Information Security Professional

Position Overview for an Information Security Professional

The ISEC Coordinator has a very good expertise in Information Security and Data Protection. He or she provides support as well as guidance and advice for the protection of data, systems and the organization for the Business. He or she is also responsible for the ISEC request handling and acts as an interface between the Business and ISEC. He or she functionally reports to the SHS ISEC Organization.

Tasks and Responsibilities
- Provide guidance, procedural advice and general information expertise in Information Security and Data Protection for the Business on an expert level
- Permanently establish, maintain and ensure adherence of Information Security policies, guidelines, programs and standards in the Business
- Ensure the fulfillment and adherence of internal and external compliance regulations
- Act as interface between ISEC and Business (includes communication and representation) across all organizational levels
- Act as a single point of contact for any Information Security escalation
- Establish and manage tight relationship with the Business and SHS Cybersecurity Organization
- Monitor and regularly report on Information Security status
- Responsible for ISEC Resource Management in alignment with SHS ISEC (includes ensuring a enough ISEC Contacts to cover his or her area of responsibility)
- Develop risk-based security concepts based on regional as well as site-based requirements
- Tracking (includes addressing and solving) ISEC vulnerabilities and tasks within the ISEC organization
- Delivering KPIs for Performance Management
- Supports the Business responsibility in the Asset Classification Process (ACP) to identify Business critical Assets in the area of Data and Information as well as Applications and Infrastructure.
- Supports the Exception Handling and Vulnerability Management process for Business owned services in cooperation with the local IT Service Provider as an escalation point.
- Tracks Security training participation
- Is actively participating in the global Information Security Community

Required Knowledge/Skills, Education, and Experience
- BE / B.Tech / MCA with 7 to 9 years of IT experience with an emphasis on Information Security
- Good knowledge of Business Areas and Regions within Healthcare and their security requirements
- Very good knowledge of data privacy as well as Information Security and the corresponding guidelines and policies in the area of responsibility
- Several years of expertise in Information Security
- Knowledge in technical but also management-oriented guidance
- Intercultural experience
- Experience in Project Management
- Experience in Contract and Service Management as well as KPI reporting
- Experience in Internal and external provider and supplier management
- Expert in the Risk evaluation process as well as Risk Management
- Expert for the asset classification process (ACP) in the area of responsibility

Preferred Knowledge/Skills, Education, and Experience
- Business Results Orientation (+)
- Strategic Innovative Orientation (o)
- Leadership (+)
- Collaboration & Influencing (++)
- Customer Orientation (+)
- Change Management (0)
- Intercultural Sensitivity (++)
- Value Orientation (++)
- Team Development (0)
- Ability to multi-task and handle multiple assignments simultaneously, while focusing on delivery quality
- Ability to use initiative when needed
- Excellent communication skills (both written and verbal)
- Quick learner and efficient ability to get into new technologies and architectures
- Proactive Management
- Good coordination, planning and time management skills

**Organization**: Siemens Healthineers

**Company**: Siemens Healthcare Private Limited

**Experience Level**: Experienced Professional

**Full / Part time**: Full-time