Senior Security Standards & Controls Consultant

The role involves the end-to-end creation of critical Security Standards (BSS) and associated Countermeasures (CM) aimed at enhancing governance and compliance within a security framework in the pharmaceutical industry.

• Proven experience in authoring formal security standards adopted into enterprise governance.
• Deep understanding of ISO 27002:2022 at the clause level.
• Experience drafting Countermeasures, including control statements and rationale.
• Expertise in conducting structured gap analyses of security standards.
• Knowledge of IT/OT security convergence and the associated control considerations.
• Broad knowledge across multiple security domains.

Nice to have:

• Familiarity with BAFS and enterprise taxonomy compliance.
• Understanding of threat modeling methodologies.
• Experience in authoring reference architecture diagrams for security patterns.
• Knowledge of GRC tooling such as ServiceNow or RSA Archer.

• Author and produce 2-3 high-priority Security Standards aligned with ISO 27002:2022.
• Conduct a gap analysis comparing BSS requirements against the existing BSC™ catalogue.
• Draft missing Countermeasures in a format compatible with governance standards.
• Address additional Countermeasures stemming from previous work packages as capacity allows.