Information Security Officer

at  Ardena

ABOUT US

As a leading contract development and manufacturing organization (CDMO) within the pharmaceutical industry, Ardena is dedicated to supporting pharmaceutical companies, from virtual biotech to major players, in bringing their valuable molecules to the clinic and market. Our commitment extends to providing a comprehensive and integrated portfolio covering drug substance and drug product development, manufacturing, logistics, and bioanalytical services.
With a rapidly growing international orientation, Ardena boasts a team of 500+ professionals operating across five strategically located sites. Our presence spans Belgium (Gent), The Netherlands (Oss and Assen), Spain (Pamplona), and Sweden (Södertälje). Embracing an open and transparent culture, we hold team spirit, an open mindset, and ownership as key values within our organization.
We are a dynamic force in drug development, offering compelling career opportunities to skilled and motivated individuals seeking to make their mark in the rapidly expanding global pharmaceutical industry. If you’re looking to thrive in a challenging contract research and development environment, collaborating with experts to innovate drugs for unmet medical needs, Ardena could be the ideal workplace for you.
For the Ardena Corporate IT team, we are looking for an experienced Information Security Officer
Reporting directly into the IT Director you will provide the specialist expertise to maintain and support IT security strategies by managing the overall IT security governance and compliance processes, ensuring that effective IT security controls and processes are being implemented across the business.

• To probe systems and processes to ensure appropriate controls are applied.
• Provide security advice based on best practice to IT or Systems Owners.
• Evaluation and risk assessment of new suppliers, software, systems or technologies.
• Annual security reviews and risk assessment of IT suppliers.
• Contract Annual Penetration testing.
• Analyse IT requirements and provide objective advice on best practice IT security.
• Identify and mitigate network vulnerabilities.
• Research/evaluate emerging cyber security threats and ways to manage them.
• Plan and test for disaster recovery, business continuity and create contingency plans for the event of any security breaches.
• Monitor for attacks, intrusions and unusual, unauthorised or illegal activity.
• Identify any gaps in controls on systems eg Active Directory, Azure, AWS, etc.
• Investigate security alerts and provide support for incident response.
• Maintain an information security risk register and assist with internal and external audits relating to information security.
• Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues.
• Review and refine IT security controls to ensure that they are appropriate to mitigate underlying resilience and residual risk.
• Maintain the Information Security Management System
• To oversee all ongoing activities related to the development, implementation, and maintenance of information security policies and procedures by ensuring these policies and procedures encompass the overall security of information at rest or in transit within the systems.