Systems Engineer I/II - Security

About the Department
At Novo Nordisk, we are helping to improve the quality of life for millions of people worldwide. For more than 100 years, we have led the way in diabetes care. Being part of Novo Nordisk allows our employees to embark on life-changing careers, and the opportunity to help improve the quality of life for millions of people around the world.
In NC, we operate three pharmaceutical manufacturing facilities that are responsible for fulfilling different steps in our injectable and oral treatment supply chains. Our newer Active Pharmaceutical Ingredients (API) facility in Clayton, NC sits on 825,000 square-feet of state-of-the-art equipment, and houses the Fermentation, Recovery and Purification in the production of ingredients for Novo Nordisk's innovative oral products. At API, you'll join a global network of manufacturing professionals who are passionate about what they do.
What we offer you:

• Leading pay and annual performance bonus for all positions
• All employees enjoy generous paid time off including 14 paid holidays
• Health Insurance, Dental Insurance, Vision Insurance - effective day one
• Guaranteed 8% 401K contribution plus individual company match option
• Family Focused Benefits including 12 weeks paid parental & 6 weeks paid family medical leave
• Free access to Novo Nordisk-marketed pharmaceutical products
• Tuition Assistance
• Life & Disability Insurance
• Employee Referral Awards

At Novo Nordisk, you will find opportunities, resources, and mentorship to help grow and build your career. Are you ready to realize your potential? Join Team Novo Nordisk and help us make what matters.
The Position
Responsible for the security of all IT Infrastructure and IT Systems at DAPI-US.
Relationships
Manager, IT Systems.
Essential Functions

• Monitoring systems security and responding to security incidents
• Implementation and Monitoring of Physical IT Security
• Enforce and maintain IT Security policies and procedures
• Perform Security Vulnerability scans and assist System Managers with recommended remediation
• Collaborate with System Managers on IT Security recommendations for new systems or updates to existing systems to ensure the right IT Security controls are in place
• Perform security audits, risk assessments, and analysis
• Identify breaches of data security and remediation of security weaknesses
• Implement network security policies and procedures
• Ensure confidentiality of sensitive data
• Implement new security controls as recommended by global security
• Manage small-scale IT security projects and support other business unit projects
• Provide ad-hoc production support and after-hours support to the site
• Serve as Site IT Security Responsible during corporate and external agency audits
• Perform potential vendor security audits for selection process
• Monitoring for and participating in investigations and responses to security incidents
• Collaborate with Global IT Security groups
• Follow all safety and environmental requirements in the performance of duties
• Other accountabilities as assigned

Physical Requirements
Ability to work in an open office environment with the possibility of frequent distraction. Ability to travel up to 10% of the time. (% can change on a case-by-case basis based on the role.)
Qualifications

• Bachelor's Degree in related field with minimum 3 yr. related experience or 7 years direct experience required
• Experience with computer and network security, including firewall administration, network segmentation, encryption technologies and network protocols preferred
• Experience with developing, enforcing, and maintaining data systems security policies and procedures preferred
• Experience leading security efforts in environments with more than 300 servers and 2000 workstations preferred
• Experience designing Physical Security controls for IT Assets preferred
• Certification in an IT Security discipline (e.g. Certified Information Systems Security Professional CISSP, CompTIA Security+) preferred
• General knowledge of Microsoft OS, Linux OS, and Cisco networking principles and concepts with a focus on IT Security preferred
• Strong technical background in IT systems and network security preferred
• Regulatory and Industry Security Trends and developments preferred
• Experience with Security Monitoring Tools and IT Security Controls preferred
• Experience with SIEM system implementation and development of processes/procedures preferred
• Experience with network monitoring and packet analysis tools preferred
• System Patch Deployment Technologies preferred
• Identity Management (Account Integration/Implementation Technologies) preferred
• Performing security audits, risk assessments, and analysis preferred
• Making recommendations for enhancing data system security preferred
• Monitoring system security and responding to security incidents preferred
• Leading testing of security system controls preferred
• Ensuring proper security controls are in place for data integrity and confidentiality of sensitive data preferred
• Perform project implementation tasks, including feedback and approval of IT Security assessments and IT Security Plans in accordance with established procedures preferred
• Develop and maintain Security documentation in accordance with federal and corporate requirements preferred
• Experience with Systematic Problem Solving (Ability to troubleshoot, resolve, and document IT infrastructure and Application incidents) preferred
• Operate under FDA regulations and guidelines as they relate to computer-based information and automation systems preferred
• Participate in Corporate IT Security guidance groups preferred
• Perform other duties as assigned preferred
• Strategic IT Planning, IT Project Management, IT Systems Analysis (Requirement gathering, Cost/Benefit Proposal Generation), Software Life Cycle Methodologies, Software Quality Assurance, System Specification Development, Analytical Problem Solving (SPC, TQM), Critical FDA Computer System Requirements (21CFRPart 11), Computer System Management, Configuration Management and Control, Information System Security Principles a plus

We commit to an inclusive recruitment process and equality of opportunity for all our job applicants.
At Novo Nordisk we recognize that it is no longer good enough to aspire to be the best company in the world. We need to aspire to be the best company for the world and we know that this is only possible with talented employees with diverse perspectives, backgrounds and cultures. We are therefore committed to creating an inclusive culture that celebrates the diversity of our employees, the patients we serve and communities we operate in. Together, we're life changing.
Novo Nordisk is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, gender identity, sexual orientation, national origin, disability, protected veteran status or any other characteristic protected by local, state or federal laws, rules or regulations.
If you are interested in applying to Novo Nordisk and need special assistance or an accommodation to apply, please call us at 1-855-411-5290. This contact is for accommodation requests only and cannot be used to inquire about the status of applications.