Description
My global research client is looking for a Senior IT Security Risk and Compliance Consultant to join their team based in Prague on a 12-month contract 100% Remote. Open to EU/UK Candidates Only (Outside IR35)
Key Skills and Responsibilities- Provide governance/risk advice and oversee a specific governance/risk area globally.
- Ensure IT project risks are managed in line with our strategy, the policy framework, laws and regulations, and outstanding industry standards, "First line of defence" for IT and business
- Ensure monitoring of information risk and proactive mitigation of issues.
- Deliver global information governance programs, eg risk management processes, information security awareness programs, data classification, storage & transmission guidelines, audit support, or development and maintenance and implementation of the Information Management Policy Framework
- Maintain strong knowledge of internal controls and internal risk and control frameworks/standards or the Information Management Policy Framework
- Advise Service Delivery Teams, on information security, IT compliance, information risk management
- Continuously support risk-based treatment of threats, gaps, vulnerabilities, and risks in the Service Delivery area.
- Identify points of improvement or gaps in the service delivery of the central teams and work together with them to resolve them.
- Analyse the impact of new technologies and regulatory changes on information security considering Cyber Security and Data Privacy Acts, Laws, and Regulations
- Minimum 8+ years experience within an IT environment in a similar security role
- Good understanding of GxP regulated business processes ideally in the pharmaceutical industry, QC&QA, Supply Chain and/or Manufacturing & Engineering.
- Experience with supporting Information Security and Risk Management projects within a multi-site, global project scope.
- Strong knowledge in IMF Framework and ISRM Tools.
- Efficiently support Waterfall SDLC and Agile ways of working, and effectively support project delivery.
- Stakeholder management reporting and communication of information risk topics.
- Strong hands-on practice of Risk Management
- IT security and implementing policies in manufacturing setup
- CISSP, CISM, CIA, CISA, CRISC or ISO 27001 auditor/practitioner (one or more preferred)
- Fluent English (spoken and written)
If you are interested in this exciting global Senior IT Security Risk and Compliance Consultant role on a 12-month contract (100% Remote) please send your CV ASAP for consideration. Open to EU/UK Candidates Only (Outside IR35)