CordenPharma is a leading contract development and manufacturing organization (CDMO) and, as a full-service provider, develops and produces active pharmaceutical ingredients, pharmaceuticals, and related packaging services on behalf of its customers. The group employs approximately 3,000 people.
Our network in Europe and the US offers flexible and specialized solutions across six technology platforms: Peptides, Lipids & Carbohydrates, Injectables, Highly Potent & Oncology, Small Molecules, and Oligonucleotides. We strive for excellence in supporting this network and are committed to delivering the highest quality products for the benefit of patients.
Our People Vision:
We strive for excellence. We share our passion. Together, we make a difference in patients’ lives.
Cybersecurity Analyst
* Plankstadt
* as soon as possible
* Full-time
* permanent
What awaits you
Overview
We are looking for a Cybersecurity Analyst with strong technical expertise to support and protect our pharmaceutical operations. This role will play a critical part in monitoring security events, managing SIEM content, assessing risks for firewall changes, securing our Microsoft 365 environment, and conducting incident investigations .
In our highly regulated industry, the analyst will also ensure security activities align with compliance requirements (GxP)while protecting sensitive research, intellectual property, and customer data.
SIEM Operations & Threat Detection
*
o Monitor, triage, and analyze events in the SIEM system.
o Develop, fine-tune, and maintain detection rules aligned with current threat landscape and pharma-specific risks (e.g., IP theft, insider threats).
o Ensure log sources from validated systems remain compliant with regulatory and audit standards.
Technical Security Assessments
*
o Review firewall change requests, assess risks, and document recommendations within change management processes.
o Support security risk assessments of IT/OT systems used in manufacturing and R&D environments.
o Ensure technical controls align with 21 CFR Part 11, GxP, and other regulatory requirements.
Microsoft 365 Security Administration
*
o Assess Microsoft 365 security configurations and provide input for the infrastructure operation team
o Maintain and extend data loss prevention (DLP)policies to protect confidential data.
o Regularly run and document compliance/security tasks for audits and regulatory reporting.
Incident Response & Investigations
*
o Conduct deep-dive investigations of potential security incidents, including advanced phishing, and targeted attacks.
o Collect forensic evidence in compliance with chain-of-custody and regulatory standards.
o Collaborate with IT, QA, and Legal to ensure incidents are handled in a way that meets audit and compliance obligations.
Governance, Risk & Compliance Alignment
*
o Document technical controls and provide evidence for audits (internal, FDA, ISO).
o Participate in security projects (e.g., identity and access management, manufacturing security).
To successfully master this role, we are looking for the following qualifications:
* Bachelor’s degree in Computer Science, Cybersecurity, or related field (or equivalent experience).
* 2–5 years of technical experience in technical security, incident response, or SOC environments.
* Hands-on experience with SIEM platforms .
* Experience with Microsoft 365 security configuration .
* Knowledge of firewall technologies and risk assessment for change requests.
* Strong problem-solving skills with an eye for compliance documentation and audit readiness.
* Good knowledge of Project Management
Preferred Skills
* Desirable certifications: CISSP, CISM, Security+, GCIH, or Azure Security Engineer Associate .
* Experience with data loss prevention (DLP)and IP protection solutions.
What we offer you
Flexible working hours
Homeoffice
Positive working atmosphere and open management culture with focus on continuous improvement of processes to stay innovative
parking
Interested?
If you enjoy working in a team and are interested in a diverse range of tasks, if you think and act outside the box and beyond your own responsibilities, then you should become part of our team.
Do you need further information?
If you have any questions about your application, the position, or other concerns, we are happy to assist you.
Mirjam Engel
Talent Acquisition Manager
E-Mail: bewerbung.cpi@cordenpharma.com
CordenPharma does not accept unsolicited applications from recruitment agencies. Resumes submitted without prior agreement will not be considered and do not create any obligation on the part of CordenPharma.
Back Apply