Cyber Security Specialist

Job Title: Cyber Security Specialist

Location: Ambernath, India

Job Type: Full-Time

Reporting: CISO, Global IT Governance

About Polypeptide Group:

PolyPeptide Group AG and its consolidated subsidiaries (“PolyPeptide”) is a specialized Contract Development & Manufacturing Organization (CDMO) for peptide- and oligonucleotide-based active pharmaceutical ingredients. By supporting its customers mainly in pharma and biotech, it contributes to the health of millions of patients across the world. PolyPeptide serves a fast-growing market, offering products and services from pre-clinical to commercial stages. Its broad portfolio reflects the opportunities in drug therapies across areas and with a large exposure to metabolic diseases, including GLP-1. Dating back to 1952, PolyPeptide today runs a global network of six GMP-certified facilities in Europe, the U.S. and India. PolyPeptide’s shares (SIX: PPGN) are listed on SIX Swiss Exchange.

Position Overview:

We are seeking a diligent and detail-oriented Cybersecurity specialist to join our cybersecurity team. This role is focused on executing vulnerability scans, analyzing results, and coordinating mitigation efforts to reduce risk across the organization. The candidate should be hands-on with tools like NMAP/Zenmap and able to generate insightful visualizations and reports using Power BI. As the rest of the team is located in Europe (Sweden), flexibility in working times, and to be self-driven and efficient is highly rated. 

Key Responsibilities:

• Conduct regular vulnerability assessments using tools such as NMAP/Zenmap to identify security weaknesses in systems and applications.

• Analyze scan results, assess risk severity, and escalate critical findings to appropriate stakeholders for timely action.

• Collaborate with IT and application teams to ensure effective remediation of identified vulnerabilities and verify implemented fixes.

• Track and document remediation progress, ensuring closure of findings and proper risk mitigation.

• Develop and maintain reports and dashboards (preferably using Power BI) to monitor vulnerability trends, risk exposure, and key performance indicators (KPIs).

• Continuously improve and standardize vulnerability management processes and workflows, ensuring alignment with industry standards.

• Stay updated on the latest security vulnerabilities, exploits, and remediation techniques, and apply threat intelligence to prioritize risks.

• Work in coordination with the Security Operations Center (SOC) to address vulnerabilities associated with active threats.

• Participate in patch management and configuration compliance cycles, following security benchmarks such as CIS, NIST, or ISO 27001.

• Maintain an accurate and up-to-date asset inventory, ensuring comprehensive coverage in scanning and remediation activities.

• Contribute to the development of security awareness materials, particularly focused on vulnerability risks and secure practices.

• Create and maintain relevant documentation, SOPs, and playbooks for vulnerability scanning, triage, and response procedures.

• Support third-party risk assessments by evaluating external vendors' vulnerability exposure and security posture.

• Participate in red/blue team exercises and tabletop simulations to evaluate and improve vulnerability response readiness.

• Assist during audits and assessments, with occasional travel as required.

• Be available to contribute during U.S. operational hours at regular intervals, supporting cross-time-zone collaboration and incident response as needed.

Qualifications & Requirements:

• Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent hands-on experience). 

• 2–3+ years of experience in vulnerability management, security operations, or related fields. 

• Strong hands-on experience with NMAP/Zenmap for scanning and analysis. 

• Familiarity with vulnerability scoring systems like CVSS. 

• Working knowledge of vulnerability management lifecycle and remediation workflows. 

• Experience generating actionable reports and insights; Power BI experience is a plus. 

• Strong analytical and communication skills. 

• Strong skills in writing and speaking English 

Preferred Qualifications: 

• Certifications such as CompTIA Security+, CEH, or equivalent are desirable. 

• Experience with additional scanning tools (e.g., Nessus, Qualys) is a plus. 

• Familiarity with security standards and frameworks (e.g., ISO 27001, NIST); NIS2 knowledge is a plus. 

Why Join Us at Polypeptide Group:

Polypeptide Group offers an exciting opportunity to work at the forefront of peptide-based therapeutics, a rapidly growing and innovative segment of the pharmaceutical industry. As a key member of our Global IT Cyber Security and IT Compliance, you will have the opportunity to contribute to a company that is dedicated to the success of its clients and the advancement of peptide science. Join us and be part of a global organization that is shaping the future of life-saving therapies.