Job Title

Product Security Officer (m/f/d)

Job Description

Position Summary:

As Product Security Officer you are the leading expert (and responsible) in your designated  business ,markets and functions for all activities related to information, products, services and solutions security, both internally and for the products and services we deliver to our customers.

The Product Security Officer works across various environments, markets and business teams to maintain and expand a world-class capability and culture around product security and ensures that formal regulations and certifications are kept up to date and adhered to.

Responsibilities:

• Report on Product Security Business specific Key Performance Indicators (KPIs);

• Working with Quality and Regulatory on Product Security process and procedures to be established or updated in the Quality Management System;

• Understand key market Regulatory requirements;

• Support Group Security to drive security standards throughout the business; 

• Champion the importance of product security during the life cycle of products;

• Support/localize information security training and awareness activity for product managers, program managers Quality and Regulatory and architect teams;

• Identify Security Risks throughout the Product Development Life Cycle;

• Work with Cross Functional teams to provide Security Requirements Guidance and Secure by Design Guidance based on a risk based approach;

• Ensure customer security requirements are being addressed within our products;

• Support business initiatives by providing solutions based on security best practices, regulatory and customer requirements;

• Conduct Product Security Risk Assessments for Business products and solutions;

• Supporting the development of risk mitigation and control plans for the product in the Business;

• Ensure that all Static Code Analysis, Penetration testing, and Vulnerability assessments are completed in the Product verification phase;

• Communicate risks and recommendations to mitigate risks to the senior management;

• Support the development of Customer security documentation/product labeling;

• Ensure compliance and act in accordance with Philips GBP - General Business Principles policies and Information Security;

• Support businesses in maintaining external business certifications and compliance with other (international) guidelines for information security

• Assist with business internal audits and overseeing and guiding external audits related to its products and services in the markets

• Assist with business internal audits and overseeing and guiding external audits related to its products and services in the markets

Education/Skills and Experience Requirements:

• A Master’s degree or equivalent combination of education and work experience

• Minimum 5 years of experience with Bachelor's OR Minimum 3 years of experience with Master's in areas such as Security Compliance, Risk Management, Cryptography, Product Security, Security Testing & Automation or equivalent.

• Information security management or audit qualifications such as CISM, CISSP, CISA, or CRISC;

• Experience in Health information security management (ISO 27799, ISO/IEC 80001, RMF for DoD, EU MDR, UL 2900)

• Excellent knowledge Laws and regulations on cybersecurity, privacy, data protection, and breach notification (GDPR, HIPAA, FDA Pre and Post Cybersecurity Requirements, ISO/TS 14265, 21CFR820, SB1386, etc.)

• Domain specific standards and approaches on privacy and product security

• Practical experience in highly regulated environment (FDA, SOx, Export, Privacy/GDPR, HIPAA)

• Excellent knowledge of ISO27001/2 and NIST Cybersecurity frameworks

• Experience working in a large global organization

• Excellent understanding of how different business units integrate into the strategic vision, business trends and the direction Security must take to support the business

• Strong interpersonal skills – communication, presentation, ability to influence and lead

• Motivated, positive attitude, and results-oriented

• German Citizen

• Fluent in German and English, additional languages - an advantage

• Willingness to travel as needed

About Philips

We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help improve the lives of others.

• Learn more about our business.
• Discover our rich and exciting history.
• Learn more about our purpose.
• Read more about our employee benefits.

If you’re interested in this role and have many, but not all, of the experiences needed, we encourage you to apply. You may still be the right candidate for this or other opportunities at Philips. Learn more about our commitment to diversity and inclusion here.

#LI-EU

# Onsite