Head of Information Security

About the Company

Our client is a dynamic and fast-growing pharmaceutical organization dedicated to advancing healthcare innovation. With cutting-edge research, global operations, and a strong focus on digital transformation, they are looking to appoint a Head of Information Security to lead and strengthen their information security posture across the business.

The Role

The Head of Information Security will drive the development and implementation of a robust security strategy to protect sensitive data, critical infrastructure, and intellectual property. Reporting directly to executive leadership, you will act as the organization's security authority, balancing risk management, regulatory compliance, and business enablement in a highly regulated environment.

Key Responsibilities

• Develop and execute the information security strategy aligned with business goals and regulatory requirements (e.g., GDPR, GxP, NIS2).
• Lead the design, implementation, and management of security policies, standards, and procedures.
• Oversee risk assessments, security audits, and incident response planning across the organization.
• Safeguard IT infrastructure, R&D platforms, cloud environments, and operational technology in manufacturing facilities.
• Build and lead a small but highly capable security team, nurturing a proactive security culture.
• Act as the primary point of contact for security with internal and external stakeholders, including auditors and regulators.
• Continuously monitor evolving threats and ensure the organization remains ahead of cybersecurity risks.
• Partner closely with IT, Compliance, Legal, and R&D teams to embed security best practices throughout the business lifecycle.

Key Requirements

• 5+ years’ experience in information security leadership, preferably within the pharmaceutical, biotech, healthcare, or other highly regulated sectors.
• Strong knowledge of information security frameworks (ISO 27001, NIST, CIS) and regulatory requirements relevant to pharmaceuticals.
• Hands-on expertise with cloud security, network security, endpoint protection, and data privacy.
• Proven ability to design and execute a scalable, business-aligned security strategy.
• Professional certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer) are highly desirable.
• Fluent English is essential; German language skills are a significant plus.
• Strong leadership, stakeholder management, and communication skills.

Why Join?

• Be a critical leader in a purpose-driven organization at the forefront of healthcare innovation.
• Shape and mature the security function during a pivotal period of digital growth.
• Engage in an international, collaborative environment that values innovation and continuous improvement.
• Competitive salary package with excellent development opportunities.

Interested?

Apply today to be part of an organization where your expertise will directly impact global healthcare advancements.