Lead Infrastructure Security

Job Description Summary

As part of the Security Architecture team, the Lead Infrastructure Security Architect will define and keep enhancing security architecture strategy and standards for IT infrastructure and govern their proper implementation in order to provide comprehensive end-to-end security for Sandoz.

Job Description

Lead Infrastructure Security

Sandoz continues to go through an exciting and transformative period as a global leader and pioneering provider of sustainable Biosimilar and Generic medicines. As we continue down this new and ambitious path, unique opportunities will present themselves, both professionally and personally. Join us, the future is ours to shape!

Job Summary

As part of the Security Architecture team, the Lead Infrastructure Security Architect will define and keep enhancing security architecture strategy and standards for IT infrastructure and govern their proper implementation in order to provide comprehensive end-to-end security for Sandoz.

Your responsibilities include, but are not limited to:

• Infrastructure and Cloud Architecture Blueprints alignments with Sandoz security standard
• Periodic review of Architecture Blueprints
• Provide technology infrastructure subject matter expertise support/advisory during continuous improvement of Sandoz security framework, security policies, guidelines, controls, processes, and procedures
• Provide security support/advisory during selection processes (RFI, RFQ, RFP and POC) in context of infrastructure components and solutions (compute, virtualization, storage, database, backup, platforms etc.)
• Provide security support/advisory to development of the strategy, future state architecture and roadmap
• Align Architecture Patterns with Sandoz security framework and industry security standards to addressed security aspects adequately
• Provide security support/advisory to asset owners during design of Sandoz Standards Security Configuration
• Defines security compensating controls for identified security gaps or security risk as they pertain to IT Security Management

Minimum Requirements

What you’ll bring to the role:

• At least 5 years of experience in IT infrastructure security
• Experience designing data center and cloud (preferably MS Azure and/or AWS) secured services
• Experience working in a global company and designing / deploying solutions at scale
• Excellent negotiation, communication, and interpersonal skills ability to develop influential relationships with different stakeholders across all levels
• Knowledge and experience of industry standards such as ISO 27001, CIS Controls, NIST, Cyber Essentials is a plus

Preferred Requirements:

• Master of Science degree or equivalent experience in computer science, engineering or information technology or other relevant field
• Certification or accreditation in Information Security Architecture (CISSP, CISM and/or relevant vendor specific certifications is a plus)

Why Sandoz?

Generic and Biosimilar medicines are the backbone of the global medicines industry. Sandoz, a leader in this sector, provided more than 900 million patient treatments across 100+ countries in 2024 and while we are proud of this achievement, we have an ambition to do more!

With investments in new development capabilities, production sites, new acquisitions, and partnerships, we have the opportunity to shape the future of Sandoz and help more patients gain access to low-cost, high-quality medicines, sustainably.

Our momentum is powered by an open, collaborative culture driven by our talented and ambitious colleagues, who, in return for applying their skills experience an agile and collegiate environment with impactful, flexible-hybrid careers, where diversity is welcomed and where personal growth is supported!

Join us!

#Sandoz

Skills Desired

Escalation, Information Security Audit, Information Security Risk Management, Quality Management, Root Cause Analysis (RCA), Sec Ops (Security Operations), Vendor Management