IT Security Manager

Your role:
As a IT Security Manager , you will be responsible for developing, implementing and monitoring a strategic, comprehensive IT security program while ensuring compliance with regulatory requirements, and mitigating risks to the organization's information assets. Information Security Lead will provide the vision and leadership necessary to manage the risk to the platform assigned and will ensure business alignment, effective governance, system and infrastructure availability, integrity and confidentiality.

You are responsible to:

• Develop and maintain robust security controls to protect Philips's business from security breaches/ incidents.

• Deliver Security demand from the business for security controls.

• Ensure operational performance to deliver security controls at optimum cost.

• Maintain a good relationship with key stakeholders including business, ISC, other IT departments & security teams to deliver on security requirements timely and effectively.

• Engage with auditors to acquire and retain certifications/ attestations

• Support audits by the timely response, escalation management, gap analysis, mitigation etc.

• Lead internal reviews and assessments of solutions, processes, procedures and practice.

• Conduct supplier Assessment to check their compliance with security schedule

• Manage risk profile of IT Infrastructure

• Drive security education and awareness activities across platform and Enterprise IT.

• Provide direction for Enterprise IT Security and Cybersecurity protection, and oversee Technology governance and policies.

• Develops Enterprise IT Security strategy, and awareness programs, be able to define security architecture, and security incident response.

• Provides strategic risk guidance for IT projects, including evaluation and recommendation of technical controls.

• Develops, maintains and publishes up-to-date security policies, standards and guidelines.

• Evaluates new cybersecurity threats and IT trends and develop effective security controls.

• Evaluates potential security breaches, coordinate response, and recommend corrective actions.

• Define and report on information security KPIs.

• Provides Security Project Management and leadership to staff and external resources in support of established goals and objectives, improved efficiencies, and problem resolution.

• Maintains current knowledge of the industry and regulatory trends and developments for enterprise technology.

• Specialized in a number of Security domains such as incident response, operational assessment of security posture, manufacturing security, OT security and general security management.

• Needs a thorough understanding of Security Management principles,  Security governance principles and Regulatory requirements

• Experience working with external stakeholders in law enforcement, audit, testing, investigations, and intelligence.

• Monitor, evaluate and change the organization as needed to ensure success in managing Security

• Organize the preparation of the security status dashboards including presentation to executive management.

• Responsible for formulating long-term security policy for their domain

• Is responsible for the security schedules of major global contracts and the supplier integration and delivery of security services as contracted.  This includes managing all service delivery components and coordinating supplier teams delivering services.

You're the right fit if:

• Bachelor’s or Master’s degree in Information Technology and or commensurate experience in delivering security solutions.

• Overall Enterprise IT Security experience of 15+ yrs or more.

• Security Certifications such as CISSP, CISM, CISA, CIPP etc. are preferred.

• Should have a senior level in the domain of Security & operations management 

• Absolutely trustworthy with high standards of personal integrity (demonstrated by an unblemished career history, lack of criminal convictions etc.), willing to undergo vetting and/or personality assessments to verify this if necessary

• Typically a background in technical security roles or operations, with a clear and abiding interest in security

How we work together
We believe that we are better together than apart. For our office-based teams, this means working in-person at least 3 days per week.
Onsite roles require full-time presence in the company’s facilities.
Field roles are most effectively done outside of the company’s main facilities, generally at the customers’ or suppliers’ locations.

This role is an office role.

About Philips
We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help the lives of others.
• Learn more about our business.
• Discover our rich and exciting history.
• Learn more about our purpose.
If you’re interested in this role and have many, but not all, of the experiences needed, we encourage you to apply. You may still be the right candidate for this or other opportunities at Philips. Learn more about our culture of impact with care here.

#EEIT