Workspace. Collaborating with teams to ensure implementations meet security policies and industry standards.
Responsibilities
- Develop and enforce security policies and procedures related Digital Workspace across Novartis businesses to meet business and regulatory requirements
- Design security measures and overall Digital Workspace architecture for the IT landscape in line with the ISC policy framework
- Support and continually review technology standards and controls related to Digital Workspace and recommend information technology strategies, policies, and procedures
- Identify design problems within the Digital Workspace domain
- Support projects to evolve Digital Workspace solutions from evaluation to implementation and assist the delivery of the operational model
- Support the auditing of security policies and procedures
- Management communication with key stakeholders and provide reports to management
- Provide ongoing support to maintain the Digital Workspace domain’s effectiveness and efficiency by defining, delivering, and supporting strategic plans for implementing information technologies
- Develop and maintain relationships with key stakeholders and vendors
- Support the direction of technological research by learning the organizational goals, strategies and business drivers
- Develop and maintain architecture diagrams and documentation related to Digital Workspace processes and procedures
- Break down the strategic objectives to requirements on the solution portfolio and target architecture
- Key contributor on products, services and/or infrastructure strategies that require complex or advanced conceptualization
- Research and evaluate new Digital Workspace security technologies and make strategic security technology choices, directly supervising the quality of designs and implementation inside and between components
- Work with improvements, by participation in the development, of the architectural principles, processes, and standards.
Requirements
- University working and thinking level, degree in business/technical area or comparable education/experience
- 15+ years of working experience in Security domain; minimum 5 years in architecture capacity; 5+ years of Digital Workspace security essential
- 5+ years of experience of working in or providing IT services to a large enterprise like Novartis.
- Exceptional understanding of other security domains like Digital Workspace, Microsoft365, Data Protection, with good knowledge of Network Security, Identity and Access Management, SIEM, Vulnerability Management
- Exceptional understanding and knowledge of general IT infrastructure technology, systems and management processes
- Experience of sourcing complex IT services, working closely with vendors and making full use of their capabilities
- Good knowledge of IT Project Management: Proven experience to initiate and manage projects that will affect other divisions, departments and functions, as well as the corporate environment.
- Experience with compliance requirements (e.g. SOX, GxQ / CSV, E-compliance, Records Management, Privacy).
- Knowledge of (information) risk management related standards or frameworks such as COSO, ISO 2700x, CobiT, ISO 24762, BS 25999, NIST, ISF Standard of Good Practice and ITIL
- Strong leadership experience, with excellent written and verbal communication and presentation skills at all levels of the organization and experience in reporting to and communicating with senior level management (with and without IT background, with and without in-depth risk management background) on information risk topics; interpersonal and collaborative skills, as well as good mediation and facilitation skills.
- Good understanding and experience with Enterprise Architecture Frameworks like TOGAF will be an added advantage.
Benefits
- Commitment to Diversity & Inclusion: We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Senior Security Advisor enhancing security measures to align with corporate objectives at Desjardins. Leading development of strategic initiatives and overseeing best practices in security.
Controls Professional assessing internal control frameworks at Barclays, improving control effectiveness and managing risks to ensure compliance with regulations.
Senior Information Security Engineer at Wells Fargo investigating insider threats and strengthening cybersecurity measures. Conducting advanced investigations and collaborating with cyber teams to mitigate risks.
Staff Product Manager overseeing enterprise security product strategy for Tenable. Collaborating with various teams to deliver customer - focused solutions and product features.
Program Security Representative providing multi - discipline security support for Special Access Programs. Ensuring compliance, developing policies, and conducting security assessments in a military context.
Information Systems Security Officer managing operational security posture for information systems at GDIT. Collaborating closely with ISSM and ISO, handling security aspects, and ensuring compliance with security standards.
Senior Cyber Security Project Manager at Airbus Protect managing medium complexity projects in Cyber Security Consulting. Focusing on project leadership and team management in diverse client settings.
Security Architect responsible for designing cloud security architectures for leading brands. Ensuring compliance and guiding incident response strategies in AWS environments.
Senior Security Consultant for ISMS Management at Bundesdruckerei GmbH in Berlin. Responsible for security analysis, management, and advisory roles on cybersecurity issues.