Information Security Analyst

FUJIFILM Diosynth Biotechnologies U.S.A., Inc.
Stockton-on-Tees
3 weeks ago
Applications closed

Related Jobs

View all jobs

Information Security Analyst

Information Security Analyst

Information Security Analyst (Hatfield / Hybrid / FTC)

Information Security Analyst

IT Information Security Analyst

Cyber & Information Security Analyst £58,500 pa London Hybrid

FUJIFILM Diosynth Biotechnologies

We are a trusted CDMO partner for life. At FUJIFILM Diosynth Biotechnologies (FDB), we encourage you to discover what inspires you every day, to follow your passion and your power – what we call Genki.

The work we do has the potential to transform people’s lives and to impact where it matters most. Each day is an opportunity to push the boundaries of your potential, so join us as Information Security Analyst and become part of a fast-growing global company, united by Genki.

About Us

We are a dynamic global company and our focus is to combine technical leadership in cell culture, microbial fermentation and gene therapies with world class cGMP manufacturing facilities to advance tomorrow’s medicines.

With sites in Billingham & Wilton UK, Hillerod Denmark, North Carolina and Texas USA, the size and breadth of our business will open up huge opportunities for you, whether you want to move to a different role in the UK, relocate, or progress and take on more responsibility.

Our teams are proud to partner with innovative companies reimagining what’s possible in biopharmaceuticals. Every day at FDB is a day for improvement, each challenge is an opportunity for growth, and every moment is a chance to evolve together.

Role & Responsibilities

The Information Security Analyst is responsible for evaluating and mitigating risks associated with third-party suppliers and ensuring the security and compliance within the organization. This role involves working collaboratively with internal teams and external suppliers to assess risks, implement security measures, and ensure compliance with relevant regulations and standards.

Principal Accountabilities:

  • Supplier Assurance (30%)
  • Evaluate and monitor third-party suppliers to ensure compliance with organizational security and privacy standards.
  • Conduct and manage the supplier assurance attestation process.
  • Conduct supplier risk assessments and audits to identify potential security vulnerabilities and areas for improvement.
  • Help develop and maintain supplier assurance frameworks and guidelines.
  • Collaborate with procurement and legal teams to negotiate and manage contracts with suppliers, ensuring that security and compliance requirements are met.
  • Solution Design Assurance (20%)
  • Conduct security assessments of solutions to identify potential vulnerabilities and compliance issues.
  • Work with architecture teams to implement best practices for security and compliance.
  • Ensure that solutions comply with industry standards, such as GDPR, HIPAA, and relevant security frameworks.
  • Manage the lifecycle of application security, including regular reviews and updates.
  • Risk Management (15%)
  • Identify, assess, and mitigate risks associated with supplier engagements.
  • Develop risk mitigation strategies and track their implementation and effectiveness.
  • Prepare and present risk assessment reports to senior management.
  • Continuous Improvement (10%)
  • Stay updated with the latest industry trends and best practices in information security.
  • Propose and implement improvements to supplier and other assurance processes and frameworks concerning information security.
  • Conduct training sessions to educate internal stakeholders on supplier and security practices.
  • Conduct information security audit activities on controls within the organisation.
  • Participate in information security incident response activities.
  • Policy Development and Enforcement (15%)
  • Reporting and Analytics (10%)

Qualifications and Experience

Minimum Education and Background Requirements:

  • Bachelor’s degree in Information Technology, Business Administration, Management, or a related field.
  • 3+ years of experience in information security, assurance and risk management activities.
  • In-depth knowledge of governance, risk, and compliance principles and frameworks.

Knowledge, Skills and Abilities:

  • Proven experience with GRC / information security software (e.g., Risk Management, CrowdStrike, Noggin, RSA Archer, MetricStream, ServiceNow GRC) and system integration.
  • Excellent communication and stakeholder management skills.
  • Information Security, or GRC certifications are highly advantageous.
  • Excellent communication and interpersonal skills, with the ability to effectively communicate with technical and non-technical stakeholders.
  • Must be able to present topics with authority to auditors.
  • Experience from pharma industry.
  • Experience with global organizations.

Why work with us?

At FDB, your passion – your Genki – is your power and we empower you to define what Genki means to you.

When you join us, we will train, develop and support you to become the best you can possibly be. We offer a structured new starter induction programme as well as on-going development training. In addition to this, we offer:

  • Competitive salary plus company bonus scheme
  • 35 days of holiday, plus bank holidays.
  • Salary Sacrifice scheme offering, healthcare, bikes, dental etc.
  • Generous pension scheme
  • Free parking and electric charging points

Closing date: 01/05/25

#J-18808-Ljbffr

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Portfolio Projects That Get You Hired for Cyber Security Jobs (With Real GitHub Examples)

With rising cyber threats and increasingly sophisticated attacks, cyber security has become a critical priority for organisations worldwide. From penetration testers (pentesters) and SOC analysts to cloud security engineers and threat intelligence specialists, the demand for skilled cyber security professionals continues to surge. But how do you stand out in a growing field? Alongside your CV, an impressive cyber security portfolio can be the distinguishing factor that convinces employers you’re the right fit. In this comprehensive guide, you’ll discover: Why a cyber security portfolio is essential for job seekers in this domain. How to align portfolio projects with different cyber security career paths. Real GitHub examples that demonstrate best practices in security-focused projects. Actionable project ideas you can start today, from penetration testing labs to blue-team detection pipelines. Best practices for organising your repos and presenting your work so hiring managers can instantly see your impact. When you’re ready to pursue your next opportunity, remember to upload your CV on CyberSecurityJobs.tech. Our specialised platform connects talented security professionals with employers who need your expertise—exactly what your portfolio will showcase.

Cyber Security Job Interview Warm‑Up: 30 Real Coding & System‑Design Questions

The need for skilled cyber security professionals has never been greater. As organisations rapidly digitise their operations and store increasing amounts of sensitive data online, cyber threats loom large—ranging from sophisticated ransomware attacks to insider threats and state‑sponsored espionage. Against this backdrop, cyber security jobs remain some of the most in‑demand and mission‑critical roles on the market. If you’re preparing for a cyber security interview, expect to be tested on a broad spectrum of topics—from secure coding and incident response to network security architecture and compliance standards. In many cases, companies also include problem‑solving exercises and system design scenarios to gauge how well you can apply theoretical knowledge to real‑world threats. To help you ace these assessments, we’ve compiled 30 real coding & system‑design questions you might encounter. Each reflects a key area of cyber security—whether it’s encryption and key management, threat modelling, or designing a zero‑trust network. Along the way, we’ll offer insights and best practices so you can stand out from the crowd. If you’re on the lookout for exciting cyber security roles in the UK, head to www.cybersecurityjobs.tech. There, you’ll discover a range of positions—covering everything from penetration testing and threat intelligence to compliance management and security operations. Let’s dive into the essentials of interview readiness.

Negotiating Your Cybersecurity Job Offer: Equity, Bonuses & Perks Explained

How to Secure Compensation That Reflects Your Value in the UK’s High-Stakes Cybersecurity Sector Introduction As cyber threats grow more sophisticated and frequent, cybersecurity professionals have never been more in demand. From thwarting ransomware attacks to architecting secure cloud infrastructures, mid‑senior cybersecurity experts play a critical role in safeguarding a company’s data and reputation. Thanks to this growing reliance on cybersecurity, employers in the UK are going above and beyond simple salary offers to attract the top echelon of talent. Although base salary remains a key component of any job offer, the broader package—encompassing equity, bonuses, and perks—can often surpass what you’d gain from a small bump in monthly pay. For cybersecurity specialists working in areas such as threat intelligence, incident response, penetration testing, or compliance, the complexity and risk mitigation you bring to the table is massive. Knowing how to negotiate the entire package ensures you are duly rewarded for keeping an organisation’s data, assets, and operations safe. In this guide, we’ll delve into every aspect of negotiating a cybersecurity job offer. Whether you’re pivoting to a mid‑senior role or cementing your expertise at an established security consultancy, understanding the full range of compensation elements will help you secure an offer that acknowledges the criticality of what you do. Let’s explore equity options, performance bonuses, and the perks that matter most, so you can come out of your next job negotiation confident that you’re getting more than just a salary.