Senior Information Security Risk Manager, Global IT

Senior Information Security Risk Manager in Global IT

Can you assist us defend our organization as we deliver on our purpose to restore brain health? Will you raise the bar on information security risk management and guide the strengthening of Lundbeck’s cyber resilience?

If so, you might be the perfect fit as our new Senior Information Security Risk Manager to join our global Information Security team in the heart of Valby, Denmark

Your new role
As our new Risk Manager, you will support the implementation of a comprehensive and effective cyber risk management framework and ensure close alignment with our corporate risk management and BIA processes.

Being part of our NIS2 compliance implementation within the risk management domain, you will ensure we maintain our license to operate, and you gain senior exposure by developing high quality analyses, communication material and decision-making presentations to risk governance fora and senior management.

Your main responsibilies will revolve around:

• ensuring that processes and methodologies are in place for the proper identification, measurement, monitoring, management, mitigation, and reporting of ICT and Security Risks
• facilitating risk & control assessments to help the 1st Line of Defense (LOD) properly document their risks, challenging the 1st LOD, and proactively conducting independent risk assurance activities
• overseeing initiatives related to your area of responsibility by participating in various development projects and providing constructive risk advice
• ensuring that appropriate mitigating actions are initiated to rectify any material gaps and shortcomings and conducting risk exceptions as needed
• participating in relevant forums to ensure formally documented dialogue and close interaction with the 1st LOD, facilitating a common understanding of key risk areas and necessary deliveries

You will also help strengthen our global business continuity practices, including planning and conducting tests and simulations to gauge our resilience.

You will learn about the entire organisation, by working with teams across Lundbeck business units to identify and manage cyber security risks across the value chain, and our team’s SecOps analysts will look to you to for support and guidance in threat hunting and -assessment.

Your future team
The role is within our Cyber Resilience & Compliance area, as part of the Information Security team that supports Lundbeck in managing cyber security risk across our global organisation. We take a nuanced approach to cyber resilience, and work as a team across both Governance, Risk & Compliance, Security Operations and the entire cyber kill-chain.

As an experienced information security professional, you are expected to independently plan and complete daily tasks, but we put great emphasis on team play.

You will join our Information Security team of 9 dedicated colleagues who are open, supportive, and driven by a shared passion for their work. We believe that cybersecurity is about more than just technology, it’s about people, and we are dedicated to fostering a strong security culture. We value creativity, curiosity, and collaboration, and we enjoy exchanging ideas, learning from each other, and celebrating our successes. You’ll be part of a diverse and welcoming environment where we value the social side of teamwork, whether its corporate events, informal meetups, team lunches or connecting over coffee.

The Information Security team is part of Global IT, which is about 120 colleagues in Denmark, the US and Poland. We deliver digital solutions and secure efficient operations to more than 5500 colleagues across all business areas and geographies.

We are geographically dispersed and enjoy the ability to work individually and remotely, however we appreciate and cultivate a highly collaborative environment.

The position is based in Valby, Denmark.

What you bring to the team
The ideal candidate for this role has a solid technical background as well as a business-oriented mindset, with a master’s degree in computer science, cyber security, business administration or similar.

You:

• are likely to have a minimum of 5 years of experience in IT or information security and are knowledgeable of cyber security, compliance, risk management and control frameworks including CIS18, NIST, CSF and the ISO27000/31000 series.
• probably hold security certifications such as CISSP, CISL, CISA, OSCP, GIAC, CCSK, CRISC or similar.
• are adept at managing projects or complex tasks, in a multistakeholder environment, possible with a management consulting background
• possess a genuine security mindset, but you can take an objective, risk-based approach to threats, controls and remediation
• have experience implementing cyber/information risk management in global organizations - and ideally in regulated industries
• are a good communicator with the ability to inform, inspire and educate technical and non-technical audiences - possibly with a management consultant background
• are professionally proficient in English

How your colleagues would describe you:

• Structured and self-propelled
• Defaults to inclusive behaviors
• Strikes a balance between perfection and frequent delivery
• Comfortable with uncertainty, ambiguity, and change

Our promise to you
Lundbeck offers an inspiring workplace and innovative culture, where our curiosity, accountability and adaptability enable us to transform lives. We want to go faster and further on addressing the big unmet needs of people living with brain disorders. We offer rewarding careers with a mix of exciting tasks and development opportunities that are balanced with initiatives focused on your well-being.

We need every brain in the game, and at Lundbeck, we are committed to building a workforce that is as diverse as the people we serve. Read more about our commitment at www.lundbeck.com/global/about-us/our-commitment/diversity-and-inclusion

.

Apply now
Can you see yourself in this role? We want to hear from you. Does this sound like your dream job, but you’re not sure if you meet all the requirements? We still want to hear from you!

Upload your CV and include a few lines about your motivation for applying. We ask you not to include a photo or personal information that does not relate to your professional experience.

If you have questions, please contact Mikkel Stenner Thune, Senior Director of Cyber Resilience & Compliance, minu@lundbeck.com.

Applications must be received by 15 May 2025.

Learn more about us at www.lundbeck.com, LinkedIn or Instagram (@h_lundbeck).

#EveryBrainInTheGame

This job ad is intended for individuals seeking a career opportunity with Lundbeck. We engage with recruitment and search firms where needed on the basis of a written agreement, and we do not accept unsolicited requests of any kind. If you work as a recruitment consultant, you are kindly instructed to refrain from contacting Lundbeck or the hiring manager directly with suggested candidates. If you violate this policy, you do so at your own risk and for your own account, and Lundbeck will not assume any liability nor pay any associated fees resulting from such violation.

About Lundbeck
At Lundbeck, our most important contribution is easing the burden of the millions of people living with brain disorders. Whether it is migraine, depression, or other brain disorders, patients, their carers, and society as a whole depend on us.

Through cutting edge science and strong partnerships, we develop and market some of the world’s leading treatments, expanding into neuro-specialty and neuro-rare from our strong legacy within psychiatry and neurology.

The brain health challenge is real. Our commitment is real. Our impact is real.

About Lundbeck
At Lundbeck, our most important contribution is easing the burden of the millions of people living with brain disorders. Whether it is migraine, depression, or other brain disorders, patients, their carers, and society as a whole depend on us.

Through cutting edge science and strong partnerships, we develop and market some of the world’s leading treatments, expanding into neuro-specialty and neuro-rare from our strong legacy within psychiatry and neurology.

The brain health challenge is real. Our commitment is real. Our impact is real.