Alert: We are aware of a fraudulent email approach to some clients to change our bank details. Please note our bank details remain unchanged. If you’ve received any suspicious communication, please contact us directly.

Tech-Profis findenLebenslauf hochladenKontakt iconKontakt
SubBanner banner image

Governance, Risk & Compliance Specialist

Basel Land , Switzerland

Apply by 17 May 2026

750.0 - Per Hour

Job Ref.: 56506

Jetzt bewerben
Job Teilen
Consultant
Nadine Zinovyeva image
Nadine Zinovyeva
Senior Managing Consultant

Stellenbeschreibung

Governance, Risk & Compliance Specialist

Support global IT and compliance objectives by managing cybersecurity governance, risk, and compliance processes. This position ensures adherence to regulatory requirements (such as GxP, GDPR, ISO 27001, and NIST) and oversees exceptions management and workflow automation to maintain a secure and compliant IT environment.

Responsibilities:
  • Governance & Policy Management:
  • Maintain and update cybersecurity policies, standards, and procedures aligned with ISO 27001, NIST, and GxP requirements.
  • Ensure IT governance processes support business and regulatory objectives.
  • Risk & Compliance:
  • Conduct IT risk assessments and maintain risk registers.
  • Monitor compliance with data protection laws and internal security policies.
  • Prepare for and support internal/external audits (regulatory and customer).
  • Exceptions Management:
  • Manage policy exceptions lifecycle: request, approval, tracking, and expiration.
  • Assess risk impact of exceptions and ensure mitigation plans are in place.
  • Workflow & Automation:
  • Design and optimize workflows for compliance tasks (risk assessments, audits, incident handling).
  • Implement automation in GRC tools (e.g., ServiceNow, Archer) for exception handling and reporting.
  • Metrics & Reporting:
  • Track and report Key Risk Indicators (KRIs) and compliance metrics.
  • Provide dashboards and reports to management for decision-making. Qualifications:
    • Bachelor’s degree in Information Security, IT, or related field.
    • 2–4 years of experience in GRC or cybersecurity compliance, preferably in pharmaceutical industry
    • Knowledge of frameworks: ISO 27001, NIST CSF, GDPR, GxP.
    • Familiarity with GRC platforms (ServiceNow, Archer) and workflow automation.
    • Certifications (preferred): CISM, CISA, CISSP, ISO 27001 Implementer.
    • Microsoft Certified: Azure Security
    • Strong analytical, communication, and stakeholder management skills.

    Sounds interesting? Please apply by submitting your CV and relevant documents.
      #LI-NZ1
    • JETZT BEWERBEN

    Aktuelle Jobs.

    Application Engineer
    Zürich, Switzerland

    Applikationsentwickler:in Senior Startdatum: ASAP Vertragsdauer: 12 Monate Einsatzort: ZürichVerantwortlichkeitenWeiterentwicklung und Betrieb der Applikationen ModBib und Front ArenaEntwicklung von

    SOC Analyst
    Basel-Stadt, Switzerland

    We’re currently looking for a Cyber Security Operations Specialist (SOC ANALYST) to join the Corporate Security / Security Operations team. This role is heavily focused on incident management and inve

    Lead AI Solutions Architect
    Remote work, England

    Lead AI Solution Architect Location: Remote within the UK Contract Type: Permanent Role Overview We are seeking a Lead AI Solution Architect to act as the primary AI authority within our business doma