Information Security Officer

Company Description

As part of the world’s leading testing, inspection and certification company, you share the benefits of our stability and growth; secure employment in a financially stable, Swiss-based company; a proud heritage that has been making the world a better, safer place for over 140 years; and a global, multicultural, and multinational organization.

Grow in a company that is the home of global knowledge and expertise; that operates in a wide range of countries, services and sectors; and that offers you endless opportunities to learn, grow and fulfill you potential!

In the spirit of continued growth, we are currently looking for a, Information Security Officer. 

Job Description

The Quality Assurance Department of SGS Clinical Research is an independent department responsible for the Quality Management System. This includes the responsibility for our ISO27001 certified Information Security Management System (ISMS) and comprises all quality documents, training and qualification, resolution and documentation of incidents, Information Security (IS) audits, and dedicated IS support to all operational teams (i.e. Clinical Pharmacology Unit, Clinical Operations, Biometrics and Medical Safety & Regulatory, and Business Development and Support).

This is an ideal position if you already have experience in the clinical research field and want to use this experience in a different way, or if you have information security experience and would like to apply this to a different field of expertise.

Your responsibilities:

As Information Security Officer (ISO) you are welcomed in a smaller, amiable, and enthusiastic QA team where you will have day-to-day interaction with QA experts in the field, IT personnel, the Data Protection Officer / Champion, Business Technology representatives, etc..

Your primary responsibility is to ensure that the ISMS conforms to the requirements of ISO27001. This includes implementation of the norm, and maintenance and continuous improvement of the ISMS.

Your tasks are the following:

  • Remain up-to-date with relevant IS standards and legislation (e.g. ISO27001, NIS2)
  • Maintain the ISMS by maintaining the asset list and risk register, and by implementing and improving controls to ensure information security and compliance with the ISO27001 standard
  • Report on the performance of the ISMS to Senior Management conform the requirements of ISO27001
  • Provide subject matter expertise on IS by
    • Informing and advising on IS threats and vulnerabilities
    • Supporting the development and management of IS procedures
    • Supporting internal departments to meet ISO27001 requirements
    • Providing input on contractual agreements, Requests for Information, and questionnaires
  • Test and evaluate IS procedure adherence within the organization
  • Participate in internal and ISO27001 certification audits of SGS Clinical Research
  • Participate in vendor assessments and vendor audits, where IS compliance is concerned
  • Develop and provide training as needed within the organization

Support the IT department with regards to IS breaches and vulnerabilities, and subsequent implementation of appropriate actions, analyze deliverables provided by IT and report on results


  • You have a professional or academic Master or equal qualification through experience.
  • Good knowledge of IT infrastructure and computerized systems.
  • Good knowledge of ISO27001 standard.
  • Experience in a GCP environment is considered a significant asset. Also considered to be an asset, is experience with Quality Management, Project Management and/or ISMS maintenance.
  • You are fluent in English (spoken and written). Knowledge of Dutch is a plus.
  • You have good observing capacities, a critical mindset and are an easy learner, with a sense of responsibility, integrity, and diplomacy. You have good planning and organizational skills, and have affinity with technology.
  • You feel at ease in multi-disciplinary teams and are a true facilitator.
  • You are a strong communicator, both towards senior management as well as throughout the organization.

Lastly, you can recognize yourself in the following characteristics: 

  • Professional: you bring quality, excellence, and ownership to everything you do
  • Responsible and results-oriented: you have a sense of accountability for business results
  • Committed: you bring your whole self to work with passion and focus
  • Driven and eager: you are curious, flexible, and ambitious to learn from a global network
  • Open to learning: from the range of different skills, backgrounds, and behaviors around you
  • Capable of taking ownership and being independent
  • Ambitious: you always challenge yourself to continuously improve and be the best you can be

Additional Information

What we can offer you:

  • A truly rewarding career, working at the highest level of international standards for quality, safety and integrity
  • The chance to share our growth and stability.
  • Continuous learning from the best experts in the industry
  • The chance to expand and enrich your career
  • Professional and personal growth
  • Experiences and opportunities across the global business

Do you want to be part of this?

Were you already considering a big switch in your career? Maybe this could be your next step.

We are looking forward to hearing from you! Send us your story and your resume via the apply button and maybe you will soon join us for work and coffee breaks. Still have questions? Heidi can give you more details about the job. Send her an e-mail at [email protected].

Cyber Security Jobs by Category

Cyber Security Salaries