Does it excite you to advise the business on information security and risk, and do you have experience with implementing an ISMS and driving stakeholder alignment across Legal, QA, People & Culture, R&D, Procurement and executive management? If this sounds like you, and you are ready to take on a broad area of responsibilities, then you could be our new colleague.
Your new position
As our Information Security Advisor, you will help embed information security in the business by implementing and operating an Information Security Management System (ISMS) and translating requirements into practical ways of working, while coordinating existing processes.
The role combines governance and risk work with strong stakeholder management, advisory at multiple organizational levels, and clear communication and presentation.
You will support Legal with stronger data governance and protection by scaling data classification/labelling and further utilizing/implementing DLP capabilities (e.g., Microsoft Purview).
We Offer Exciting Responsibilities
- Coordinate, implement and continuously improve the ISMS across the organization, including governance processes, controls, documentation, and evidence collection – ensuring compliance with NIS2 & FDA’s 21 CFR Part 11
- Act as a trusted advisor to stakeholders across Legal, QA, People & Culture, R&D, Procurement and executive management by translating security risk into business impact, options and clear recommendations
- Develop and maintain information security policies, standards and guidance, ensuring they are understood, adopted, and fit for purpose in daily operations
- Facilitate risk assessments and control reviews for new initiatives, vendors/partners and technology changes, ensuring security is enabled pragmatically
- Lead and mature data governance and protection efforts, including data mapping and data classification/labelling, and scaling DLP/information protection (e.g., Microsoft Purview) from limited use to broader adoption
- Build security awareness and learning through targeted communication, stakeholder engagement, and presentations tailored to different audiences and levels
Your profile
The ideal candidate is structured, proactive and collaborative, and enjoys working across stakeholders with different priorities. The candidate communicates clearly, influences without authority, and is comfortable facilitating workshops and presenting to both operational teams and executive audiences. Curiosity and a continuous-improvement mindset are important, as the role requires building practical security ways of working together with the business. The candidate has several years’ experience working with information security in the life science industry.
- Proven experience implementing and operating an ISMS and working with recognized frameworks (e.g., ISO 27001/27002, NIST CSF, CIS Controls)
- Strong stakeholder management skills, including advisory communication at different levels and the ability to drive alignment and decisions
- Strong written communication skills (policies/standards/guidance) and strong presentation/facilitation skills (workshops, briefings, decision material), with the ability to translate requirements into practical tools and ways of working
- Experience performing and documenting risk assessments and tracking mitigations in a structured way (risk register and follow-up), preferably in OneTrust
- Experience with, or strong interest in building, data governance practices including data classification/labelling and DLP/information protection solutions (e.g., Microsoft Purview)
- Foundational technical understanding (identity, endpoints, cloud and networking concepts) to collaborate effectively with IT and security specialists
Your new team
You will be part of the IT organization within the Cyber Security team, working cross-functionally to implement information security in the business. In a biotech company discovering, designing and developing innovative peptide-based medicines, the role collaborates closely with key stakeholders in Legal, QA, R&D, Procurement and executive management to ensure security requirements are understood, decisions are well informed, and controls are embedded in ways of working. You will report to the Director, Cybersecurity.
Let's bond and be bold
We have a unique culture, characterized by excellent teamwork and strong engagement across the organization. And we want you to help us strengthen this culture.
Making bonds is at the core of everything we do. From discovering and developing the best new peptide drugs for patients, to engaging with our partners or connecting with each other. We bond through curiosity and playfulness as a team, allowing ourselves to challenge common thinking and drive future innovation. Join us and let's bond and be bold.
Interested in bonding with us? Then please apply no later than
February 8, 2026, or as soon as possible. The applications will be reviewed as they come in. While a cover letter is not required, please include a few sentences in your CV explaining your motivation for applying.
We are committed to an inclusive recruitment process and welcome applications from all job applicants.
About Zealand Pharma A/S
Zealand Pharma A/S (Nasdaq: ZEAL) is a biotechnology company focused on the discovery and development of peptide-based medicines. More than 10 drug candidates invented by Zealand Pharma have advanced into clinical development, of which two have reached the market and three candidates are in late-stage development. The company has development partnerships with a number of pharma companies as well as commercial partnerships for its marketed products. Zealand Pharma was founded in 1998 and is headquartered in Copenhagen, Denmark, with a team in the U.S. For more information about Zealand Pharma's business and activities, please visit www.zealandpharma.com.
