Job Title

Information Security Professional

You are responsible to:

• Develop and maintain robust security controls to protect Philips\'s business from security breaches/ incidents.
• Deliver Security demand from the business for security controls.
• Ensure operational performance to deliver security controls at optimum cost.
• Maintain a good relationship with key stakeholders including business, ISC, other IT departments & security teams to deliver on security requirements timely and effectively.
• Engage with auditors to acquire and retain certifications/ attestations
• Support audits by the timely response, escalation management, gap analysis, mitigation, etc.
• Lead internal reviews and assessments of solutions, processes, procedures, and practice.
• Conduct supplier Assessments to check their compliance with the security schedule
• Manage risk profile of IT Infrastructure
• Drive security education and awareness activities across the platform and Enterprise IT.
• Provide direction for Enterprise IT Security and Cybersecurity protection, and oversee Technology governance and policies.
• Develops Enterprise IT Security strategy, and awareness programs, and is able to define security architecture and security incident response.
• Provides strategic risk guidance for IT projects, including evaluation and recommendation of technical controls.
• Develops, maintains, and publishes up-to-date security policies, standards, and guidelines.
• Evaluates new cybersecurity threats and IT trends and develop effective security controls.
• Evaluates potential security breaches, coordinate the response, and recommend corrective actions.
• Define and report on information security KPIs.
• Provides Security Project Management and leadership to staff and external resources in support of established goals and objectives, improved efficiencies, and problem resolution.
• Maintains current knowledge of the industry and regulatory trends and developments for enterprise technology.
• Specialized in a number of Security domains such as incident response, operational assessment of security posture, manufacturing security, OT security, and general security management.
• Needs a thorough understanding of Security Management principles, Security governance principles, and Regulatory requirements
• Experience working with external stakeholders in law enforcement, audit, testing, investigations, and intelligence.
• Monitor, evaluate, and change the organization as needed to ensure success in managing Security
• Organize the preparation of the security status dashboards including presentation to executive management.
• Responsible for formulating long-term security policies for their domain
• Is responsible for the security schedules of major global contracts and the supplier integration and delivery of security services as contracted. This includes managing all service delivery components and coordinating supplier teams delivering services.

You are a part of Enterprise IT Security team working closely with Enterprise IT, IT Platform Leaders, Mfg., R&D, CIO, and CISO. To succeed in this role, you should have the following skills and experience Soft Skills

• Excellent English language communication skills, both verbal and written. Cross-cultural etiquette, customer-centric and collaborative mindset.
• Works autonomously within established procedures and practices.
• Good command of stakeholder management, judgment, conflict resolution, risk & mitigations.
• Provide leadership to the global team at the strategic, tactical, and operational level

Qualification

• Bachelor\xe2\x80\x99s or Master\xe2\x80\x99s degree in Information Technology and or commensurate experience in delivering security solutions.
• Overall Enterprise IT Security experience of 15+ yrs or more.
• Security Certifications such as CISSP, CISM, CISA, CIPP, etc. are preferred.
• Should have a senior level in the domain of Security & operations management
• Absolutely trustworthy with high standards of personal integrity (demonstrated by an unblemished career history, lack of criminal convictions, etc.), willing to undergo vetting and/or personality assessments to verify this if necessary
• Typically a background in technical security roles or operations, with a clear and abiding interest in security