359276BR
Dec 08, 2022
Czech Republic

Job Description

The Novartis Institutes for BioMedical Research (NIBR) is the innovation engine of Novartis. NIBR collaborates across scientific and organizational boundaries, with a focus on powerful new technologies that have the potential to help produce therapeutic breakthroughs for patients. As a Security Solutions Architect (SSA), you will support these critical initiatives by providing go-to expertise in the domain of end-to-end security architecture.

The SSA will work with the NIBR technology and science teams to ensure solutions are security designed, following approved security patterns and providing ongoing security consulting and expertise to support the following activities:

a) Review security architecture for common platforms like Salesforce, Veeva, and other major commercial and marketing technologies.

b) Review security architecture of operational changes, enhancements, and other releases related to production systems

c) Support and provide recommendations to leadership for remediating security gaps

As part of daily activities, the SSA will ensure secure-by-design principles are followed for applications and technical solutions that NIBR developes, provide consultation, solution architecture recommendations and work closely with domain architects to use Novartis’ global enterprise platforms or assist in the development of innovative new digital solutions.

The successful candidate will be solid communicator with deep technical and security skills, especially pertaining to CRM and commercial cloud platforms. The individual must be highly collaborative as they will need to work closely with application managers, platform engineers, 3rd party vendors, software developers and architects.

Diversity & Inclusion / EEO

Novartis is committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.

Minimum Requirements

Your responsibilities include, but are not limited to:

- Providing in depth expertise about security principles and ensuring controls are included as technical requirements

- Advising peer architects and technologists on approved security patterns and practices

- Reviewing and challenging defined IT security related internal standards for the ongoing improvement of Novartis policies and procedures

- Acting as a single point of contact, collaborating closely with other Security Architects and IT Architects on IT security related matters

- Promoting our IT Security culture within the business and application management team and building an external network regarding IT security relevant to the business function

- Defining pragmatic solutions and recommending alternatives that meet or exceed security requirements

- Performing risk/threat assessments of all IT project related to the function and reporting on the security status of projects

- Managing a pool of external security and solution architects assigned to our portfolio

- Managing prioritization of security assessment for the function, working with our application security risk assessment pool for low impact projects

What You'll Need:

- Degree in a business/technical/scientific area or comparable qualifications/experience

- 5 years of Information Security management or IT security expertise

- Expert knowledge of enterprise IT infrastructure technology, systems, vulnerability management, and organisational change processes, especially in large scale implementations

- Demonstrated experience of effectively engaging with senior business leaders across a matrixed environment

- Familiarity with frameworks such as COSO, ISO 2700x, CobiT, NIST, SOX, GDPR

- Knowledge of OWASP, SDLC, encryption, identity and access management, data integrity and other related secure software design methodologies

- Proficiency in English (oral and written)


Nice to have:

- Professional information security certification, such as CISSP, CISM or ISO 27001 auditor / practitioner is preferred. Professional (information system) risk or audit certification such as CIA, CISA or CRISC is preferred

- CSSLP, GSSP, ECCSP, CASS

Why consider Novartis?

769 million. That’s how many lives our products touched in 2022. And while we’re proud of that fact, in this world of digital and technological transformation, we must also ask ourselves this: how can we continue to improve and extend even more people’s lives?

We believe the answers are found when curious, courageous and collaborative people like you are brought together in an inspiring environment. Where you’re given opportunities to explore the power of digital and data. Where you’re empowered to risk failure by taking smart risks, and where you’re surrounded by people who share your determination to tackle the world’s toughest medical challenges.

Imagine what you could do at Novartis!

Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to learn more about Novartis and our career opportunities, join the Novartis Network here: https://talentnetwork.novartis.com/network (https://talentnetwork.novartis.com/network)

We are Novartis. Join us and help reimagine medicine.


COMMITMENT TO DIVERSITY & INCLUSION:
Novartis embraces diversity, equal opportunity and inclusion. We are committed to building diverse teams, representative of the patients and communities we serve, and we strive to create an inclusive workplace that cultivates bold innovation through collaboration, and empowers our people to unleash their full potential.
CTS
TT CTS
Czech Republic
Prague
Full Time
Regular
No
careers default image
359276BR

Security Solutions Architect

Apply to Job Access Job Account