$ads={1}
2023 will see Sandoz become a standalone organization! As a global market leader in Generics and Biosimilar medicine, Sandoz is stepping forward from a position of strength! Those joining Sandoz in the coming months will help shape the future of the company, its growth, innovation, culture and how Sandoz impacts the lives of millions. These will be careers with genuine impact! This is one such role!Are you ready to make a difference?
Job Summary/Purpose :
As part of the Security Architecture & Advisory team, the Lead Application Security will play a critical role in ensuring the security and resilience of Sandoz's applications. You will be responsible for designing, implementing, and maintaining robust security measures throughout the application development lifecycle. Your expertise in application security will help us protect sensitive data, identify vulnerabilities, and mitigate security risks.
If you are a passionate and experienced Application Security Architect / Specialist, dedicated to ensuring security of applications, we encourage you to apply. Join our team and contribute to the secure and resilient operation of our organization's applications.
Your Key Responsibilities
Your responsibilities include, but not limited to:
- Work with various stakeholders across the organization to ensure security of applications throughout their lifecycle considering industry best practices, regulatory requirements, and organizational needs
- Steer external partner on conducting comprehensive security assessments of applications, identifying vulnerabilities and recommending appropriate remediation strategies
- Collaborate with development teams to integrate security controls and measures into the application development process effectively
- Define and enforce application security policies, standards, and procedures, ensuring compliance with internal and external security requirements
- Stay up to date with emerging security threats, vulnerabilities, and industry trends related to application security and assess their potential impact on Sandoz
- Provide guidance and support to development teams on secure coding practices, secure configuration management, and vulnerability remediation
- Act as a subject matter expert and provide guidance on application security to stakeholders, management, and executives
- Stay abreast of industry standards and frameworks such as OWASP, SANS, and NIST, and incorporate relevant practices into the application security program
- Develop and maintain strong relationships with key vendors and strategic external partners
Commitment to Diversity & Inclusion:
We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.
Minimum requirements
What you’ll bring to the role:
Preferred Requirements:
Knowledge and experience of industry standards such as ISO 27001, CIS Controls, NIST, Cyber Essentials is a plus
Certification or accreditation in Information Security (CSSLP, CISM, CISA, CISSP, etc.,) and/or relevant vendor specific certifications is a plus
Why Sandoz?
500 million patients were touched by Sandoz generic and biosimilar medicines in 2021 and while we’re proud of this, we know there is more we could do to continue to help pioneer access to medicines for people around the world.
How will we do this? We believe new insights, perspectives and ground-breaking solutions can be found at the intersection of medical science and digital innovation. That a diverse, equitable and inclusive environment inspires new ways of working.
We believe our potential can thrive and grow in an unbossed culture underpinned by integrity, curiosity and flexibility. And we can reinvent what's possible, when we collaborate with courage to aggressively and ambitiously tackle the world’s toughest medical challenges. Because the greatest risk in life, is the risk of never trying!
Imagine what you could achieve here at Sandoz!
Join our Sandoz Network :
If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Sandoz and our career opportunities, join the Network here: https://talentnetwork.novartis.com/sandoztalentpool
- University degree or equivalent experience in computer science, engineering, information technology or other relevant field(s)
- Fluent in written and spoken English
- Proven experience working as an Application Security Architect or in a similar role, with a focus on securing applications
- Strong knowledge of application security principles, including secure coding practices, input validation, authentication, access controls, and encryption
- Experience with application security standards and frameworks, such as OWASP Top Ten, SANS CWE Top 25, and secure software development lifecycle (SDLC) methodologies
- Hands-on experience with security testing techniques, including manual code review, vulnerability scanning, and penetration testing
- Experience working in a global company and designing / deploying solutions at scale
- Excellent negotiation, communication, and interpersonal skills ability to develop influential relationships with different stakeholders across all levels
Preferred Requirements:
Knowledge and experience of industry standards such as ISO 27001, CIS Controls, NIST, Cyber Essentials is a plus
Certification or accreditation in Information Security (CSSLP, CISM, CISA, CISSP, etc.,) and/or relevant vendor specific certifications is a plus
Why Sandoz?
500 million patients were touched by Sandoz generic and biosimilar medicines in 2021 and while we’re proud of this, we know there is more we could do to continue to help pioneer access to medicines for people around the world.
How will we do this? We believe new insights, perspectives and ground-breaking solutions can be found at the intersection of medical science and digital innovation. That a diverse, equitable and inclusive environment inspires new ways of working.
We believe our potential can thrive and grow in an unbossed culture underpinned by integrity, curiosity and flexibility. And we can reinvent what's possible, when we collaborate with courage to aggressively and ambitiously tackle the world’s toughest medical challenges. Because the greatest risk in life, is the risk of never trying!
Imagine what you could achieve here at Sandoz!
Join our Sandoz Network :
If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Sandoz and our career opportunities, join the Network here: https://talentnetwork.novartis.com/sandoztalentpool
Division
SANDOZ
Business Unit
Technology SZ
Country
Czech Republic
Work Location
Prague
Company/Legal Entity
SDZ CZE
Functional Area
Technology Transformation
Job Type
Full Time
Employment Type
Regular
Shift Work
No
Early Talent
No
$ads={2}
