Neuraxpharm logo

Corporate Head of Security & Privacy

Neuraxpharm
9 days ago
Full-time
On-site
Barcelona, Spain
Engineering and Data

 

WE ARE HIRING!

 

Corporate Head of Security & Privacy

 

 

Neuraxpharm is looking for people who want to make a difference and improve patients’ lives within the CNS area. We want individuals who will go the extra mile and make great things happen.

 

Being part of this team does not mean you are just working for a company, but for a cause!

 

 

Neuraxpharm is looking for a Head of Security & Privacy based in Barcelona

(hybrid role)

Your mission:

 

Define, implement and operate the corporate cybersecurity and data privacy framework, covering both governance and hands-on security operations. The role ensures the protection of information assets through robust security architecture, tools and controls, regulatory compliance, and effective operational security, enabling secure digital transformation and business continuity.

The position is critical to bridge strategic security governance with technical execution, from security architecture and solution design to day-to-day security operations, incident response and threat management.

 

Your major accountabilities:

Security Governance & Compliance

  • Define and maintain the corporate cybersecurity and privacy strategy aligned with business, risk appetite and regulatory requirements.
  • Establish and operate the Security Governance model, including policies, standards, procedures and control frameworks.
  • Ensure compliance with cybersecurity and data protection regulations and standards (GDPR, ISO 27001/27002, NIST, ENS, NIS2, industry best practices).
  • Own the security risk management process, including risk assessments, mitigation plans and reporting to management.

Security Architecture & Solutions

  • Define and maintain the enterprise security architecture, covering IT, cloud, OT (when applicable) and digital ecosystems.
  • Design security-by-design and privacy-by-design architectures for infrastructure, applications, data and integrations.
  • Select, define and evolve cybersecurity tools and platforms.
  • Define technical security standards and reference architectures for projects and platforms.
  • Ensure correct integration and interoperability between security tools and core IT systems.

Security Operations

  • Lead and operate the Technical Security Office / Security Operations function (internally or with external providers).
  • Oversee security monitoring, detection and response capabilities, including SOC services.
  • Define and operate the Incident Response framework, including cyber incidents, data breaches and crisis management.
  • Coordinate post-incident reviews, root cause analysis and continuous improvement actions.
  • Oversee vulnerability management, penetration testing, security assessments and remediation tracking.

Business & IT Enablement

  • Act as a trusted cybersecurity and privacy advisor for IT and business initiatives.
  • Ensure security requirements are embedded into IT projects, cloud migrations and digital initiatives.
  • Support audits, certifications and regulatory inspections

 

 

  • We would like you to have:

 

  • 6–10+ years of experience in cybersecurity, information security and privacy roles.
  • Proven experience combining security governance with hands-on technical and operational security.
  • Strong background in security architecture design across on-premises, cloud and hybrid environments.
  • Experience operating or coordinating SOC, incident response and security operations.
  • Solid knowledge of security frameworks and regulations (ISO 27k, NIST, ENS, GDPR, NIS2).
  • Experience working with external providers, MSSPs and consulting environments
  • Degree in Computer Engineering, Information Technology or similar.
  • Master’s degree in Cybersecurity, Information Security or Data Protection.
  • Relevant certifications are highly valued (ISO 27001, CISSP, CISM, CISA, CEH, GIAC or equivalent)
  • Availability to travel
  • Language: English Fluent and Spanish & German Desirable

 

 

 

 

ABOUT US

 

Neuraxpharm is a leading European specialty pharmaceutical company focused on the treatment of the central nervous system (CNS), including both psychiatric and neurological disorders. It has a unique understanding of the CNS market built over 40 years.

 

Neuraxpharm is constantly innovating, with new products and solutions to address unmet patient needs and is expanding its portfolio through its pipeline and acquisitions.

 

The company has c. 1,000 employees and develops and commercializes CNS products through a direct presence in more than 20 countries in Europe, two in Latin America, one in the Middle East, one in Australia, and globally via partners in more than 50 countries. Neuraxpharm is backed by funds advised by Permira.

 

Neuraxpharm manufactures many of its pharmaceutical products at Neuraxpharm Pharmaceuticals (formerly Laboratories Lesvi) in Spain.

 

Be part of the team where you can count on us to deliver:

 

  • Individual Professional development in a leading European pharmaceutical company with an ambitious international growth strategy.
  • Attractive remuneration according to the experience and skills provided.
  • An inspiring leadership team that drives performance.
  • An inclusive culture promoting diversity across the teams that will inspire you every day with a passionate, a dynamic, a result focused and an expert&excellent team!

 

 

Interested in knowing more?

 

Have a look at what Neuraxpharm culture represents and what makes us a great place to work: www.neuraxpharm.com

 

 

If you want to join us, this is your opportunity!

 

WE COUNT ON YOU, YOU COUNT ON US

 

At Neuraxpharm’s we ensure an inclusive, diverse, safe and respectful work environment for everyone in its organization. As we care for our people as much as we do for our patients, we are committed to guaranteeing a healthy, inclusive and equal opportunity workplace that enables employees to develop their professional potential, while ensuring their individual and collective satisfaction.

We are guided by a Diversity & Inclusion policy to ensure a business culture based on the principles of diversity, equality and inclusion. Our policy complies with European legal regulations and includes the necessary standards, processes and measures to be taken in the event of discrimination or harassment against any employee of the company.

We embrace and promote different cultures, gender identities, seniorities, ages and mindsets within the workplace, to bring different perspectives, styles and experiences to our business.