390622BR
Feb 09, 2024
Czech Republic
About the Role
Location: Prague, Czech Republic or Hyderabad, India #LI-Hybrid
We are on a mission to reimagine medicine through Data, Digital and AI and we need to use and manage our data and technology in a compliant and secure way. This requires associates’ and partners’ awareness and adherence to complex information security and compliance requirements.
Our Director – IT Security Policy Framework, Data, Digital & IT will define and implement the corporate Information Security Policy Framework and ensure it is appropriately maintained to reflect changes in threats as well as legislative landscape around Cyber, Technology / AI , Privacy, and other related topics.
Your key responsibilities:
• Ensure information security policies, guidelines, controls as well as related compliance processes are defined and implemented across the enterprise to safeguard the integrity, confidentiality and availability of information owned, controlled, or processed by Novartis.
• Develop effective enterprise-level programs and trainings to drive awareness and provide subject matter expertise and contextual advice on how to better safeguard business critical data.
• Lead a team of ~ 10 experienced team members and act as a senior leader in the Information Security and Compliance team.
• Effectively manage and collaborate with corporate stakeholders from IT, Ethics Risk & Compliance, QA, Privacy, Procurement, Legal and business functions across the value chain.
• Develop and apply new technologies and concepts within this field of expertise and ensure continuous improvement of the assigned activities and benchmark versus industry best practices (e.g. NIST, ISO).
• Interact with external security and compliance experts as well as regulators to identify industry trends and focus areas, evaluate applicability for Novartis and provide recommended course of action.
We are on a mission to reimagine medicine through Data, Digital and AI and we need to use and manage our data and technology in a compliant and secure way. This requires associates’ and partners’ awareness and adherence to complex information security and compliance requirements.
Our Director – IT Security Policy Framework, Data, Digital & IT will define and implement the corporate Information Security Policy Framework and ensure it is appropriately maintained to reflect changes in threats as well as legislative landscape around Cyber, Technology / AI , Privacy, and other related topics.
Your key responsibilities:
• Ensure information security policies, guidelines, controls as well as related compliance processes are defined and implemented across the enterprise to safeguard the integrity, confidentiality and availability of information owned, controlled, or processed by Novartis.
• Develop effective enterprise-level programs and trainings to drive awareness and provide subject matter expertise and contextual advice on how to better safeguard business critical data.
• Lead a team of ~ 10 experienced team members and act as a senior leader in the Information Security and Compliance team.
• Effectively manage and collaborate with corporate stakeholders from IT, Ethics Risk & Compliance, QA, Privacy, Procurement, Legal and business functions across the value chain.
• Develop and apply new technologies and concepts within this field of expertise and ensure continuous improvement of the assigned activities and benchmark versus industry best practices (e.g. NIST, ISO).
• Interact with external security and compliance experts as well as regulators to identify industry trends and focus areas, evaluate applicability for Novartis and provide recommended course of action.
Diversity & Inclusion / EEO
We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.
Role Requirements
What you’ll bring to the role:
• Master’s / MBA degree in science, technology, or business (or comparable education)
• 10+ years professional experience in Information Security, IT Audit and/or IT Compliance; experience in Consulting / Big4 is a plus.
• Leadership and/or management experience acquired with global cross-cultural teams.
• Experienced with policies and/or controls and related standards and frameworks; Professional certifications like CISA, CISSP, CISM are a plus.
• Collaboration: Strong ability to handle competing priorities, and seeking consensus when parties have different/contradicting opinions. Is perceived as a team player.
• Communication: Excellent written and verbal communication skills; interpersonal skills and ability to professionally handle sensitive matters with high integrity.
Novartis is unable to offer relocation support for this role: please only apply if this location is accessible to you.
You’ll receive:
Monthly pension contribution matching your individual contribution up to 3% of your gross monthly base salary; Risk Life Insurance (full cost covered by Novartis); 5-week holiday per year; (1 week above the Labour Law requirement) ; 4 paid sick days within one calendar year in case of absence due to sickness without a medical sickness report; Cafeteria employee benefit program – choice of benefits from Benefit Plus Cafeteria in the amount of 12,500 CZK per year; Meal vouchers in amount of 90 CZK for each working day (full tax covered by company); car allowance; MultiSport Card. Find out more about Novartis Business Services: https://www.novartis.cz/
Why consider Novartis?
Our purpose is to reimagine medicine to improve and extend people’s lives and our vision is to become the most valued and trusted medicines company in the world. How can we achieve this? With our people. It is our associates that drive us each day to reach our ambitions. Be a part of this mission and join us! Learn more here:
https://www.novartis.com/about/strategy/people-and-cultureImagine what you could do here at Novartis!
Imagine what you could do here at Novartis!
Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to learn more about Novartis and our career opportunities, join the Novartis Network here: https://talentnetwork.novartis.com/network
Accessibility and accommodation:
Novartis is committed to working with and providing reasonable accommodation to all individuals. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the recruitment process, or in order to receive more detailed information about the essential functions of a position, please send an e-mail to and let us know the nature of your request and your contact information. Please include the job requisition number in your message.
• Master’s / MBA degree in science, technology, or business (or comparable education)
• 10+ years professional experience in Information Security, IT Audit and/or IT Compliance; experience in Consulting / Big4 is a plus.
• Leadership and/or management experience acquired with global cross-cultural teams.
• Experienced with policies and/or controls and related standards and frameworks; Professional certifications like CISA, CISSP, CISM are a plus.
• Collaboration: Strong ability to handle competing priorities, and seeking consensus when parties have different/contradicting opinions. Is perceived as a team player.
• Communication: Excellent written and verbal communication skills; interpersonal skills and ability to professionally handle sensitive matters with high integrity.
Novartis is unable to offer relocation support for this role: please only apply if this location is accessible to you.
You’ll receive:
Monthly pension contribution matching your individual contribution up to 3% of your gross monthly base salary; Risk Life Insurance (full cost covered by Novartis); 5-week holiday per year; (1 week above the Labour Law requirement) ; 4 paid sick days within one calendar year in case of absence due to sickness without a medical sickness report; Cafeteria employee benefit program – choice of benefits from Benefit Plus Cafeteria in the amount of 12,500 CZK per year; Meal vouchers in amount of 90 CZK for each working day (full tax covered by company); car allowance; MultiSport Card. Find out more about Novartis Business Services: https://www.novartis.cz/
Why consider Novartis?
Our purpose is to reimagine medicine to improve and extend people’s lives and our vision is to become the most valued and trusted medicines company in the world. How can we achieve this? With our people. It is our associates that drive us each day to reach our ambitions. Be a part of this mission and join us! Learn more here:
https://www.novartis.com/about/strategy/people-and-cultureImagine what you could do here at Novartis!
Imagine what you could do here at Novartis!
Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to learn more about Novartis and our career opportunities, join the Novartis Network here: https://talentnetwork.novartis.com/network
Accessibility and accommodation:
Novartis is committed to working with and providing reasonable accommodation to all individuals. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the recruitment process, or in order to receive more detailed information about the essential functions of a position, please send an e-mail to
Why Novartis: Helping people with disease and their families takes more than innovative science. It takes a community of smart, passionate people like you. Collaborating, supporting and inspiring each other. Combining to achieve breakthroughs that change patients’ lives. Ready to create a brighter future together? https://www.novartis.com/about/strategy/people-and-culture
Join our Novartis Network: Not the right Novartis role for you? Sign up to our talent community to stay connected and learn about suitable career opportunities as soon as they come up: https://talentnetwork.novartis.com/network
Operations
DATA, DIGITAL & IT
Czech Republic
Prague
NOV CZE
India
Full Time
Regular
No
