CordenPharma is a leading full-service Contract Development and Manufacturing Organization (CDMO) specializing in active pharmaceutical ingredients (APIs), excipients, drug products (DP), and packaging. With around 3,000 employees worldwide, we help pharmaceutical and biotech companies manufacture medicines with the ultimate goal of improving people’s lives. Our network, spanning Europe and the US, provides flexible and specialized solutions across six technology platforms: Peptides, Lipids & Carbohydrates, Injectables, Highly Potent & Oncology, Small Molecules, and Oligonucleotides. We strive for excellence in supporting this network and are committed to delivering the highest quality products for patient well-being. Our People Vision: We strive for excellence. We share our passion. Together, we make a difference in patients' lives. Information Risk Manager m/f/d What you can expect As an Information Risk Manager, you will play a key role in strengthening and advancing CordenPharma’s global information risk and security landscape. You will ensure a consistent and effective approach to identifying, assessing, and mitigating information risks across our international organization.Acting as a trusted partner to stakeholders and as the deputy to the Group Information Security Officer, you will contribute to the continuous development of our Information Security Management System (ISMS) in a regulated, global environment. Your Responsibilities Information Risk Management Drive and continuously improve the global information risk management framework Conduct and coordinate risk assessments across business units and regions Maintain and monitor the information risk register Support stakeholders in defining and implementing risk mitigation measures ISMS Development & Governance Support the development and maintenance of the ISO 27001-based ISMS Ensure consistency and effectiveness of security controls across the organization Contribute to continuous improvement initiatives Audit, Compliance & Standards Plan and perform internal ISMS audits and track remediation actions Support external audits and regulatory inspections Ensure compliance with standards and regulations (ISO 27001, GDPR, GxP) Business Partnering & Leadership Support Act as deputy to the Group Information Security Officer Support strategic and operational information security initiatives Collaborate with cross-functional stakeholders (IT, Quality, Legal, Business) Promote a strong security and risk awareness culture To successfully master this role, we are looking for the following qualifications: Bachelor’s degree in Information Security, IT, Risk Management or similar Several years of experience in information security, risk management or IT compliance Hands-on experience with ISMS (ideally ISO 27001) Experience conducting internal audits Strong analytical and structured approach Excellent stakeholder management and communication skills Certifications such as CISM, CRISC, CISSP or ISO 27001 are a plus Experience in regulated industries (e.g. pharma, GxP) is advantageous What we offer Reduced-rate bike leasing Employee Events Subsidy for fitness studio Hybrid working opportunities Interested? If you enjoy working in a team and are interested in a varied area of responsibility, if you think and act beyond your own area of responsibility, then you should join our team. CordenPharma does not accept unsolicited applications from recruitment agencies. Any resumes submitted without a prior agreement will not be considered and will not create any obligations for CordenPharma.