Save Share Apply
Category:
Business Support & Administration

Are you passionate about Governance, Risk and Compliance (GRC) and NIS2? We have an interesting and challenging opening at Novo Nordisk, in our External Supply area, where we manage the supply chain to our production.

This area is key to implementation of the EU NIS2 requirements towards our direct spend suppliers. We bring together experts within Risk management, Information Security, Contracts and Legal, to work with our suppliers and to ensure compliance and information security risk management in the supply chain.

It’s you chance to take part in this journey. Bring your GRC expertise and information security interest and knowledge to the table and join our effort to comply with NIS2, manage the information security risk, and in the end, ensure stable supply. Apply for a life-changing career with us today!

About the role

Our ES IT, Data & Digital team is deeply involved in the digital and IT related agendas and has the overall Information Security and IT Risk responsibility for External Supply. We work together with a variety of stakeholders within and outside our company, to define, negotiate, implement and follow up on security measures, with our external suppliers. You will be part of a small and dedicated group, to bring this agenda forward, and will also be part of shaping the role.

You will be:

  • Anchoring and evolving new NIS2 related processes in our organisation.
  • Establishing cyber security risk model for direct spend suppliers.
  • Working directly with suppliers and sourcing stakeholders, to implement specific measures with our suppliers and to:

o Perform Information Security assessments.

o Be our information security subject matter expert in contract negotiations.

o Participate in IT Security audits with CMO-s and suppliers.

o Ensure overview and reporting on the Information Security status.

  • Following up on security incidents with CMO-s and suppliers.
  • Informing and educating sourcing staff at Novo Nordisk regarding NIS2 and information security.

Qualifications

To succeed in this role, we expect that you have:

  • A bachelor’s or a higher level degree within a relevant field of study.
  • At least 5 years of proven industry experience in the areas of Governance, Risk and Compliance.
  • Experience and interest in Information Security. It will be advantageous you have NIS2 knowledge and/or relevant security certification.
  • Experience working with contracts and negotiations will also be advantageous.
  • Proficiency in written and spoken English.

As a person you are open and honest, you like to be part of a team but also have strong skills in working independently. You like to apply your knowledge to real business problems, get something done - and to learn and gain knowledge and experience from this.

You are good at coordinating and like communicating and engaging with different stakeholders – and you can factor in other people’s experiences. And not least, you thrive from contributing and delivering to a high standard.

About the Department

You will be part of the IT Security and Compliance team, anchored within our IT ES IT, Data & Digital team responsible for integrating digital solutions that support Novo Nordisk’s growth, efficiency and compliance. The team collaborates closely with various departments and stakeholders to ensure digital strategies align with organisational goals and foster innovation across the enterprise.

Working at Novo Nordisk

At Novo Nordisk, we embrace change and drive innovation, aiming for excellence in an evolving environment. Join a company where we work collectively towards making impactful changes globally. Together, we push boundaries and strive for more meaningful achievements.

Contact

For further information, please contact Morten Barfoed, SVP IT Security Responsible at: mokb@novonordisk.com

Deadline

01 June 2025

You do not need to attach a cover letter to your application, but please include a few sentences about why you are applying in your resume or CV. To ensure an efficient and fair recruitment process, please refrain from adding a photo in your CV.

We commit to an inclusive recruitment process and equality of opportunity for all our job applicants.

At Novo Nordisk we recognize that it is no longer good enough to aspire to be the best company in the world. We need to aspire to be the best company for the world and we know that this is only possible with talented employees with diverse perspectives, backgrounds and cultures. We are therefore committed to creating an inclusive culture that celebrates the diversity of our employees, the patients we serve and communities we operate in. Together, we’re life changing.

Apply