---

Location

Bangalore | India

---

Job description

Job Description

Are you enthusiastic about IT security and ready to take on the challenge of protecting Novo Nordisk’s digital assets? We are looking for an experienced Vulnerability Manager to join our Global Security team in Digital, Data & IT GBS. If you have a strong background in IT security vulnerability management and are ready to be effective, read on and apply today for a life-changing career. Apply now!

About the department

The Global Information Security Advisory department is based in Digital, Data and IT (DD&IT) in Denmark. You will be part of a global information security community with colleagues located primarily in India, Denmark, and USA. Our team consists of leading experts in various areas ranging from network security, white hat hacking, cloud security, cryptography, security operations, Acquisitions & Integrations, to manufacturing security and security risk management and governance. Global Information Security is partnering with the line of business across the value chain to build security into the business processes. Done in collaboration with partner and specialist in other areas including Enterprise Architects and Data Specialist. As security partners we engage to understand the direction and priorities in line business to identify risks and manage these in collaboration with our stakeholders. We have security partners working in various parts of the value chain.

The position

As vulnerability manager, manage the security vulnerabilities and risks across organization including identifying, supporting application/system owners to manage risks and remediate vulnerabilities. Your primary responsibilities will be:

• Develop strategies to identify, manage, and mitigate identified threats and vulnerabilities to attain desired risk profile and communicate strategies to key stakeholders.
• Research and investigate new and emerging vulnerabilities, to include Zero Day events, assess against risk to the corporate and production environments, and participate in external security communities.
• Effectively coordinate all processes related to vulnerability management covering among the interlink between the VMO (vulnerability management office) and incident Response, (Global IT organization) GITO, patch management office (PMO) & system manager/owners. Perform, review, and analyse security vulnerability data to identify applicability and false positives.
• Assist in providing support and resolution for scanning and vulnerability remediation reporting issues. Work with the Business to effectively communicate the risks of identified vulnerabilities and make recommendations regarding the selection of cost-effective security controls to mitigate identified risks.
• Service Management of vulnerability management which includes improve/formalise the mobilisation process when receiving critical vulnerability information. Coordination with Patch management office.

Additionally, as a VMO- manager, you will be responsible of service strategy/ road map for respective services. Managing security service, responsible for the delivery of service and support services and ensuring that they meet business requirements. You shall do contract re-negotiation, license management, budgeting, and stakeholder communication. Liaison with all necessary parties such as IT security architects, IT infrastructure architects, stakeholders, vendors, project teams, customers (Global and Regional IT Units) to facilitate seamless services delivery.

Qualifications

• Master’s degree in IT, data science, information security, or another relevant field.
• Overall 10+ years of experience in IT within the field of information security and vulnerability management. Preferable you have been working close with line of business.
• 6+years of experience in information security with expertise in vulnerability management and risk mitigation.
• Experience in performing risk assessments on different applications and technology and experience using vulnerability assessment tools.
• Good understanding of CVE score.
• Good understanding of information security policies, standards, and industry best practice.
• Ability to solve complex problems independently by getting to the core and clearly communicating scenarios, impacts and recommendations to the decision-makers.
• Effective communication and presentation skills. Fluent in English, written and orally.

Working at Novo Nordisk

Novo Nordisk is a leading global healthcare company with a 100-year legacy of driving change to defeat serious chronic diseases. Building on our strong legacy within diabetes, we are growing massively and expanding our commitment, reaching millions around the world, and impacting more than forty million patient lives daily. All of this has made us one of the twenty most valuable companies in the world by market cap. Our success relies on the joint potential and collaboration of our more than 61,000 employees around the world. We recognize the importance of the unique skills and perspectives our people bring to the table, and we work continuously to bring out the best in them. Working at Novo Nordisk, we’re working toward something bigger than ourselves, and it’s a collective effort. Join us! Together, we go further.

Contact

To submit your application, please upload your CV online (click on Apply and follow the instructions).

Deadline

4th March 2024

We commit to an inclusive recruitment process and equality of opportunity for all our job applicants. 

At Novo Nordisk we recognize that it is no longer good enough to aspire to be the best company in the world. We need to aspire to be the best company for the world and we know that this is only possible with talented employees with diverse perspectives, backgrounds and cultures. We are therefore committed to creating an inclusive culture that celebrates the diversity of our employees, the patients we serve and communities we operate in. Together, we’re life changing.

---

Job tags

---

---

Salary