Regional Information Security Officer (Europe)

Your new company:

Founded in Germany more than 75 years ago, our client is one of the most important players in the MedTech industry, a solution provider and partner that brings cutting technology. Precision, innovation and creativity ar the three pillars that characterize their actions towards patient safety and industry progress.

With a presence in over 70 countries, more than 9,800 employees worldwide and a range of 10,000 + medical products our client is expanding the IT Engineering Center. Looking for the best talent available on the market.

Mission:

The Regional Information Security Officer Europe is responsible for executing the company vision, strategies, and tactics on a regional area level. For the area of responsibility, the RISO EU coordinates between the headquarters and the subsidiaries, aligning with top management, local Information Security Officers and the global Information Security department. The RISO EU supports and steers the local Information Security Officers with the implementation of Information Security Management System, assessing processes, infrastructure, and services according to accepted industry standards and best practices, and to evaluate the effectiveness and efficiency of the existing security measures. He or she will make recommendations for security improvements based on audit observations, identified risks and emerging threats.

As a Regional Information Security Officer (Europe) you will:

• Drive the information security vision, mission, strategy, and tactical solutions into operations of subsidiaries within the region.
• Communicate with Local ISOs to understand inefficiencies, maintaining adequate information security within subsidiaries.
• Support local ISOs with understanding their role, responsibilities and requirements defined by the Information Security Management System (ISMS) and related global information technology and information security standards.
• Collect feedback from local ISOs on areas of enhancement within the, Risk Management methodology and support information security processes.
• Collect and report information security Key Performance Indicators, Key Risk Indicators, and Operational Performance Indicators to appropriate stakeholders for review.
• Track the implementation of security controls according to defined global security baselines.
• Coordinate audit activities with subsidiaries within their region and the global information security organization.
• Manage the communication of information security reporting between subsidiaries and global information security organization.
• Assist Local ISOs with maintaining a risk management process for subsidiaries located within their region.
• Support local ISOs to manage incident response processes designed to maintain the identification, alerting and mitigation of security incidents at a local level.

What you need to succeed:

• 6+ years of relevant experience in an information security related field.
• Proven track record shaping information security governance at enterprise scale.
• One of the following certification or similar: CCISO, CISSP, CISM, CRISC, CIPP/US, HCISPP.