Senior Information Security Architect (Denmark, Bagsværd)

Jobbeskrivelse
Placering
Bagsværd, Denmark

Jobkategori
Digital & IT

Ansøg nu

In Novo Nordisk, we are driving change to defeat serious chronic diseases. A step in that direction is to acquire companies which can help our patients. Are you passionate about information security, take pride in identifying and addressing potential security risks before malicious attackers can exploit them and want to put these in action within a wide range of companies, then come and join our Mergers & Acquisitions (M&A) team within Global Information Security.

What’s in it for you?
We are seeking an Information Security Architect who would like to engage in due diligence and integration activities. The candidate could have a background as a former pentester and possess a solid understanding of Windows hardening baselines, including CIS benchmarks and Microsoft baseline, as well as Windows Active Directory. Additionally, the candidate should have experience with at least one public cloud platform (Azure/AWS/GCP) and proficiency with the Microsoft E5 suite.

Responsibilities:

• Work closely with a team, consisting of both internal employees and external consultants throughout the due diligence to integration phase.
• Ensure technical assessments are conducted in a timely manner and all findings are addressed or accepted.
• Plan and ensure execution of joint security assessments, including penetration testing, vulnerability assessments, and threat emulation exercises to identify weaknesses and inform defensive strategies.
• Implement defensive controls such as hardening and setting up security tools.
• Take responsibility for sourcing and on-boarding of external consultants.
• Share insights gained from offensive and defensive operations to enhance the collective understanding of threats, vulnerabilities, and effective defensive measures across deals or individual targets.
• Develop in-house technical information security capabilities to safeguard future partnerships, licensing, and acquisitions deals.
• As the number of deal activities can fluctuate, ad hoc activities such as engagement with purple team activities or support security partners within Novo Nordisk, broadening your competencies.

Together with the rest of the Global Information Security team, you act as an information security architect to stakeholders throughout the Novo Nordisk value chain by identifying risk and proactively developing mitigating solutions. At Novo Nordisk, your skills, dedication, and ambition help us change the way we strengthen Novo Nordisk's information security posture to be ready for future business models. In exchange, we offer you an opportunity to work with extraordinary talent and benefit from a range of professional and personal development possibilities.

Candidate profile
The perfect colleague could come from various backgrounds and the following are examples of the qualifications that we would prioritise:

• A Master’s degree in IT, data science or information security
• Solid understanding of Windows hardening baselines such as CIS benchmarks and Microsoft baseline, Windows Active Directory, at least one public cloud platform Azure/AWS/GCP and the Microsoft E5 suite
• Knowledge of red team tactics / pentesting of systems, security controls and how to best implement them to prevent threats
• Ability to solve complex problems independently by getting to the core and clearly communicating scenarios, impacts and recommendations to the decision-makers.
• Security certifications such as CISSP, OSCP, GIAC are bonus, eLearn Security etc.
• At least 6+ years of relevant experience in cybersecurity

To be successful in this you need to have a strong personal drive and a go-get-them attitude. You need to be curious, and pragmatic while persistent to get delivered what you came for. It is also a requirement that the successful candidate can pass through a Tier-1 background check.

The Global Information Security community
With this role, we welcome you to Digital, Data & IT and a journey of digital transformation and innovation where IT makes a real difference for millions of patients worldwide. It’s a global journey to join with 3200+ colleagues worldwide. The Global Information Security Strategy Office is based in Digital, Data and IT in Denmark. You will be part of a global information security community with colleagues located primarily in Denmark, USA, and India.

Global Information Security consists of leading experts in various areas ranging from network security, white hat hacking, cloud security, cryptography, security operations, due diligences & integrations, to manufacturing security and security risk management and governance.

Joining Novo Nordisk
Founded in Denmark in 1923, Novo Nordisk has become one of the world’s leading healthcare companies. At Novo Nordisk, we are committed to driving change to defeat diabetes and other serious chronic diseases. To fulfil this purpose, we pioneer scientific breakthroughs, expand access to our medicines, and work to prevent and ultimately cure disease. That said, we are anything but linear.

With us, your skills, commitment, and ambition help us change patients’ lives worldwide. In exchange, we offer you a rewarding and purpose-driven culture with talented and diverse co-workers. Therefore, your professional and personal development is essential for us, and in Novo Nordisk, the sky is the limit for career opportunities.

Any questions?
For further information, please contact Slavi Parpulev (M&A Information Security Manager) or Kristina I. Jacobsen (manager): +45 4444 8888

Deadline
27 May 2024

To ensure a fair and equal recruitment process, please refrain from adding a picture in your CV. We encourage you to apply as soon as possible; the application may close before the deadline if the right candidate is found. A cover letter is preferred, not mandatory. Please, include some sentences about why you are applying in your resume / CV.

We commit to an inclusive recruitment process and equality of opportunity for all our job applicants.

At Novo Nordisk we recognize that it is no longer good enough to aspire to be the best company in the world. We need to aspire to be the best company for the world and we know that this is only possible with talented employees with diverse perspectives, backgrounds and cultures. We are therefore committed to creating an inclusive culture that celebrates the diversity of our employees, the patients we serve and communities we operate in. Together, we’re life changing.