Infrastructure Security Engineer (f/m/d)

Today, Lonza is a global leader in life sciences operating across three continents.

While we work in science, there’s no magic formula to how we do it.

Our greatest scientific solution is talented people working together, devising ideas that help businesses to help people.

In exchange, we let our people own their careers.

Their ideas, big and small, genuinely improve the world.

And that’s the kind of work we want to be part of.

The IT Infrastructure Security Engineer executes the implementation of IT Security Controls , supports the implementation of appropriate measures in terms of processes and technology.  The role works in close collaboration with IT Infrastructure colleagues and IT Security & Compliance.

Furthermore the role is directly involved in the implementation of the corporate-wide information security management program, pertaining to IT Infrastructure, in regards to secure design and implementation of systems to ensure that Infrastructure assets are adequately protected.

This position contributes to reporting on quantifiable security KPIs and drives vulnerability management pertaining to IT Infrastructure.

The position holder designs solutions to improve IT security within the IT Infrastructure environment in a sustainable fashion in accordance with life science regulatory practices, advises respective subject matter experts within Lonza and its’ outsourced services.  The role is part of a team of infrastructure security subject matter experts and reports to Head of IT Infrastructure Security Engineering.

Additionally, this team will support, as required, the Security Operations Center team in case of potential IT security incidents.

The position holder will also pro-actively collaborate and communicate with all relevant stakeholders (e.g.

IT Security, system owners, etc.).

The ideal candidate is an experienced security architect with extensive hands-on experience in the relevant IT fields (e.g.

network, virtualization, AD, SQL, etc.), preferably supporting Operational Technology in the life science or manufacturing industry that is subject to regulatory compliance.

A strong solution oriented engineering mindset is expected.

Key responsibilities:


* Support infrastructure security relevant projects by ensuring implementation of required security controls from the design phase and throughout the lifecycle of the systems.

Enforce secure configuration of new and existing assets, design and implement mitigating controls as required


* Define and fully implement effective vulnerability remediation measures on both procedural and technology layer (e.g.

system hardening, patching, lifecycle management)


* Drive security culture within IT Infrastructure


* Support IT Security related Infrastructure services and identify potential improvements


* Co-ensure that regulatory security and data protection requirements are fulfilled on the infrastructure level, e.g.

GxP and GDPR

Key requirements:


* Masters de...