Job Title
Information Security LeadJob Description
Job title:
As the Information Security Lead, you will be responsible for developing, implementing, and overseeing a strategic security plan for the Information Technology (IT), Integrated Supply Chain (ISC) and Operational Technology (OT) environments. Your role is critical in protecting sensitive data, ensuring system integrity, and mitigating risks while maintaining compliance with industry regulations.
Your role:
Security Strategy & Risk Management
· Develop and execute a comprehensive IT & OT security strategy aligned with industry standards.
· Identify, assess, and mitigate security risks across the supply chain and operational environments.
· Ensure compliance with regulatory standards (e.g., HIPAA, FDA).
Security Architecture & Operations
· Design and maintain a secure architecture for IT and OT environments.
· Deploy firewalls, IDS solutions, and security tools (Nozomi Guardian, Armis, Claroty, Microsoft Defender for IoT).
· Establish and enforce a security policy framework for supply chain technologies.
Incident Response & Threat Management
· Develop and lead incident response plans to handle security threats.
· Conduct risk assessments and implement remediation plans without disrupting operations.
· Perform threat modeling (STRIDE, PASTA, DREAD) and cyberattack simulations to strengthen defenses.
· Analyze attack patterns using the MITRE ATT&CK framework and develop countermeasures.
Compliance & Governance
· Work with service owners to review and improve security controls.
· Define and track security KPIs to measure effectiveness.
· Collaborate with Philips’ Security Office to drive continuous security improvements.
Vendor & Stakeholder Management
· Conduct security assessments of suppliers to ensure compliance with security standards.
· Train employees and stakeholders on security best practices to foster a culture of security awareness.
You're the right fit if:
Qualification
· Bachelor’s or Master’s degree in Information Technology and or commensurate experience in delivering security solutions.
· Overall Enterprise IT Security experience of 10+ years preferred.
· Security Certifications such as CISSP, CISM, CISA, CIPP etc. preferred.
· Should have senior level in the domain of Security & operations management
· Absolutely trustworthy with high standards of personal integrity (demonstrated by an unblemished career history, lack of criminal convictions etc.), willing to undergo vetting and/or personality assessments to verify this if necessary
· Typically a background in technical security roles or operations, with a clear and abiding interest in security
Soft Skills
· Excellent English language communication skills, both verbal and written. Cross-cultural etiquettes, customer centric and collaborative mindset.
· Works autonomously within established procedures and practices.
· Good command on stakeholder management, judgement, conflict resolution, risk & mitigations.
· Provide leadership to the global team at strategic, tactical, and operational level
About Philips
We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help the lives of others.
• Learn more about our business.
• Discover our rich and exciting history.
• Learn more about our purpose.
If you’re interested in this role and have many, but not all, of the experiences needed, we encourage you to apply. You may still be the right candidate for this or other opportunities at Philips. Learn more about our commitment to diversity and inclusion here.
