Alert: We are aware of a fraudulent email approach to some clients to change our bank details. Please note our bank details remain unchanged. If you’ve received any suspicious communication, please contact us directly.

Tech-Profis findenLebenslauf hochladenKontakt iconKontakt
SubBanner banner image

Governance, Risk & Compliance Specialist

Switzerland

Apply by 24 Apr 2026

750.0 - Per Hour

Job Ref.: 56506

Jetzt bewerben
Job Teilen
Consultant
Nadine Zinovyeva image
Nadine Zinovyeva
Senior Managing Consultant

Stellenbeschreibung

Governance, Risk & Compliance Specialist

Support global IT and compliance objectives by managing cybersecurity governance, risk, and compliance processes. This position ensures adherence to regulatory requirements (such as GxP, GDPR, ISO 27001, and NIST) and oversees exceptions management and workflow automation to maintain a secure and compliant IT environment.

Responsibilities:
  • Governance & Policy Management:
  • Maintain and update cybersecurity policies, standards, and procedures aligned with ISO 27001, NIST, and GxP requirements.
  • Ensure IT governance processes support business and regulatory objectives.
  • Risk & Compliance:
  • Conduct IT risk assessments and maintain risk registers.
  • Monitor compliance with data protection laws and internal security policies.
  • Prepare for and support internal/external audits (regulatory and customer).
  • Exceptions Management:
  • Manage policy exceptions lifecycle: request, approval, tracking, and expiration.
  • Assess risk impact of exceptions and ensure mitigation plans are in place.
  • Workflow & Automation:
  • Design and optimize workflows for compliance tasks (risk assessments, audits, incident handling).
  • Implement automation in GRC tools (e.g., ServiceNow, Archer) for exception handling and reporting.
  • Metrics & Reporting:
  • Track and report Key Risk Indicators (KRIs) and compliance metrics.
  • Provide dashboards and reports to management for decision-making. Qualifications:
    • Bachelor’s degree in Information Security, IT, or related field.
    • 2–4 years of experience in GRC or cybersecurity compliance, preferably in pharmaceutical industry
    • Knowledge of frameworks: ISO 27001, NIST CSF, GDPR, GxP.
    • Familiarity with GRC platforms (ServiceNow, Archer) and workflow automation.
    • Certifications (preferred): CISM, CISA, CISSP, ISO 27001 Implementer.
    • Microsoft Certified: Azure Security
    • Strong analytical, communication, and stakeholder management skills.

    Sounds interesting? Please apply by submitting your CV and relevant documents.
      #LI-NZ1
    • JETZT BEWERBEN

    Aktuelle Jobs.

    Business Analyst
    Switzerland

    Business Analyst:in Startdatum: 01.03.2026 Vertragsdauer: 12 Monate Einsatzort: Zürich Ihre Hauptverantwortlichkeiten Analyse, Spezifikation und Priorisierung von Anforderungen in enger Zusammenar

    IT Business Analyst
    Switzerland

    IT Business Analyst Project Duration: 6 months Location: Zürich Main Responsibilities Support regulatory and finance reporting initiatives, including upgrades, migrations, and improvements to repor