IT Global Services Compliance group within Philips assists business and Information Technology areas in identifying and evaluating key operational risks and controls, assessing & ensuring compliance with regulatory and corporate internal policies requirements, vendor compliance management and other compliance activities.
As an IT Compliance Manager, you will provide in-depth expertise in the areas of Information Technology risk management, internal controls, regulatory compliance specifically related to data, network, and infrastructure security and software architecture and development.
Define, execute and optimize Infrastructure and Operations Compliance Management Program.
In cooperation with Corporate Legal, translate regulatory requirements into workable procedures and ensure that these requirements are incorporated in contracts with service partners.
Work with different teams to gather compliance measurement metrics accurately for executive management dashboard and communicate on a timely manner.
Actively participate in SOX Compliance Program, which includes education / awareness program, assistance during self-assessment, management reporting, action plan documentation & tracking closure.
Perform Business Impact Assessment of new projects / systems / major changes.
Carryout vendor assessment on their compliance with contractual requirements. Prepare and communicate vendor compliance monthly report / dashboard to executive management.
Work with vendors to get an assurance reporting on a periodic basis and prepare & implement action plan for the identified gaps.
Support FDA Compliance Program through validation of system changes, training, and process improvements.
Support internal and external audits & reviews. Identify and submit mitigation evidences for audit issues. Work with action owners to define action plan and track them to closure.
Review of compliance domains (Security, Privacy, FDA, SOX, PCI, BCM etc.) for new cloud vendors prior to on boarding.
Support CISO office in periodic review of corporate policies and InfoSec improvement programs
Actively participate in Security Incidents investigation and remediation activities.
10+ years of experience in Information Security and/or IT Compliance area
Internal controls knowledge and understanding of core IT technologies and processes (e.g., network systems, operating systems, databases, change control tools and processes, computer systems operations, incident handling, information security, data backup, retention, and recovery, IT vendor management, asset management, disaster recovery, etc.)
Experience in the areas such as SAP System Security, SOX Compliance, FDA Compliance, Privacy, Cloud Security preferred
Bachelor’s degree in information technology, computer science, or other technology related area preferred; Master degree in related field a plus.
Certified IS Auditor (CISA)
Certified Information System Security Professional (CISSP)
Certified Information Security Manager (CISM)
Cloud Certified Security Professional (CCSP)
ISO 27001:2013 Lead Auditor
Why should you join Philips?
Working at Philips is more than a job. It’s a calling to create a healthier society through meaningful work, focused on improving 3 billion lives a year by delivering innovative solutions across the health continuum . Our people experience a variety of unexpected moments when their lives and careers come together in meaningful ways. Learn more by watching this video .
To find out more about what it’s like working for Philips at a personal level, visit the Working at Philips page on our career website, where you can read stories from our employee blog . Once there,you can also learn about our recruitment process , or find answers to some of the frequently asked questions .