Senior Security Architect
Ferring Pharmaceuticals
há 6 dias

Job Description :

Job posting title : Senior Security Architect

Ferring Pharmaceuticals, a specialty biopharmaceutical company with operations worldwide, is looking for a Senior Security Architect.

Join us and the journey to take Ferring’sInformation Security maturity to the next level!

Your new company

Ferring Pharmaceuticals is a research-driven, specialty biopharmaceutical group committed to helping people around the world build families and live better lives.

Headquartered in Saint-Prex, Switzerland, Ferring is a leader in reproductive medicine and women’s health, and in specialty areas within gastroenterology and urology.

Ferring has been developing treatments for mothers and babies for over 50 years and has a portfolio covering treatments from conception to birth.

Founded in 1950, privately-owned Ferring now employs over 6,000 people worldwide, has its own operating subsidiaries in nearly 60 countries and markets its products in 110 countries.

To learn more about Ferring or its products please visit

Your new role

The primary responsibility of a Security Architect is to design, plan and assist with the implementation of global Information Securitypolicies and technologies across Ferring's Global IT and OT landscapes,aligned with Information Security Governance and Information Security Managementbest practices and standards, and maintaining a risk based evaluation mindset throughoutthe guidance on how to protect the confidentiality, integrity and availability.

Ferring's is focused in the develop of Information Security maturity in its global OT landscape, so experience in information security functions in multinational companies withGlobal OT environments includingManufacturing and Supply Chain Infrastructures and services, is a key differentiating factor.

Key Responsibilities :

  • Key contributor on overall guidance and definition ofFerring Security Programs for both IT and OT ,in order to effectively support Ferring's business strategy in a secured and controlled manner , deliveringreduced risk , reduced complexity and value for money.
  • Key contributor in producing tactical roadmaps with clear and well-defined OT security controls in for OT environmentsincluding ICS, SCADA, IoT, IIoT, and Hybrid environments ( on premises, Private clouds, public Clouds).
  • Key contributor in producingtactical roadmaps withclear and well-defined Security controls not only across Architectural domains such as Data Security , Application Security, Endpoint & Devices Security , Hybrid Infrastructure Security, Cloud Security, Identity and Access Management, Key and Secret Managementand across Operational domains such asConfiguration& Patching Management, Vulnerability Management, Security Monitoring and Incident Handling.
  • Design, plan and assist with the build ofrobust security reference architectures for IT and OT Environments,
  • Define, implement and maintain information security policies, standards and operational procedures.
  • Support the development , planning and deployment of information security projects for both security solutions or security services , from therequirements definition for RFP / RFI artefactsand technical evaluation of proposals , to the planning, implementation and acceptance testing / assessment.
  • Support Business Partners in the analysis and translation of business and functional requirementsinto technical requirements, aimingtheintegration of security requirements at the design phase ofPrograms / Projects and Demands
  • CoordinateFerring partners toward required compliance and expected quality of IT security management procedures over provided managed security services and solutions for both the design and implementation of global scale projects as on reviewing and supporting the handling day-to-day operational requests from the business.
  • Assure the continuous improvement of Ferring's security monitoring and alerting services by the integration of relevant Threat Intelligence Feeds and the implementation of the MITRE ATT&CK framework .
  • SupportFerring partners Incident Response Team and Internal teams through thesecurity-related incidents in alignment with Ferring's incident handling process.
  • Develop and oversee security awareness programs and other training efforts
  • Provide technical support to the Data Privacy Officer’s team and to IT Compliance's team
  • Work closely with both LoB as well as Global IT colleagues in particular project managers, service managers and application managers to avoid redundancy, minimize expenditures and improve overall synergies within the organization
  • Act as Single point of contact between IT teams, business and suppliers for security architecture and design purpose
  • Ensure being in control of global assets needed to operate our Security Controls and aid in managing outsourcer cost.
  • Required Education / Qualifications / Skills :

  • 10+ years' experience designing, executing, and supportingIT Security Architecture and / or IT Security Governance Projects.
  • Degree in Computer Science, Computer Engineering, Information Technology, or another relevant field.
  • Experience in information security functions in multinational companies of relevant dimension,with several Line of Business including Manufacturing and Supply Chain OT environments.
  • Knowledge of IT Security frameworks and standards ( NIST CSF , NIST SP 800-53 , NIST SP 1800 series) , Information Security Management Standards ( ISO / IEC 27001 and ISO / IEC 27002 ) and World Wide Data Privacy Regulations (namely GDPR and California Privacy Act).
  • Knowledge of OT security frameworks and standards ( ISA / IEC 62443, NIST SP 800-82 Rev. 3 )
  • Knowledge of risk management standards ( NIST RMF) and Business Continuity Management Standard ( ISO 22301, ) is a plus.
  • Knowledge of industry regulations ( GxP, 21 CFR Part 11) is a plus.
  • Industry recognized certifications (e.g. SABSA, CISSP, CCSP, CRISC, GDSA) or training in information security, cybersecurity and related fields is a plus.
  • ExcellentOT / ICS security architecture design expertise considering IT / OT integration and Convergence principles .
  • Solid design & engineering knowledge on OT securitysolutions and services ofsecurity vendors landscape leaders such asOT& ICS asset management, OT SRA (Secure Remote Access)and OT CTD ( Continuous Threat Detection).
  • Knowledge inSecurity Technologies such as Network Segregation / Firewalls, Identity Management, Conditional & Least Privileged Access, VPN, Endpoint Protection.
  • Knowledgeof SDN security architecture concepts and design.
  • Knowledge on SD-WAN architecture concepts and design.
  • Design & engineering knowledge on cyber security solutions and services ofsecurity vendors landscape leaders such as Secure Gateways,Secure Web Gateways , Secure Email Gateways,Web Application firewall, Intrusion Prevention Systems, Privileged Identity and Access Management, Mobile Device Management, is a plus.
  • Strong experience working with- and managing Outsourcing providers.
  • Demonstrated ability to think strategically about business, product, and technical challenges.
  • Experience with problem solving issues on distributed systems and critical product service environments.
  • Exceptional communication skills and the ability to communicate appropriately with corporate executives and technical teams.
  • Experience working within regulated industries.
  • Excellent organizational, coordination, interpersonal and communication skills and experience working in an international team across locations and time-zones.
  • Fluency in English.
  • What you'll get in return

    Inspiration from our commitment to advocate for everyone’s right to build a family, no matter who you are, where you live or who you love.

    Motivation from innovation in our chosen therapy areas and ongoing development of our organization.

    What you need to do

    If you're interested in this role, please apply now.

    Location :

    Ferring Service Center Portugal

    Reportar esta oferta de trabalho

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Meu email
    Ao clicar em "Continuar", autorizo a neuvoo a processar os meus dados e a enviar-me alertas de e-mail, conforme detalhado na Política de Privacidade da neuvoo . Posso retirar o meu consentimento ou cancelar a subscrição a qualquer momento.
    Formulário de candidatura