Danaher Corporation Information Security Risk & Governance Lead in Amersham, Bucks., United Kingdom
Find what drives you on a team with a more than 70-year history of discovery, determination, and innovation. As a global leader in high-tech filtration, separation, and purification, Pall Corporation thrives on helping our customers protect people. Our products serve a wide range of markets, so if your interests lie along the spectrum of Life Sciences to Industrial, you’ll find a rewarding role here. For the exponentially curious, Pall is a place you can thrive and amplify your impact on the world.
Pall is proud to work alongside a community of nine fellow Danaher Life Sciences companies. Together, we’re pioneering the future of science and medicine, developing products that enable researchers in the fight to save lives.
Due to growth within the team and strong investments in this business area, Pall are currently recruiting for an Information Security Risk & Governance Lead in our Portsmouth office. You will be working within a global team with colleagues in the UK, USA and APAC, we are looking for someone to be responsible for information security risk & governance, interacting across all business units and partners within Pall Corporation.
The role will ensure robust governance is in place to support decision making; supported by policies, processes, tools, analysis and specialist advice. You will ensure that risk management activities adequately address risks, and that they are understood and supported by the Pall leadership team and the security leadership group as required.
Develop and maintain not only a risk management framework, that defines how risks are identified, assessed and handled, along with supporting processes, tools, techniques and expertise. Also relevant policies and standards, in line with product, process or service improvements.
Identify and drive interventions to address business unit challenges and ensure continuous improvement and maturity development.
Develop and maintain a security awareness program, such that all associates can effectively participate across multiple communication channels.
Handle 3rd party risk, ensuring that they, along with their sub-contractors, are regularly assessed so that their ongoing security posture is appropriately led.
Coordinate projects with resources from the IT organisation and business unit teams.
Ensure that security programs are following relevant laws, regulations and policies to minimise or eliminate risk and audit findings.
Coordinate the use of external resources involved in the information security program, including, interviewing, negotiating contracts and fees, and handling external resources.
Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services, including privacy, risk management, compliance and business continuity management.
Support the ISO in discharging their security accountabilities across Pall Corporation, working across a range of information and cybersecurity related topics and providing support to the wider Danaher Organisation.
Provide information security guidance for IT projects, including the evaluation and recommendation of technical controls.
What we want from you -
5 + years demonstrated ability in a combination of risk management, information security and IT infrastructure roles
Experience in the development and implementation of appropriate risk mitigation plans, policies, processes and technical controls.
Experience working within a security function and looking for further experience in a place of work where information security is considered high in organisational priorities.
Significant hands-on experience with security tools and IT infrastructure strongly preferred
A broad security skillset, with confirmed leadership, able to assimilate and consider issues from the technical, contractual and business perspective, supported by a pragmatic attitude to the implementation of security in a sophisticated and global organisation.
A good understanding of the approaches required to identify, quantify and address information security vulnerabilities in an organisation.
Possess a sound knowledge of current security technologies.
Excellent written and verbal communication skills, interpersonal and collaborative skills, and happy to communicate security and risk-related concepts to technical and nontechnical audiences.
Poise and ability to act calmly and competently in high-pressure, high-stress situations.
Must be a critical problem solver.
Exhibit excellent analytic skills, happy to manage multiple projects under strict timelines, as well as capable to work well in a demanding, dynamic environment and meet overall objectives.
Project management skills: scheduling and resource management.
Ability to lead and empower technical teams to achieve tactical and strategic goals.
Knowledge of common information security management frameworks, such as ISO 27001 and NIST CSF.
High level of personal integrity, as well as the ability to expertly handle confidential matters, and show an appropriate level of judgement and maturity.
High degree of initiative, dependability and ability to work with little supervision.
Travel both domestic and international up to 25% (USA once a quarter, occasional European travel)
When you join us, you’ll also be joining Danaher’s global organization, where 69,000 people wake up every day determined to help our customers win. As an associate, you’ll try new things, work hard, and advance your skills with guidance from dedicated leaders, all with the support of powerful Danaher Business System tools and the stability of a tested organization.
Danaher is committed to a diverse and inclusive culture where everyone feels they belong and all voices are heard. We believe in our associates and the unique perspectives they bring to every challenge, which is why we’ll empower you to push the boundaries of what’s possible.
If you’ve ever wondered what’s within you, there’s no better time to find out.
Danaher Corporation and all Danaher Companies are equal opportunity employers that evaluate qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity, or other characteristics protected by law. The “EEO is the Law” poster is available here (http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .