Senior Information Security Project Manager (m/f/d)
For our client, a well-known pharmaceutical company in Basel-Land, we are looking for a Senior Information Security Project Manager (m/f/d).
Background
We’re looking for a senior project manager with deep experience in managing the delivery of information security projects. This person will also help to monitor finances, and report progress of the overall security program. Some of these projects are of low complexity and delivered with few resources, others are more complex and involve multiple service providers.
General Information
Start date: ASAP
Planned duration: 6 months
Extension: yes, planned
Workplace: Basel
Workload: 100%
Tasks and Responsibilities
Support Information Security Framework (ISF) Enhancement: Collaborate on the design and improvement of the security program, data flows, and business processes, with a focus on third-party risk management
Conduct Comprehensive Security Risk Assessments: Evaluate systems, processes, and engagements with third-party providers to ensure compliance with security standards. Identify and report risks and issues to relevant stakeholders
Maintain Risk Registers and Facilitate Meetings: Manage risk registers, deliver detailed reports, and conduct meetings with information security committees to address identified risks and issues effectively
Enhance Third-Party Risk Management Policies: Assist in the development and improvement of policies for managing risks associated with third-party engagements
Ensure GMP CSV Compliance: Follow and ensure compliance with Good Manufacturing Practice (GMP) Computer System Validation (CSV) requirements in relevant projects, collaborating closely with the GMP CSV compliance team and Quality Assurance
Resource Management and Risk Mitigation: Review and approve timesheets for external resources, submit billing for approval, and proactively manage project risks, issues, and dependencies, proposing appropriate mitigation actions
Must Haves
Bachelor’s degree in information technology/ security, or related fields
10 years’ experience in information technology
PM certifications such as PMI, PRINCE2 or equivalent
Extensive experience in managing projects to deliver security processes and solutions
Such as ServiceNow GRC, Archer, Metricstream; and the NIST Cyber Security Framework
Knowledge of GDPR and GXP environment is a plus
Experience in managing programs with various simultaneous projects
Experience in ICS / OT environment would be a plus
Excellent English language skills
Nice to Haves
Experiences in a pharmaceutical, biotechnology or in other manufacturing organizations is preferable
Professional certifications in Information Security (e.g., CISSP, CISM) are advantageous
Experience in ICS / OT environment would be a plus