Head of IT

Company based in Lausanne

Description

Cybersecurity, Compliance & Governance

• Own and lead the company's global cybersecurity and IT control framework, ensuring a consistent and strong security posture across all locations.
• Establish and maintain IT security, data governance, risk management, incident response, and SOX-relevant IT general controls.
• Ensure compliance with applicable regulatory and industry requirements, including SEC cybersecurity rules, SOX, GDPR, and relevant life-science regulations.
• Advise senior management and governance bodies on cybersecurity risks, control effectiveness, and mitigation strategies.
• Oversee cybersecurity operations, including internal capabilities and external service providers.
• Conduct regular risk assessments, audits, and testing activities, ensuring timely remediation and continuous improvement.
• Manage third-party IT and cybersecurity risks.
• Define, monitor, and report key cybersecurity and IT control metrics to management and governing bodies.

IT Management & Architecture

• Develop and implement a comprehensive IT roadmap aligned with the company's growth strategy and operational needs.
• Ensure the reliability, availability, and performance of IT systems supporting R&D, GxP-related operations, commercial activities, and corporate functions.
• Manage the planning, prioritization, and execution of IT initiatives, including budgeting and resource allocation.
• Develop, maintain, and evolve the enterprise architecture, with a strong focus on cloud-first environments and seamless system integration.
• Drive the adoption of modern technologies and lead systems integration across the organization.
• Partner closely with the Data Protection Officer and contribute to the overall data management strategy.
• Oversee managed service providers, setting clear expectations and ensuring delivery quality and cost efficiency.

Profile

• Minimum of 10 years of experience in IT management, with responsibility for enterprise-wide IT operations.
• Demonstrated experience setting up, scaling, or transforming IT functions in an international, matrixed organization.
• Proven experience in cybersecurity management and governance.
• Background in a regulated environment; experience in biotech, pharmaceutical, or healthcare sectors is a strong advantage.
• Experience within a publicly listed company, with solid understanding of SOX-related IT controls.
• Strong knowledge of IT governance models, cybersecurity frameworks (e.g., NIST, ISO), and data privacy regulations, including GDPR.
• Excellent communication skills, with the ability to engage effectively with senior leadership and governance bodies.
• Scale-up mindset with a proactive and pragmatic approach.
• Strong sense of ownership and accountability, comfortable taking responsibility for decisions.
• Hands-on manager who can think strategically while remaining close to execution.
• Quick thinker, adaptable, and able to operate effectively in a fast-paced, evolving environment.

Job Offer

• International and collaborative work environment.
• Attractive package