Security Engineer - Governance Risk and Compliance GRC London Lausanne

Senior Security Engineer Governance Risk and Compliance (GRC) London Lausanne

We are here to advance human health by reimagining drug discovery with the power and pace of artificial intelligence.

The future is coming. A future enabled and enriched by the incredible power of machine learning. A future in which diseases are curtailed or cured by better and faster drug discovery.

Our values exist in service of that future. We think theyll help us bring it closer too.

Come and be part of an interdisciplinary team driving groundbreaking innovation and play a meaningful role in contributing towards us achieving our ambitious goals while being a part of an inspiring and collaborative culture.

The world we want tomorrow is the one were building today. It starts with the culture at this company. It starts with you.

About Iso

Isomorphic Labs (IsoLabs) was founded in 2021 and is led by Sir Demis Hassabis. Our aim is to usher in a new era of biomedical breakthroughs and find cures for some of humanitys devastating diseases.

Our foundations are built on the success of Google DeepMinds AlphaFold but we didnt stop there! We are continuing to develop and implement stateoftheart technologies as we move towards our goal of dramatically accelerating and improving the process of designing and bringing new medicines to patients.

We have built a worldleading drug design engine comprising foundational AI models that are capable of working across multiple therapeutic areas and drug modalities. The company is continually innovating on model architecture and developing cuttingedge capabilities to advance rational drug design.

Your impact

As a Senior Security Engineer GRC you will play a crucial role in establishing and maintaining a robust security governance framework at Isomorphic Labs. Your work will be instrumental in ensuring the organisations compliance with industry standards and regulations enabling research programs and building trust with key partners. You will contribute to fostering a culture of security awareness and operational excellence directly impacting the companys ability to achieve its ambitious goals.

What you will do

• Spearhead the development of IsoLabs Information Security Management System (ISMS) and guide the organisation through ISO 27001 certifications.
• Implement and continuously improve security policies and technical controls ensuring alignment with industry best practices and operational excellence.
• Monitor and maintain compliance with regulations thirdparty requirements and internal security policies identifying and proactively addressing potential gaps.
• Partner with TechOps Data Engineering Legal and Product teams to implement robust data governance solutions encompassing data labelling access control audit trails deidentification and data lifecycle management.
• Lead Infosec projects in collaboration with Machine Learning and Drug Discovery teams.
• Develop and execute internal audit programs and effectively respond to external audits and due diligence requests.
• Leverage your technical knowledge to define risk management plans secure vendor solutions and meet third party requirements.
• Actively contribute to IsoLabs security awareness program fostering a strong security culture throughout the organisation.
• Manage Vendor Security Assessment operations and drive continuous improvement of these processes.
• Support the implementation and enhancement of Incident Management and Vulnerability Management policies.
• Partner with Legal and Privacy teams to ensure security practices align with legal and regulatory requirements particularly concerning data privacy and protection.
• Establish and report on Key Performance Indicators (KPIs) to demonstrate the effectiveness of security operations on business outcomes.

Skills and qualifications

Essential:

• Strong IT and cybersecurity technical background including experiences with major cloud platforms.
• Demonstrated experience developing and implementing security policies standards and procedures.
• Solid understanding of risk management frameworks and industryspecific compliance requirements (e.g. ISO/IEC 27001 GDPR HITRUST).
• Excellent communication and interpersonal skills with the ability to explain complex security concepts to diverse audiences.
• Practical experience with data governance and privacy controls including data classification audit trail deidentification and data lifecycle management.
• Strong analytical and problemsolving skills with the ability to differentiate true risks from overcompliance develop creative solutions to balance business needs with risk mitigation.
• Extensive experience with external audits and leading certification processes.
• Proven ability to act as a project manager and collaborate effectively with crossfunctional teams.
• Demonstrated ability to effectively manage and prioritise multiple projects simultaneously meeting deadlines and delivering results.

Nice to have:

• Experience building and operating a Trusted Research Environment and/or Trusted ML Environments.
• Experience in the BioTech and Pharma industry.
• Experience streamlining Vendor Security Assessments (VSAs).
• Familiarity with the unique challenges of a fastpaced highgrowth environment.
• Solid understanding of security in a computational and AIfirst environment.
• Experience protecting sensitive scientific and personal data.
• Relevant certifications (e.g. CISM CISA CISSP ISO 27001 Lead Implementer/Auditor).
• Experience with security automation tools and technologies.
• Contribution to opensource security projects or participation in security communities.
  
  

Culture and values

We are guided by our shared values. Its not about finding people who think and act in the same way. These values help to guide our work and will continue to strengthen it.

Thoughtful
Thoughtful at Iso is about curiosity creativity and care. It is about good people doing good rigorous and futuremaking science every single day.

Brave
Brave at Iso is about fearlessness but its also about initiative and integrity. The scale of the challenge demands nothing less.

Determined
Determined at Iso is the way we pursue our goal. Its a confidence in our hypothesis as well as the urgency and agility needed to deliver on it. Because disease wont wait so neither should we.

Together
Together at Iso is about connection collaboration across fields and catalytic relationships. Its knowing that transformation is a group project and remembering that what were doing will have a real impact on real people everywhere.

Creating an extraordinary company

We believe that to be successful we need a team with a range of skills and talents. Were building an environment where collaboration is fundamental learning is shared and every employee feels supported and able to thrive. We value unique experiences knowledge backgrounds and perspectives and harness these qualities to create extraordinary impact.

We are committed to equal employment opportunities regardless of sex race religion or belief ethnic or national origin disability age citizenship marital domestic or civil partnership status sexual orientation gender identity pregnancy or related condition (including breastfeeding) or any other basis protected by applicable law. If you have a disability or additional need that requires accommodation please do not hesitate to let us know.

Hybrid working

Its hugely important for us to share knowledge and build strong relationships with each other and we find it easier to do this if we spend time together in person. This is why we follow a hybrid model and would require you to be able to come into the office 3 days a week (currently Tuesday Wednesday and one other day depending on which team youre in). If you have additional needs that would prevent you from following this hybrid approach wed be happy to talk through these if youre selected for an initial screening call.

Please note that when you submit an application your data will be processed in line with our .

>> Click to view other open roles at Isomorphic Labs