Senior Cyber Security Engineer, Athens, Hybrid

About the company

Company is one of Greece's largest research-centered pharmaceutical companies. With a portfolio of over 100 commercialized products reaching patients in more than 90 countries, the company operates in heavily regulated environments — GxP, FDA 21 CFR Part 11, EMA, GDPR — where data integrity and system security are not optional. This role sits within Corporate IT / IT Systems, Infrastructure & Security, and is the senior cybersecurity position on the team, reporting directly to the Head of IT Systems, Infrastructure & Security.

The role

You'll own the security posture of company's IT infrastructure — from policy and procedure through to hands-on penetration testing, incident response, and SOC coordination. This is an operational and strategic role: you'll define and enforce security standards, lead or support active incident containment, design security into new systems from the ground up, and report on the state of information security at a quarterly and annual level. Working under limited supervision, you'll be the person others on the technology team turn to for security guidance.

What you will bring

• Degree in Computer Science, Computer Engineering, Information Technology, or a related field
• 5+ years of hands-on experience in a cybersecurity role — vulnerability assessment, application security, or security systems engineering
• CISSP (Certified Information Systems Security Professional) or OSCP (Offensive Security Certified Professional) — this is a hard requirement, not a nice-to-have
• Proven experience deploying and operating vulnerability scanning infrastructure and conducting network penetration testing
• Proficient with firewalls, IDS/IPS, endpoint protection, data encryption, and network security protocols
• Practical knowledge of Microsoft Security tools and frameworks
• Strong command of CVE, CVSS, and OWASP methodology for vulnerability prioritization and remediation
• Able to write and modify scripts for vulnerability management automation
• Comfortable leading incident response efforts and coordinating containment across teams with SOC involvement
• Works independently: manages daily security tickets, prepares quarterly and annual reports, and drives improvements without close supervision

Nice to have

• Experience in pharmaceutical, healthcare, or other GxP-regulated environments 
• Familiarity with ISO 27001, NIST, or FDA 21 CFR Part 11 compliance requirements 
• Azure cloud security experience 
• Background in security awareness programme design and delivery

What's in it for you

You will join as senior cybersecurity lead on the team, with cross-functional reach across all divisions and authority to drive security policy and improvements You would be the expert for company’s corporate IT security that operate under FDA 21 CFR Part 11 and GxP simultaneously — this is genuinely complex, high-stakes security work especially for Greek market.

The company has been recognized five times as one of the Best Workplaces in Greece (Great Place to Work) and ranked 1st among Greek companies investing in R&D.

Work model: hybrid (4 office-1 remote), with private insurance. Salary range: 53000-63000€ gross/year