In this role, you have the opportunity to:
Lead and defend against contemporary 2019 threats and those likely to emerge in the future (e.g., data theft or breaches, espionage, sabotage, e-ransom, hacking, or availability cyber-attacks).
The Health Suite Digital Platform (HSDP) is a cloud-based health analytics and data storage solution, the Director of Security and Privacy should be experienced with cloud-based security, transfer of large volumes of data and large volume data transactions from many sources, as well as secure software development, network, and SaaS security. To identify requirements, write policy guidance and standards, and present them to management for endorsement. Establish technical or procedural applications pertinent policies within the organization. Facilitate business-wide communications and institutes measures to ensure information security awareness and compliance. Establish and maintain a high level of customer trust and confidence in the Health Suite Digital Platform (HSDP) from privacy and security perspectives.
You are responsible for
Leading the information security team to achieve the I.S. Strategy; influence peers and senior leaders in other business units to build a strong security culture.
Protecting data from compromise by either malicious or inadvertent means while preparing data security practices for the scrutiny that comes with life as a public company.
Maintaining current knowledge of the information security field and the changing threat landscape while implementing improvements in both technical security and compliance as related to intrusion detection and prevention, data loss prevention (DLP), security event & incident management (SEIM), authentication, access control, secure software development lifecycle (SDL/SDLC/SSDLC), vulnerability management, and risk reporting.
Setting information security strategic objectives and direction for all Health Suite Digital Platform (HSDP) technology platforms, aligning with global Philips standards and policies for privacy, security, and incident response.
Evangelizing the importance of information security to Philips, customers, and partners.
Articulating complex information security concepts to senior leaders and non-technical employees clearly while accurately portraying real risks and threats to the company.
Liaise with key large customers, regulators, and partners at the CIO/CISO level to communicate and negotiate security requirements and compliance.
Providing guidance, expertise, and solutions to business units implementing applications on Health Suite Digital Platform (HSDP). Think creatively about practical, elegant, cost-effective solutions for defending our customers against increasingly sophisticated cyber attackers.
Demonstrating ability to work under stress and maintain composure during high-stress situations.
Participating in the budgeting cycle to ensure that appropriate funds are allocated to security efforts.
Travel to global Philips locations, key customers, vendors, and trade conferences.
You are a part of
Working with the GM of the Philips HealthSuite Digital Platform (HSDP), the Head of Privacy and Security is a highly motivated and technically adept leader responsible for establishing, leading, and managing privacy and security for personal, sensitive, confidential, health data, and protected health information (ePHI) against internal and external threats.
To succeed in this role, you should have the following skills and experience
Bachelor’s/MS/PhD degrees in Engineering or related field, or an MBA
10+ years of hands-on experience in a senior global high-technology security leadership role, preferably a combination of risk management and information security.
Strong relationship building and influencing skills consistent with vision and the ability to innovate.
Strong verbal and written communication skills and public-speaking abilities.
Communicating industry standards, standard methodologies, testing techniques, the interpretation of assessment, and testing/certification results for customers.
Experience with Business Associate Agreements (BAA), staff training programs, security audits and certifications, HITRUST, CSA, soc 2, HIPAA, ISO27001/18, FedRAMP.
Expertise in technical and business environment, familiarity with national security standards, experience with business continuity, disaster recovery, auditing, risk management, vulnerability assessments, and cyber-security and incident management.
Current security certification CISSP or CISM, and privacy certification CIPP/US or CIPP/EU, or equivalents.
Preferred Skills to Excel
Advanced understanding in one or more of the following areas: Platform Security, Cloud Computing Security, Data Security, Network Security, Security Assessment, Security Governance, Enterprise Risk Management, Computer Security Incident Response, and Security Compliance Audits.
Information security technologies, markets, and vendors including firewall, intrusion detection, assessment tools, encryption, certificate authority, web, and application development.
Knowledge of risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies, and security cyber attack pathologies.
Familiarity with Federal Government policies and regulations.
Knowledge of systems security control assessment (SCA) requirements and processes to certify systems or acquire network authorization as well as Authorization to Operate (ATO).
US work authorization is a precondition of employment. The company will not consider candidates who require sponsorship for a work-authorized visa.
In return, we offer you
Sharpen your talents with new challenges in our dynamic organization. As a market-driven company, we’re used to listening to our customers & apply the same thinking to our employees. We offer a competitive salary, outstanding benefits and flexibility in a career with a positive and supportive atmosphere in which to develop your talents further.
Why should you join Philips?
Working at Philips is more than a job. It’s a calling to create a healthier society through meaningful work, focused on improving 3 billion lives a year by delivering innovative solutions across the health continuum at http://www.philips.com/b-dam/corporate/corporateblog/2016/PhilipsChronicDisease_5.jpg . Our people experience a variety of unexpected moments when their lives and careers come together in meaningful ways.
To find out more about what it’s like working for Philips at a personal level, visit the Working at Philips page at http://www.philips.com/a-w/careers/healthtech/working-at-philips/working-at-philips.html on our career website, where you can read stories from our employee blog at http://www.usa.philips.com/a-w/our-people/life-at-philips.html . Once there, you can also learn about our recruitment process at http://www.philips.com/a-w/careers/healthtech.html , or find answers to some of the frequently asked questions at http://www.philips.com/a-w/careers/healthtech/faq.html .
It is the policy of Philips to provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, color, citizenship, disability or perceived disability, ethnicity, gender, gender identity or expression, genetic information, marital or domestic partner status, military or veteran status, national origin, pregnancy/childbirth, race, religion, sexual orientation, or any other category protected by federal, state and/or local laws. Philips is an equal employment opportunity and affirmative action employer Disability/Veteran.
As an equal opportunity employer, Philips is committed to a diverse workforce. In order to ensure reasonable accommodation for individuals protected by Section 503 of the Rehabilitation Act of 1973, the Vietnam Veterans' Readjustment Act of 1974, and Title I of the Americans with Disabilities Act of 1990, applicants that require accommodation in the job application process may contact 888-367-7223, option 5, for assistance.