Laboratory Information Security Consultant

We are seeking a skilled and driven Information Security Consultant to support the Head of Laboratory Information Security in safeguarding our laboratory environments, digital lab systems, and scientific data. This role will contribute to the design, implementation, and enhancement of cybersecurity controls in highly regulated, data-intensive research and development settings, ensuring alignment with internal security policies, regulatory frameworks (e.g., GxP, GDPR), and industry best practices.
 

Primary Contacts

• Reports to Director, DD&AI – DK
• IT Laboratory Support – Global
• IT Lab Operation – NL
• Information Security, Compliance & Risk team

Responsibilities

• Assist in the implementation and continuous improvement of the Lab Security Strategy across global R&D and QC sites.
• Support risk assessments of laboratory systems, including LIMS, ELNs, CDS, SDMS, and connected instruments.
• Coordinate and document security controls related to:
• Data integrity
• User access management
• System validation
• Secure instrument integration

• Collaborate with Quality Assurance, Laboratory IT, and lab personnel to ensure that systems are secure by design and compliant with our standards and policies, as well as GxP, CFR Part 11, and other relevant standards.
• Participate in vendor security assessments, especially for cloud-based lab platforms and outsourced data processing.
• Support the incident response process for lab environments, including investigation and documentation.
• Contribute to audit readiness and support internal/external security assessments, audits and inspections.
• Track and report on lab-specific cybersecurity risks, KPIs and help prepare presentations to different audiences as well as briefings for leadership teams.  

Job Requirements

• Bachelor’s or Master’s degree in Information Security, Life Sciences, IT, or related discipline.
• Minimum 3 years of experience in information security, ideally within a GxP-regulated or biotech/pharma R&D environment.
• Solid understanding of cybersecurity frameworks (e.g., ISO/IEC 27001, NIST, CIS).
• Familiarity with laboratory systems such as LIMS, ELN, CDS, and scientific instrumentation networks.
• Experience with risk assessments, access control, validation, and audit support.
• Excellent communication skills and ability to translate complex security concepts for scientific and non-technical stakeholders.