Job Description Summary

#LI-Hybrid

Location: Prague, Czech Republic or Selangor, Kuala Lumpur

S2P SLM (Supplier Lifecycle Management) Cybersecurity Expert to design, implement, and maintain fraud-prevention and cybersecurity measures throughout our supplier lifecycle process. This role focuses on securing vendor onboarding, payment validation, and transactional workflows to mitigate risks such as payment redirection fraud, social engineering, and unauthorized data access. The ideal candidate will have strong technical expertise in AI-driven fraud detection, domain validation, and behavioral analytics, combined with a deep understanding of S2P processes and industry best practices.

 

Job Description

Key Responsibilities:

• Design & Implement Security Measures: Lead the introduction of technologies for domain validation, bank verification, and blacklist management, ensuring alignment with the organization’s S2P framework.

• Drive development of future proof AI-powered technologies to analyze vendor profiles, payment data, and email communications, identifying and preventing potentially fraudulent activity.

• Employ behavioral analytics to spot abnormal patterns (e.g., login anomalies, unusual communication methods) that may signal social engineering attacks.

• Develop and deliver training sessions or guidelines to educate internal teams and stakeholders on recognizing and preventing social engineering attempts.

• Implement and manage a centralized cybersecurity platform that consolidates alerts, provides real-time transaction monitoring, and reduces manual intervention.

• Monitor transactions and user behaviors to identify suspicious activities using advanced fraud detection tools and methodologies. Support in conducting thorough investigations of potential fraud cases, documenting findings and making recommendations for further action.

• Act as the cybersecurity subject matter expert for procurement, finance, and IT teams, ensuring all S2P activities meet security requirements.

Essential Requirements:

• Bachelor’s degree in Cybersecurity, Information Systems, or a related field (advanced degree preferred).

• 3–5 years of experience in cybersecurity, fraud prevention, or risk management, ideally within a financial or procurement setting.

• Proficiency in AI-driven fraud detection, domain validation, and automated payment verification tools.

• Familiarity with ERP, S2P, and Vendor Master Data Management systems (e.g., SAP, Oracle, Coupa) is preferred

• Knowledge of relevant regulations and compliance requirements (e.g., SOX, GDPR).

• Strong communication and stakeholder management skills.

• Analytical mindset with a proactive approach to identifying and mitigating security risks.

Benefits & Rewards (Applicable for Prague)

Monthly pension contribution matching your individual contribution up to 3% of your gross monthly base salary; Risk Life Insurance (full cost covered by Novartis); 5-week holiday per year; (1 week above the Labour Law requirement) ; 4 paid sick days within one calendar year in case of absence due to sickness without a medical sickness report; Cafeteria employee benefit program – choice of benefits from Benefit Plus Cafeteria in the amount of 17,500 CZK per year; Meal vouchers in amount of 105 CZK for each working day (full tax covered by company); Car Allowance; MultiSport Card, Employee Share Purchase Plan. Find out more about Novartis Business Services: https://www.novartis.cz/

Commitment to Diversity and Inclusion

Novartis is committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.

Accessibility and accommodation

Novartis is committed to working with and providing reasonable accommodation to all individuals. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the recruitment process, or in order to receive more detailed information about the essential functions of a position, please send an e-mail to [email protected] and let us know the nature of your request and your contact information. Please include the job requisition number in your message.

 

Skills Desired

Compliance And Controls, Critical Thinking, Data Cleansing / Normalization, E2E Process View, Embracing Change, Financial Accounting, Financial And Management Reporting, Interpersonal Savvy, Resilience, Tax