IT GRC Expert

Founded in 1969, Pharmathen has grown to become one of the largest, vertically integrated developers of complex drug delivery technologies and is among the top 50 pharmaceutical research companies in Europe.

The company has one of the most extensive and advanced pipelines of long acting injectables (LAI), sustained release and ophthalmic formulations.

Pharmathen’s highly diversified portfolio consists of over 90 commercialized products, which are produced in its US FDA and EU-approved manufacturing facilities in Greece, serving 250 customers and accessed by patients in more than 90 countries worldwide.

Pharmathen proudly employs more than 1,600 people from over 28 different nationalities, with 54% of its total workforce and 66% of its Research Operations Team being female. The company’s enduring success is attributed to a passion for creativity, strong ethics, and the dedication of its people, who share a commitment to the company's vision of making a difference in people’s lives.

Due to continuous growth and expansion, Pharmathen Pharmaceuticals offers a great opportunity for career development and is seeking to recruit an IT GRC Expert for the Corporate IT team in our Marousi premises.

As an IT GRC Expert, you will be responsible for developing, implementing, and managing Governance, Risk, and Compliance strategies within the IT department by ensuring that IT processes, policies, and systems align with regulatory requirements (e.g., FDA, EMA) and internal standards.

More particularly:

What you will do:

• Develop and implement IT governance frameworks that align with business objectives and regulatory requirements
• Ensure IT policies and procedures are up-to-date and in compliance with global pharmaceutical regulations
• Establish and monitor Key Performance Indicators (KPIs) to measure the effectiveness of IT governance processes
• Facilitate audits and ensure all documentation meets compliance standards
• Identify, assess, and mitigate IT risks across systems, applications, and operations, especially those that impact regulated environments
• Develop and maintain the IT risk register, prioritizing risks based on potential business impact
• Collaborate with cross-functional teams to perform risk assessments and ensure appropriate risk controls are in place
• Establish business continuity and disaster recovery plans
• Ensure IT systems and processes comply with relevant pharmaceutical industry regulations
• Stay updated on new regulations and compliance trends affecting the pharmaceutical industry
• Conduct regular IT compliance audits and assessments to ensure continuous adherence to standards
• Implement and maintain compliance frameworks
• Act as the main point of contact for IT governance, risk, and compliance matters within the organization
• Work closely with internal teams to ensure alignment on compliance objectives
• Provide guidance and training to IT team and business stakeholders on GRC topics
• Communicate findings and recommendations from audits and risk assessments to senior management

Requirements

The ideal candidate should have:

• Bachelor’s or master’s degree in Computer Science, Information Systems, or a related field
• Professional certifications such as CISA, CISM, CISSP are highly preferred
• 5+ years of experience in IT GRC, IT compliance, or IT risk management, preferably within the pharmaceutical or healthcare sector
• Excellent command of the English language

Job-Specific Skills:

• Strong knowledge of IT governance frameworks (COBIT, ITIL)
• Expertise in risk management frameworks (ISO 31000, NIST Risk Management Framework)
• Familiarity with compliance standards like GDPR, 21 CFR Part 11, GxP, and other pharmaceutical industry-specific regulations
• Hands-on experience with GRC tools such as RSA Archer, SAP GRC, or MetricStream
• Ability to conduct IT risk assessments, vulnerability scanning, and internal/external audits
• Experience in managing the IT lifecycle within regulated environments (validation, change management)
• Excellent analytical skills to assess risks and identify vulnerabilities, coupled with the ability to design effective mitigation strategies
• Ability to meet tight deadlines, while ensuring quality and compliance
• Detail-oriented mindset to interpret and implement complex regulations and standards
• Strong communication skills to explain technical GRC concepts to non-technical stakeholders and senior leadership
• Ability to collaborate effectively with cross-functional teams

Benefits

What you'll gain:

• Involvement in a high-caliber, team-oriented and dynamic atmosphere
• Exposure to challenging business issues and practices
• Great opportunity to leverage and develop your business knowledge and skills

Join our team and experience the unique Pharmathen’s culture that gives you the opportunity to innovate, to make decisions, to achieve your own potential and to chart your own career.

Pharmathen is an equal opportunity employer. We welcome applications regardless of gender, race, age, religion, sexual orientation, and national origin.