WHO WE ARE
As a family-held company, we are cognisant of how work shapes who we are and who we want to become. Our culture is enriched with a genuine ambition to make a mark, and together we strive to become individuals of remarkable value.
WHO WE ARE Aspiration & Values Leadership Our defining moments Sustainability Code of conduct Global presence
OUR FOCUS
We are a highly specialised company focused on carbohydrate chemistry and a global leader in the development of innovative treatments for patients suffering from iron deficiency and iron deficiency anaemia – a condition which more than 1 billion people live with, making it one of the largest global health challenges of our time.
OUR FOCUS Pharmaceuticals Carbohydrates Animal Health
PROGRAMMES
Discover our current research programme which highlight our commitment to groundbreaking studies and treatments, based on our expertise in iron metabolism.
PROGRAMMES Clinical Trials Petadeferitrin
CAREER
We are a fully integrated pharmaceutical company with many exciting opportunities ahead of us. Do you want to join us?
CAREER Job openings Life at Pharmacosmos
NEWS & MEDIA
We always strive to achieve new results and collaborations that can improve the quality of lives. Stay informed with our latest news and press releases.
NEWS & MEDIA News & Press Events Media
CONTACT US
We welcome all questions or inquiries. Get started by filling out a form or read about the way we are partnering.
CONTACT US Partnering with us Privacy policy

GRC Specialist

Are you passionate about governance, risk, compliance and policy implementation? Do you want to play a key role in shaping the security framework of an innovative pharma company?

Job openings

DeadlineMarch 2, 2025

DepartmentIT

Apply via Capax

If yes, Pharmacosmos is looking for a GRC Specialist to join the Global IT.

About the department

Our Global IT department consists of 10 dedicated professionals, with seven based at the headquarters in Holbæk. The department is structured into four focus areas: Helpdesk, Security, Application & Operation, and PMOs. In this role, you will join the Security as.

Global IT department is on an exciting journey of modernization, transitioning from a traditional helpdesk-oriented structure to a strategic enabler of business growth and innovation. You can expect a supportive organization that values balance, respect, and the well-being of its employees, in which you will collaborate closely with skilled and motivated colleagues eager to learn and grow together and seize the opportunity to contribute to strategic IT initiatives

About the job

This role is pivotal in transforming security policies into practice, ensuring compliance with regulatory requirements, and strengthening the overall security posture. The primary focus will be on governance, risk, and compliance (GRC) as well as technical security policy implementation. As the GRC Specialist, you will work closely with our Operational Security Engineer and external partners to develop and maintain security policies, implement controls, and align our security framework with ISO27001, NIST, FDA, European pharmaceutical regulations, and NIS2.

The role offers a global scope, ensuring that security policies and frameworks are implemented across all Pharmacosmos sites and subsidiaries. With over 2,000 endpoints, including employee devices, servers, and manufacturing systems, the GRC Specialist will play a key role in strengthening the company’s security posture. The long-term objective is to align with ISO27001 standards, aiming for 80-90% compliance within the next 2-3 years.

The responsibilities of the role include:

Translate security policies into technical security measures and ensure proper execution.
Develop and implement security policies in line with ISO27001, NIST, European pharmaceutical regulations, FDA, and NIS2 requirements.
Collaborate with external IT and security partners to address security findings and enhance security posture.
Work closely with internal stakeholders to bridge security requirements across global sites and subsidiaries.
Assist in risk assessments and ensure accurate risk profiling.
Present security updates and risk assessments to senior leadership.
Contribute to the development of security control reports, with a long-term goal of aligning with ISO27001 certification.

About you

You have experience from a company within the regulated industry, e.g., pharmaceutical, life science, biotech, food & beverage, finance.

To thrive in this role, you bring:

3-4 years of experience in governance, risk, and compliance (GRC), or IT security policy implementation.
An understanding of and strong interest in working with ISO27001, NIST, and regulatory frameworks (NIS2, FDA, European pharmaceutical regulations).
An ability to write and implement security policies.
Familiarity with risk assessments and control reporting.
Experience working in a global security environment is a plus.

We offer

An opportunity to join a dynamic environment where your expertise will have a meaningful impact on shaping our IT strategy and driving our cloud transformation journey.
Inspiring and flexible working environment that values balance, respect, and the well-being of its employees.
An exciting role where you can develop your personal and professional competencies and contribute to our continued global growth. You will work closely with talented and driven colleagues who are passionate about learning, collaborating, and advancing together.
An attractive and competitive compensation package.

Additional information

Your application and CV (in English) should be submitted no later than the 2nd of March 2025, using the link above. This recruitment is supported by Capax Recruitment. Please contact Freja Borre Bøbel at fhe@capaxrecruitment.com for any questions about the recruitment.

Go to Job openings