About the Company

Through the work that we do, the team at Deciphex helps pharma to accelerate the process of essential drug development and helps cancer patients get timely and accurate diagnosis.

Founded in Dublin in 2017, Deciphex has scaled rapidly to a team of over 90 people and counting who are providing software solutions to address the pathology gap in research pathology and clinical areas. We have offices in Dublin, Exeter and Chicago and are expanding our team throughout the world.

We are software developers, clinical specialists, artificial intelligence engineers, operations professionals and so much more, all working as one team to support our customers and patients.

We are looking for highly motivated & individuals who are excited to take on challenges and value making a difference in their day-to-day work to join our team!

Read more about Deciphex here and more about our incredible team on our Careers Page here

The Information Security Specialist will play a pivotal role in fortifying the organisation's security infrastructure and ensuring compliance with industry standards and regulations. Your responsibilities will encompass a wide array of tasks aimed at bolstering defences against cyber threats and safeguarding sensitive information.

About this Role (Responsibilities):

Information Security Management System, ISMS

• Implementation and maintenance of certifications and accreditations such as ISO27001. coordination and all other information security related matters.
• Defining the role and scope of internal audit plans whilst developing appropriate testing strategies for compliance audits.
• Plan and coordinate business continuity activities including routine system penetration, vulnerability, disaster recovery testing with the test teams.
• Plan and coordinate periodic system access reviews
• Maintenance and compliance of security policies including document handling and control, supplier evaluations, access change requests etc
• Managing the ISMS risk register and coordinating periodic risk reviews. Identifying and implementing corrective actions based on identified risks and incidents.
• Reporting status of ISMS improvement plans, risks and previous actions and escalate issues and concerns to management.
• Coordination of incident management and reporting; ensuring that security incidents and breaches are identified,assessed and remediated
• Proactively generate reports related to information security KPI and identify problematic areas.
• Providing Information Management & IT Security awareness training.
• Assist colleagues to understand the company’s security standards and processes.
• Responding to client questionnaires, queries and audits regarding security and ISMS processes.

Security Posture

• Support the implementation of security standards or certifications required by local regulations
• Review current security posture to identify areas of weaknesses or potential security risks.
• Propose security controls to remediate identified gaps, while facilitating smooth ongoing operations and processes.
• Influence the security design and architecture by recommending optimal solutions to meet security and regulatory requirements for new or enhanced systems
• Work with our outsourced security operation centre (SOC), in driving continuous security improvements.

About You (Skills and Experience):

• Have a working knowledge of information security standards such as ISO27001.
• 3+ years' experience in the area of IT risk and technology and/or information security
• Firm commitment to staying informed/ abreast of emerging Cyber/Information security issues, industry trends such as Cloud facilities.
• A track record of taking ownership, being accountable and responsible.
• Highly organised, with a self-starting problem solving mindset, determination, curiosity and creativity to make a difference.
• Excellent relationship management, influencing and communication skills to liaise directly with our customer information security teams, regulators, auditors, business partners, and most importantly deal with confidential matters with our employees.
• Ability to work with IT colleagues and department heads to build information security into their plans and activities.
• Developed a good understanding of internal systems, governance and infrastructure to allow accurate completion of client security questionnaires.
• Capable of writing new policies and procedures.

• You will have shown leadership skills in previous positions and are keen to develop these skills further.
• You bring a sense of urgency to the work that you do and are able to execute on tasks by using your initiative.
• You enjoy innovating and bringing new ideas to the table.
• You like to have autonomy in your role and the independence to manage your own time and workload.
• You are highly collaborative and enjoy working with lots of different teams and people.
• You have great written and oral English language skills.

What are the benefits of working with Deciphex?

• A true sense of meaning in your work by contributing to better patient outcomes.
• The opportunity to work alongside a world-class high performing team in a hyper-growth startup environment with.
• A chance to work on exciting and challenging unique projects.
• Regular performance feedback and significant career growth opportunities.
• A flexible/ hybrid working model - most of our team work remotely and attend the office from time to time as required giving employees the autonomy to manage their own work life balance.
• Competitive salary with performance based annual increments.
• Competitive annual leave with an additional paid Christmas holiday.
• A highly collaborative and supportive multi cultural team.

Deciphex is an equal opportunities employer and we are committed to the principle of equality. All qualified applicants will be considered for employment without regard to age, race, religious beliefs, political views, gender identity, affectional or sexual orientation, national origin, family or marital status (including pregnancy), disability, membership of the travelling community or any other classification protected by applicable law.