Does it excite you to advise the business on information security and risk? do you have experience with implementing and ISMS, building a Third Party Risk Management Program and driving stakeholder alignment? If this sounds like you, and you are ready to take on a broad area of responsibilities, then you could be our new colleague.
Your new position
As our Senior Governance Risk & Compliance Specialist you will help embed information security in the business by implementing and operating an Information Security Management System (ISMS) and translating requirements into practical ways of working, while coordinating existing processes. The role stands out by combining governance and risk work with strong stakeholder management, advisory at multiple organizational levels, and clear communication and presentation. You will help define and build the organisation’s approach to Third Party Risk Management, drive NIS2 compliance, and formalize the policies and processes that make security real in everyday ways of working – leveraging OneTrust as the platform for information risk management.
We Offer Exciting Responsibilities
- Coordinate, implement and continuously improve the ISMS across the organization, including governance processes, controls, documentation, and evidence collection – ensuring compliance with NIS2 & FDA's 21 CFR Part 11
- Act as a trusted advisor to stakeholders by translating security risk into business impact, options and clear recommendations
- Develop and maintain information security policies, standards and guidance, ensuring they are understood, adopted, and fit for purpose in daily operations
- Define and build the organisation’s approach to Third Party Risk Management – designing a structured process for vendor and partner security assessments, risk scoring, and contractual security requirements, with particular attention to NIS2 supply chain obligations
- Drive NIS2 compliance – mapping obligations to controls, coordinating evidence collection, supporting incident reporting requirements, and preparing governance reporting for management and the Board
- Support disaster recovery, business continuity and crisis management – contributing to planning, maintaining documentation, and preparing and facilitating exercises to test organisational readiness
- Build security awareness and learning through targeted communication, stakeholder engagement, and presentations tailored to different audiences and levels
Your profile
As a person you are structured, proactive and collaborative, and enjoys working with many stakeholders with different priorities. You communicate clearly both when you facilitate, prepare a presentation or a policy, and you are comfortable facilitating workshops and presenting to both operational teams and executive audiences. Curiosity and a continuous-improvement mindset are important, as the role requires building practical security ways of working together with the business.
You have several years’ experience working with information security and the life science industry.
- Proven experience implementing and operating an ISMS and working with recognized frameworks (e.g., ISO 27001/27002, NIST CSF, CIS Controls)
- Strong stakeholder management skills, including advisory communication at different levels and the ability to drive alignment and decisions
- Experience performing and documenting risk assessments and tracking mitigations in a structured way (risk register and follow-up) preferably in Onetrust
- Experience with, or strong interest in building, Third Party Risk Management practices – including vendor security questionnaires, risk scoring and supplier-facing contractual requirements
- Foundational technical understanding (identity, endpoints, cloud and networking concepts)
- Comfortable leveraging AI tools and services to enhance personal productivity – and a genuine interest in understanding their information security implications
Your new team
You will be part of the Digital, Data & Technology organization within the Cyber Security team, working cross-functionally to implement information security in the business. The role collaborates closely with key stakeholders in Legal, QA, R&D, Procurement and executive management to ensure security requirements are understood, decisions are well informed, and controls are embedded in ways of working. You will report to the Head of Cyber Security.
Let's bond and be bold
We have a unique culture, characterized by excellent teamwork and strong engagement across the organization. And we want you to help us strengthen this culture. Making bonds is at the core of everything we do. From discovering and developing the best new peptide drugs for patients, to engaging with our partners or connecting with each other. We bond through curiosity and playfulness as a team, allowing ourselves to challenge common thinking and drive future innovation. Join us and let's bond and be bold.
nterested in bonding with us?
Then please apply no later than 14 May, or as soon as possible. The applications will be reviewed as they come in. While a cover letter is not required, please include a few sentences in your CV explaining your motivation for applying.
We are committed to an inclusive recruitment process and welcome applications from all job applicants.
About Zealand Pharma A/S
Zealand Pharma A/S (Nasdaq: ZEAL) is a biotechnology company focused on advancing medicines for obesity and metabolic health. Combining more than 25 years of peptide R&D expertise with a proprietary data platform that leverages advanced data‑driven and AI/ML approaches, Zealand Pharma aims to lead a new era in obesity and metabolic health. To date, more than ten Zealand Pharma‑invented drug candidates have entered clinical development, of which two products have reached the market and three candidates are in late-stage development. The Company has collaborations with global pharmaceutical and biotechnology partners for research, development, and commercialization. Founded in 1998, Zealand Pharma is headquartered in Copenhagen, Denmark, with a U.S. presence in Boston, Massachusetts. Learn more at www.zealandpharma.com.
