Chief Information Security Officer (CISO)

Chief Information Security Officer (CISO)

Shape how cyber and information security enables Lundbeck’s digital future.

At Lundbeck, we are accelerating our digital agenda to enable our business, patients, and global operations. This creates a unique opportunity to shape how information security is embedded in a modern pharmaceutical company, ensuring trust, compliance, and responsible innovation at scale.

We are looking for a Chief Information Security Officer (CISO) to lead this development and play a key role in strengthening how information security is understood, applied, and valued across the continued transformation of the IT organisation, called Enterprise Digital Enablement (EDE).

Your future team

As a member of the EDE leadership team, reporting to the CIO, you will contribute to the broader digital transformation, ensuring that information security is embedded in how we design, implement, and operate solutions across the company.

You will lead a team of 7 dedicated and highly professional employees.

Your new role

As CISO, you will define and drive Lundbeck’s global approach to cyber and information security, ensuring it enables both regulatory requirements and the company’s broader digital ambitions.

You will evolve the operating model towards clear governance, well-defined accountability, and strong integration into business and technology processes.

Your responsibilities will include:

• Redefining and implementing a forward-looking information security strategy aligned with Lundbeck’s digital agenda
• Improving governance, policies, and decision frameworks that enable consistency, scalability, and clear accountability
• Driving ownership of risks across business and system owners, supported by clear guardrails and oversight
• Leading regulatory and compliance efforts, including follow-up on NIS2, through a structured and cross-functional approach
• Building and advancing key information security capabilities across the organisation
• Increasing transparency of risks and security posture to enable prioritisation and decision-making
• Establishing and maintaining reporting to senior leadership and the Audit Committee on information security risks, posture, and compliance
• Strengthening detection and response capabilities in collaboration with relevant functions
• Acting as a trusted advisor and constructive challenger to senior stakeholders across EDE and the broader organisation
• Translating cyber and information security risks into business and financial impact to support executive decision-making and enterprise risk management
• Driving a strong security culture and human risk management approach, embedding secure behaviours across the organisation

What you bring to the team

You are an experienced CISO or senior information security leader with a strong track record of evolving security functions in complex, global environments.

You bring authority and credibility, combined with a collaborative and engaging approach. You are able to create followership and ensure that information security is understood, respected, and integrated into everyday decision-making.

You operate confidently at both strategic and operational levels and translate direction into tangible outcomes.

We imagine that you:

• Have extensive experience in senior information security roles, ideally in global and regulated environments
• Have successfully evolved governance, operating models, and accountability within the field
• Can establish credibility and influence at senior leadership level
• Understand how to embed information security into digital and technology transformations
• Are an engaging communicator who builds trust, clarity, and alignment across the organisation
• Are comfortable challenging and influencing stakeholders when needed
• Have experience driving cultural and behavioural change related to risk ownership
• Take a pragmatic, structured, and risk-based approach
• Demonstrate strong follow-through, consistently delivering on commitments and seeing initiatives through to completion

Our promise to you  

At Lundbeck, you will join a purpose-driven company with a clear digital ambition and a collaborative culture.

You will have the opportunity to shape how information security is positioned and practiced, working closely with EDE leadership and stakeholders across the organisation, with real influence on both direction and execution.

Lundbeck offers an inspiring workplace and innovative culture, where our curiosity, accountability and adaptability enable us to transform lives. We want to go faster and further on addressing the big unmet needs of people living with brain disorders. We offer rewarding careers with a mix of exciting tasks and development opportunities that are balanced with initiatives focused on your well-being.

We need every brain in the game, and at Lundbeck, we are committed to building a workforce that is as diverse as the people we serve. Read more about our commitment at www.lundbeck.com/global/about-us/our-commitment/diversity-and-inclusion.

Apply now

Can you see yourself in this role? We want to hear from you. Does this sound like your dream job, but you’re not sure if you meet all the requirements? We still want to hear from you! 

Upload your CV and include a few lines about your motivation for applying. We ask you not to include a photo or personal information that does not relate to your professional experience.

Applications must be received by 13.05.2026.

Learn more about us at www.lundbeck.com, LinkedIn or Instagram (@h_lundbeck).

#EveryBrainInTheGame

This job ad is intended for individuals seeking a career opportunity with Lundbeck. We engage with recruitment and search firms where needed on the basis of a written agreement, and we do not accept unsolicited requests of any kind. If you work as a recruitment consultant, you are kindly instructed to refrain from contacting Lundbeck or the hiring manager directly with suggested candidates. If you violate this policy, you do so at your own risk and for your own account, and Lundbeck will not assume any liability nor pay any associated fees resulting from such violation.