Join to apply for the IT Risk & Compliance Analyst role at Galderma

Galderma is the emerging pure-play dermatology category leader, present in approximately 90 countries. We deliver an innovative, science-based portfolio of premium flagship brands and services that span the full spectrum of the fast-growing dermatology market through Injectable Aesthetics, Dermatological Skincare and Therapeutic Dermatology. Since our foundation in 1981, we have dedicated our focus and passion to the human body-s largest organ - the skin - meeting individual consumer and patient needs with superior outcomes in partnership with healthcare professionals. We understand the skin and are advancing dermatology for every skin story.

We look for people who focus on getting results, embrace learning, and bring a positive energy. They must combine initiative with a sense of teamwork and collaboration. Above all, they must be passionate about doing something meaningful for consumers, patients, and the healthcare professionals we serve every day. We aim to empower each employee and promote their personal growth while ensuring business needs are met now and into the future. Across our company, we embrace diversity and respect the dignity, privacy, and personal rights of every employee.

At Galderma, we actively give our teams reasons to believe in our bold ambition to become the leading dermatology company in the world. With us, you have the opportunity to gain new and challenging work experiences and create an unparalleled, direct impact.

Job Title: IT Risk & Compliance Analyst

Location: Cracow, Poland

We’re looking for an IT Risk & Compliance Analyst to help shape and secure our global IT landscape. In this role, you’ll work across departments to identify IT risks and policy deviations, assess vulnerabilities, and drive mitigation strategies. You’ll take ownership of risk management frameworks, produce actionable dashboards and reports, and ensure compliance with leading regulations like GDPR, HIPAA, and ISO standards. This is your chance to work hands-on with ServiceNow GRC and make a visible impact on a truly global scale.

Key Responsibilities

• Conduct regular IT risk assessments to identify vulnerabilities and security threats across global systems
• Evaluate and enhance the effectiveness of existing IT controls and recommend improvements
• Perform security audits and assessments of applications, networks, and IT infrastructure
• Develop and implement risk management frameworks, policies, and processes
• Maintain and update the IT risk register, and track remediation efforts to ensure timely resolution
• Collaborate with compliance and legal teams to interpret and implement evolving regulations (e.g., GDPR, HIPAA, GxP)
• Prepare and deliver clear, data-driven risk analysis reports, dashboards, and presentations to stakeholders
• Ensure the company’s IT environment aligns with industry best practices and regulatory requirements
• Document all assessments, controls, and mitigation actions with strong evidence and audit readiness

Skills & Qualifications

• Minimum 3 years of experience in IT risk management, ideally in the pharmaceutical or healthcare sector
• Hands-on experience with ServiceNow Integrated Risk Management (IRM)
• Understanding of regulatory frameworks such as GDPR, GxP, HIPAA, ISO 27001, NIST
• Excellent analytical and problem-solving skills with a structured, detail-focused mindset
• Strong communicator, able to collaborate effectively across global and cross-functional teams
• Fluent in English (written and spoken)

What We Offer In Return

• You will be working for an organisation that embraces diversity & inclusion and believes we will deliver better outcomes by reflecting the perspectives of our diverse customer base.
• You will receive a competitive compensation package with bonus structure and extended benefit package.
• You will be able to work in a hybrid work culture.
• You will participate in feedback loops, during which a personalized career path will be established.
• You will be joining a growing company that believes in ownership from day one where everyone is empowered to grow and to take on accountability.

Next Steps

• If your profile is a match, we will invite you for a first virtual conversation with the recruiter.
• The next step is a virtual conversation with the hiring manager.
• The final step is a panel conversation with the extended team.

Our people make a difference. At Galderma, you’ll work with people who are like you and with people who are different. We value what every member of our team brings. Professionalism, collaboration, and a friendly, supportive ethos are the environment for people to thrive and excel.

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Legal

Industries

• Pharmaceutical Manufacturing