Anterior     |     Seguinte  

Senior Security Architect IT/Ot (M/F)


15.08.2022 | Lisboa | Referência: 2049180


Senior Security Architect IT/Ot (M/F)


Your new company

Ferring Pharmaceuticals is a research-driven, specialty biopharmaceutical group committed to helping people around the world build families and live better lives. Headquartered in Saint-Prex, Switzerland, Ferring is a leader in reproductive medicine and women’s health, and in specialty areas within gastroenterology and urology. Ferring has been developing treatments for mothers and babies for over 50 years and has a portfolio covering treatments from conception to birth. Founded in 1950, privately-owned Ferring now employs over 6,000 people worldwide, has its own operating subsidiaries in nearly 60 countries and markets its products in 110 countries.

Your New Role

In your role as a Senior Security Architect OT, you will take up the key role and responsibilities to:

• Key contributor on overall guidance and definition of Ferring Security Programs for both IT and OT ,in order to effectively support Ferring's business strategy in a secured and controlled manner , delivering reduced risk , reduced complexity and value for money.

• Key contributor in producing tactical roadmaps with clear and well-defined OT security controls in for OT environments including ICS, SCADA, IoT, IIoT, and Hybrid environments ( on premises, Private clouds, public Clouds).

• Key contributor in producing tactical roadmaps with clear and well-defined Security controls not only across Architectural domains such as Data Security , Application Security, Endpoint & Devices Security , Hybrid Infrastructure Security, Cloud Security, Identity and Access Management , Key and Secret Management and across Operational domains such as Configuration& Patching Management, Vulnerability Management, Security Monitoring and Incident Handling.

• Design, plan and assist with the build of robust security reference architectures for IT and OT Environments,

• Define, implement and maintain information security policies, standards and operational procedures.

• Support the development , planning and deployment of information security projects for both security solutions or security services , from the requirements definition for RFP/RFI artefacts and technical evaluation of proposals , to the planning, implementation and acceptance testing /assessment.

• Support Business Partners in the analysis and translation of business and functional requirements into technical requirements, aiming the integration of security requirements at the design phase of Programs/ Projects and Demands

• Coordinate Ferring partners toward required compliance and expected quality of IT security management procedures over provided managed security services and solutions for both the design and implementation of global scale projects as on reviewing and supporting the handling day-to-day operational requests from the business.

• Assure the continuous improvement of Ferring's security monitoring and alerting services by the integration of relevant Threat Intelligence Feeds and the implementation of the MITRE ATT&CK framework .

• Support Ferring partners Incident Response Team and Internal teams through the security-related incidents in alignment with Ferring's incident handling process.

• Develop and oversee security awareness programs and other training efforts

• Provide technical support to the Data Privacy Officer’s team and to IT Compliance's team

• Work closely with both LoB as well as Global IT colleagues in particular project managers, service managers and application managers to avoid redundancy, minimize expenditures and improve overall synergies within the organization

• Act as Single point of contact between IT teams, business and suppliers for security architecture and design purpose

• Ensure being in control of global assets needed to operate our Security Controls and aid in managing outsourcer cost.

What you’ll need to succeed

• 10+ years' experience designing, executing, and supporting IT Security Architecture and/or IT Security Governance Projects.

• Degree in Computer Science, Computer Engineering, Information Technology, or another relevant field.

• Experience in information security functions in multinational companies of relevant dimension, with several Line of Business including Manufacturing and Supply Chain OT environments.

• Knowledge of IT Security frameworks and standards ( NIST CSF , NIST SP 800-53 , NIST SP 1800 series ) , Information Security Management Standards ( ISO/IEC 27001 and ISO/IEC 27002 ) and World Wide Data Privacy Regulations (namely GDPR and California Privacy Act).

• Knowledge of OT security frameworks and standards ( ISA/IEC 62443, NIST SP 800-82 Rev. 3 )

• Knowledge of risk management standards ( NIST RMF) and Business Continuity Management Standard ( ISO 22301, ) is a plus.

• Knowledge of industry regulations ( GxP, 21 CFR Part 11) is a plus.

• Industry recognized certifications (e.g. SABSA, CISSP, CCSP, CRISC, GDSA) or training in information security, cybersecurity and related fields is a plus.

• Excellent OT/ICS security architecture design expertise considering IT/OT integration and Convergence principles .

• Solid design & engineering knowledge on OT security solutions and services of security vendors landscape leaders such as OT& ICS asset management, OT SRA (Secure Remote Access)and OT CTD ( Continuous Threat Detection).

• Knowledge in Security Technologies such as Network Segregation/Firewalls, Identity Management, Conditional & Least Privileged Access, VPN, Endpoint Protection.

• Knowledge of SDN security architecture concepts and design.

• Knowledge on SD-WAN architecture concepts and design.

• Design & engineering knowledge on cyber security solutions and services of security vendors landscape leaders such as Secure Gateways, Secure Web Gateways , Secure Email Gateways, Web Application firewall, Intrusion Prevention Systems, Privileged Identity and Access Management, Mobile Device Management, is a plus.

• Strong experience working with- and managing Outsourcing providers.

• Demonstrated ability to think strategically about business, product, and technical challenges.

• Experience with problem solving issues on distributed systems and critical product service environments.

• Exceptional communication skills and the ability to communicate appropriately with corporate executives and technical teams.

• Experience working within regulated industries.

• Excellent organizational, coordination, interpersonal and communication skills and experience working in an international team across locations and time-zones.

• Fluency in English.

What you'll get in return

Do you want to be part of the team to shape and accelerate the transformation of Ferring’s TechOps IT infrastructure? Do you have a proven track record across IT Infrastructure, Security and/or Manufacturing? If yes, then you are the person we are looking for to join our newly established TechOps Infrastructure team. Our mission is to be part of rebuilding Ferring’s TechOps IT infrastructure for the future.

What you need to do

If you are interested in this opportunity, click on “Apply Now” to forward us your updated CV. In case this is not the opportunity you are looking for, contact us to talk about other career opportunities, always in a confidential mode.

I am a Recruitment Consultant at Hays Technology, specialized in recruiting for Cybersecurity in Lisbon. I help professionals in this area develop their careers and ensure organisations are supported by the best talent.

At Hays Technology, we are shaping the future of recruitment. Data security and impenetrable protection for Cloud operating models are a priority in every company and business. We are surrounded by local and global projects and with markets in considerable change and in that sense we are in contact with the best professionals in this sector. If you are recruiting for your team or looking to take the next step in your Cybersecurity career, talk to us today. We are Hays Technology.