Pharmiweb ChannelsAll | PharmaCo | Clinical Research | R&D/BioTech | Sales/Mktg | Healthcare | Recruitment | Pharmacy | Medical Comms RSS Feed RSS Feeds RSS Feed PharmiWeb Candidate Blog RSS Feed PharmiWeb Client Blog

Job Details

Associate Director / Director, Application and Information

Company: PAREXEL
Location: Nottingham
Reference: pare-10048628
Closing Date: 18 Dec 16
Type: Permanent
Salary (£): Competitive

Job Summary:

We are looking to recruit an experienced and senior information security professional to set up and establish a newly created function to act as the Associate Director or Director, Application and Information Security within our PAREXEL Informatics division.


~~PAREXEL Informatics is one of the industry’s solutions provider and we help customers accelerate the drug development process through innovation. Our product portfolio is built on leading-edge technology and is combined with extensive medical and clinical expertise. As the technology division of PAREXEL International Corporation, we're able to leverage our massive investment in technology with our company's wealth of hands-on clinical expertise.

We are  looking to recruit an experienced and senior information security professional to set up and establish a newly created function to act as the Associate Director or Director, Application and Information Security within our PAREXEL Informatics division.

You will oversee all development activities within the software development lifecycle with respect to application information security. Working closely with our development and engineering teams you will have authority and responsibility across PAREXEL engineering groups for all aspects of software and data security, including policy formation and application.

You would also be responsible for setting software and data security strategy, developing long term relationships with customers, partners and industry leaders to formulate and implement this strategy. This aspect of the role will involve communicating the potential impact of emerging technologies on software and data security and assesses the risk of using or not using such technologies.

This role is based at our new state of the art Nottingham office.

Key Accountabilities:

Information Security:
 - Develops and communicates corporate information security policy, standards and guidelines.
- Contributes to the development of organisational strategies that address information control requirements.
- Identifies and monitors environmental and market trends and pro-actively assesses impact on business strategies, benefits and risks.
- Leads the provision of authoritative advice and guidance on the requirements for security controls in collaboration with experts in other functions e.g. legal, technical support. Ensures architectural principles are applied during design to reduce risk and drives adoption and adherence to policy, standards and guidelines.

Security Administration:
- Monitors the application and compliance of security administration procedures and reviews information systems for actual or potential breaches in security.
- Ensures that all identified breaches in security are promptly and thoroughly investigated and that any system changes required to maintain security are implemented.
- Ensures that security records are accurate and complete and that request for support are dealt with according to set standards and procedures.
- Contributes to the creation and maintenance of policy, standards, procedures and documentation for security.

Information Assurance:
- Interprets information assurance and security policies and applies these in order to manage risks.
- Provides advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines.
- Uses testing to support information assurance.
- Contributes to the development of policies, standards and guidelines.

Penetration Testing:
- Coordinates and manages planning of penetration tests, within a defined area of business activity.
- Delivers objective insights into the existence of vulnerabilities, the effectiveness of defenses and mitigating controls - both those already in place and those planned for future implementation.
- Takes responsibility for integrity of testing activities and coordinates the execution of these activities.
- Provides authoritative advice and guidance on the planning and execution of vulnerability tests.
- Defines and communicates the test strategy.
- Manages all test processes, and contributes to corporate security testing standards.


- Ability to engage and exert a professional influence using expertise and knowledge of the information security market or industry at senior leadership level
- Excellent interpersonal, verbal and written communication skills
- A flexible attitude with respect to work assignments and new learning
- Ability to manage multiple and varied tasks with enthusiasm and prioritize workload with attention to detail.
- Shows Initiative and self-confidence, is adaptable and is able to cope with changing and evolving priorities.
- Must have the ability to work methodically in a fast-paced, time-sensitive environment
- Manages provision of consultancy services. In own areas of expertise, provides advice and guidance to consultants and/or the customer or other stakeholders through involvement in the delivery of consultancy services
- Maintains an in-depth knowledge of specific specialism in the field, and provides expert advice regarding their application. Can supervise specialist consultancy.

- Degree in Life Sciences, Engineering, or Computer Science field, or equivalent experience in the IT / Information Security field.

Knowledge and Experience:
- A strong rounded IT background in IT or Information Security preferably with previous software development or engineering experience is essential.
- Demonstrable experience working and operating at a senior level with internal stakeholders is key.
- Previous Director (Associate level or above) experience is a must.
- Good understanding of software and data security within the IT industry and the implications of emerging technologies for the wider business environment is required..
- Previous experience of designing and implementing an Information security strategy
- Knowledge of methods like threat modelling applied to software development are desirable
- Understanding of applied and managed security risks for software development is essential
- Ability to define and document processes (e.g. Standard Operating Procedures) is essential.
- Understanding of Agile methodologies (preferably Scrum) are desirable
- Applied framework and good practices like TOGAF, OWASP (Open WEB Application Security Project), ISO 24772 are desirable.

In return we will be able to offer you a structured career pathway and full training within the role including awareness and understanding of the industry. Your hard work will be rewarded with a competitive salary and bonus, plus as a benefits package including 25 days holiday per year, pension scheme, life assurance, long term disability insurance, a health cash plan and other leading edge benefits that you would expect with a company of this type

Apply for this job: Associate Director / Director, Application and Information

Contact Information:

Address:  PAREXEL International
The Quays
101-105 Oxford Road
Tel:  +44 1895 238000
Fax:  +44 1895 238494
Website:  Visit Our Web Site

Share | | |
Site Map | Privacy & Security | Cookies | Terms and Conditions is Europe's leading industry-sponsored portal for the Pharmaceutical sector, providing the latest jobs, news, features and events listings.
The information provided on is designed to support, not replace, the relationship that exists between a patient/site visitor and his/her physician.