Information Security Analyst

Humlebæk, DK

Job Family: Information Technology

Country/Region: Hungary

The IT/OT Security Risk Analyst is a cross-functional role focused on governance, risk, and compliance between IT and OT environments and stakeholders. The role works with Global Information Security, Global Operations, and Security Operations teams to integrate OT risk management into a broader information security and business continuity strategy.

The role will be based in Tatabánya, Hungary but report to Information Security in HQ Denmark.

Tasks and responsibilities:

• Help develop, operate, and maintain IT and OT security compliance based on ISO 27001, ISA/IEC 62443 series in alignment with relevant laws and regulations
• Conduct risk assessments through a structured approach
  • Identify vulnerabilities and threats within the OT environment
  • Work with subject matter experts to identify mitigation measures
  • Prepare and deliver risk reporting to relevant stakeholders

• Translate technical risks assessments into the existing Information Security Risk Management framework
• Work with IT Service and Business Continuity to create business continuity planning based on risk landscape
• Establish supplier security governance requirements for OT suppliers
• Support OT security incident handling; analyze security incident trends with input from Security Operations
• Provide security advice to OT engineering teams

Key objectives/deliverables

• Perform technical and organizational risk assessments for OT
• Mature security and governance requirements in the IT/OT environment
• Conduct supplier due diligence and have a strong overview of OT supplier risks
• Support audits from HQ or by authorities, when necessary
• Stay informed on evolving OT cybersecurity trends, technologies, and vulnerabilities

Basic qualifications

• Bachelor’s in cyber security, industrial systems, engineering, or a related field
• Strong knowledge of industrial automation control system concepts and technology (Operational Technology)
• Solid work experience conducting security risk assessments in an IT and OT environment
• Familiarity with compliance and security standards in IT/OT environments (ISO 27001, ISA/IEC 62443)
• Familiarity with EU NIS 2 Directive requirements as applicable to IT/OT environments
• Ability to discuss technical matters in a non-technical way
• Strong command of both Hungarian and English language – written and oral; all deliveries will be in English

Preferred qualifications

• Industry certifications in IT or OT cybersecurity (ISO 27001, ISA/IEC 62443, etc.)

Required knowledge, skills & abilities

• Independent, structured, motivated
• Analytical and solution-oriented
• Comfortable working with other cultures
• Passionate about IT/OT cybersecurity

Physical or other job requirements

• The position requires traveling for assessment activities; 10 - 20 days per fiscal year
• Traveling will require flexibility towards defined office hours

Pursuing an ambitious growth agenda, Coloplast develops and markets products and services that make life easier for people with intimate healthcare needs. Employing about 16.000 people and with products available in more than 143 countries, we are one of the world´s leading medical device companies. We are constantly growing our business and always looking for new ways to move forward – we explore, learn and look for new ways of doing things.

Coloplast is committed to being an inclusive organization, where people bring their differences to work each day, fulfil their potential and have a strong sense of belonging because – and not despite – of their differences. We therefore encourage all qualified candidates to apply regardless of gender, age, race, nationality, ethnicity, sexual orientation, religious belief or physical ability.

Visit us on Coloplast.com.

Watch the film.