Cybersecurity Officer - Americas

Siemens Healthineers

36d

About The Position

Join us in pioneering breakthroughs in healthcare. For everyone. Everywhere. Sustainably. Our inspiring and caring environment forms a global community that celebrates diversity and individuality. We encourage you to step beyond your comfort zone, offering resources and flexibility to foster your professional and personal growth, all while valuing your unique contributions. Responsible for driving the Cybersecurity program for the Americas Region (comprising North America and Latin America). Collaborates with other CYSO’s and global CyberSecurity team across Siemens Healthineers to drive alignment of cybersecurity standards and accelerate product adoption. Ensures implementation of the Cybersecurity strategy in its holistic approach (related to Customers and Portfolio as well as Enterprise IT) Program Management Advise on roles, resources and budget management needs to support the program Drive stakeholder engagement and reporting within the region, as well as coordination with Corporate Cybersecurity Guide and grow cybersecurity expertise across the Region Customer Enablement Oversee cybersecurity support for sales, contract negotiations and customer due diligence Advise on cybersecurity risks and requirements for any proposed digital services Monitor and promote cybersecurity across the customer fleet (e.g. patching, credential management) Support locally required certifications (e.g. DoD ATO, FedRAMP, TxRAMP) Drive community engagement activities (e.g. Americas Customer Advisory Board) Guide Cybersecurity Governance implementation (CYSMS) and process improvement Monitor and the regulatory and legislative landscape to derive required actions and ensure liaison with authorities Advise on Cybersecurity risk management, aligned with ERM, managing risks in the portfolio and operations of the organization Manage audit findings and policy exceptions Drive cybersecurity third party risk management Enterprise Protection Oversee cybersecurity of business managed IT (e.g. local applications and any locally developed digital solutions) Drives cybersecurity awareness activities including topics such as data protection, phishing awareness and incident reporting Incident Management Partner closely with the CSIRT (Cybersecurity Incident Response Team) and Corporate Cybersecurity in supporting incidents that impact the Americas – coordinating locally with legal and communications on understanding the customer impact and response, as well as any local regulatory reporting requirements 20% travel expected

Requirements

Bachelor’s degree in Computer Science, Information Technology, or a related field.
10+ years experience in a related field

Nice To Haves

Relevant certifications such as Certified Information Systems Security Professional (CISSP) preferred

Responsibilities

Driving the Cybersecurity program for the Americas Region (comprising North America and Latin America)
Collaborates with other CYSO’s and global CyberSecurity team across Siemens Healthineers to drive alignment of cybersecurity standards and accelerate product adoption.
Ensures implementation of the Cybersecurity strategy in its holistic approach (related to Customers and Portfolio as well as Enterprise IT)
Advise on roles, resources and budget management needs to support the program
Drive stakeholder engagement and reporting within the region, as well as coordination with Corporate Cybersecurity
Guide and grow cybersecurity expertise across the Region
Oversee cybersecurity support for sales, contract negotiations and customer due diligence
Advise on cybersecurity risks and requirements for any proposed digital services
Monitor and promote cybersecurity across the customer fleet (e.g. patching, credential management)
Support locally required certifications (e.g. DoD ATO, FedRAMP, TxRAMP)
Drive community engagement activities (e.g. Americas Customer Advisory Board)
Guide Cybersecurity Governance implementation (CYSMS) and process improvement
Monitor and the regulatory and legislative landscape to derive required actions and ensure liaison with authorities
Advise on Cybersecurity risk management, aligned with ERM, managing risks in the portfolio and operations of the organization
Manage audit findings and policy exceptions
Drive cybersecurity third party risk management
Oversee cybersecurity of business managed IT (e.g. local applications and any locally developed digital solutions)
Drives cybersecurity awareness activities including topics such as data protection, phishing awareness and incident reporting
Partner closely with the CSIRT (Cybersecurity Incident Response Team) and Corporate Cybersecurity in supporting incidents that impact the Americas – coordinating locally with legal and communications on understanding the customer impact and response, as well as any local regulatory reporting requirements