IT Security Specialist

Hovione is an independent family owned international group of companies. From the beginning, we have set ourselves above and apart through our innovative technological and productive capabilities, reaching a top spot in the world market as an integrated Contract Development and Manufacturing Company dedicated to helping Pharmaceutical Customers bring new and off-patent drugs to market.

Our people are the main asset for our continued success. Reaching over 1950 team members, from 36 different nationalities, that are located across Asia, Europe and North America (Portugal, US, Macao, Ireland, China, Hong Kong, Japan, India, and Switzerland), including 4 production sites.

Working at Hovione means reaching for innovation and excellence in everything we do: for our clients, our partners and, above all, our patients. That is why we are In it for life.

Designs, develops, implements and troubleshoots various information system and cyber security software. Develops, tests and validates solutions to remediate exploitable conditions on devices such as web servers, mail servers, routers, firewalls and intrusion detection systems. Evaluates, codes and implements software fixes to address system vulnerabilities such as malicious code (e.g., viruses), system exploitation using SQL injection, cross-site scripting, buffer overflows, parameter tampering, hidden field manipulation, cookie poisoning and web services manipulation. Conducts security assessments of systems and applications using penetration tests, ethical hacking tools and risk assessment/mediation methodologies to evaluate vulnerabilities.

- Oversee the deployment, integration and initial configuration of new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically

- Study IT systems and procedures to analyze the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers and other systems and in databases and other data repositories

- Design and produce vulnerability assessments, penetration tests and security audits.

- Execute enterprise security documents, such as reports and analyzes, proposing plans of actions to mitigate security risks

- Perform security awareness training for all employees to ensure consistently high levels of compliance with enterprise security documents

- Ensure all assigned tasks are properly planned and delivered on time, safely, efficiently, reliably and in a cost-effective manner

- Propose improvements to the area as appropriate and solve problems

- Make quality and timely decisions within the IT Security tasks under her / his responsibility

- Gather relevant data to inform the decision makers regarding complex issues

- Comply with all IT governance, standards and policies in practice in Hovione

- Execute professional activities in compliance with GMP and HSE guidelines, internal and external requirements as well as promote the implementation and maintenance of Hovione´s policies, systems and procedures (COPs, HBR, SOPs and others)

- Carry out assigned tasks and duties in a safe manner, in accordance with instructions, and to comply with environmental, health & safety rules/procedures, regulations and codes of practice.

- University, or equivalent, qualification in Information Technology or similar scientific field (mandatory)

- Typically requires 3-5 years of relevant experience in IT Security, especially in enterprise security architecture design and enterprise security document creation

- Strong understanding and knowledge of IT Security principles and procedures

- Knowledge of SAP Security Profiles

- Knowledge of current IT industry, systems, trends and changes in the business environment

- Fluency in English is a requirement

- Computer literate with good working knowledge of the MS Office package

- One of the following certifications: GIAC Security Leadership/Essentials Certification, ISACA Certified Information Security Manager, Microsoft Certified Systems Engineer: Security, (ISC)2 SCCP, (ISC)2 CISSP, (ISC)2 ISSAP

Hovione is a proud Equal Opportunity Employer

Inclusion and diversity are key to us. At Hovione, that means a work environment where differences are valued, and everyone is treated with fairness and respect. We want all our team members worldwide to feel supported, respected, and have the opportunity to achieve their full potential, regardless of their age, gender, religion, disability, sexual orientation or ethnicity.