About us
At SARIA Food & Pharma, our activities are characterized by connected value chains, decades of shared market expertise and a unifying spirit of innovation to continuously develop our people and our products.
Van Hessen, Devro and Bioiberica use animal raw materials to create their wide range of products, which are ubiquitous and universal, but anything but ordinary. With a complementary portfolio of casings for the sausage industry that includes natural and collagen-based casings, Devro and Van Hessen are leading product experts in their industry. The global life science company Bioiberica produces active ingredients for humans, animals and plants, from starting material it receives from Van Hessen.
We create the added layer of value with our products and services, improve the well-being of all by taking life science further and combine our attention to detail with the extraordinary, because it all matters.
The opportunity
Reporting to the Information Security Officer you will contribute to the efficiency, capability and profitability of the business by gathering, analysing and recommending changes to processes / systems within BUs, across multiple departments and the division as a whole.
Responsibilities
* Contributing to the development, implementation and maintenance of internal governance frameworks, including policies, standards and procedures
* Maintaining compliance with relevant laws, regulations and industry standards (e.g. GDPR), through collaboration with risk owners in Legal, HR and other relevant departments
* Monitoring and reporting on the ongoing performance and effectiveness of the divisional ISMS, including the development and tracking of appropriate KPIs
* Coordinating the response to internal and external audit activities, including the collection and cataloguing of required evidence to the necessary standard
* Collaborating with Internal Audit team on the development, implementation and operation of ITGCs
* Supporting the implementation of ISO27001 controls and perform regular control audits to monitor compliance
* Developing and managing a security risk framework, aligning with the enterprise risk management approach
* Coordinating the performance of regular business impact assessments (BIAs) and the recording of results and updates
* Contributing to the design and implementation of information security process and control improvements
* Mentoring other members of the Information security team and promote risk management best practices across IT
* Supporting the development and delivery of compliance training and awareness, fostering a culture of risk awareness and accountability across the organisation
* Providing advice to stakeholders on IT risk and compliance topics
About you
Minimum of 5 years’ experience in a similar role.
* A degree in computer science or a related technology-based subject, or industry-recognized certifications such as CISM, CRISC are preferred
* Knowledge and experience with risk management frameworks, risk assessment methodologies and cybersecurity frameworks, such as ISO27001 and NIS2
* Experience of conducting risk assessments and conducting security control audits and developing effective mitigation plans
* Demonstrable experience of developing long-term partnerships with stakeholders and excellent communication skills
* Proven ability to work creatively and effectively in a complex organisational environment
* Strong organisational skills to manage multiple tasks and stakeholders effectively
* Experience in the development and maintenance of information security policies, standards and processes
* Excellent verbal and written communication skills
If you have the skillset we are looking for, and are interested in working within an organisation growing at pace globally, then we would love to hear from you. Please apply with a cv and our TA team will be in touch.