Cybersecurity Officer (CYSO) Southern Europe (m / f / d)

CYSO for Southern Europe is responsible to implement cybersecurity strategy and associated measures to ensure business continuity, adherence to necessary mandatory regulations and safe-guarding SHS business in Spain, Italy, Portugal and Greece. The CYSO shall orchestrate and lead necessary cybersecurity measures and activities and support the Zone Mgmt team on all matters related to cybersecurity.

Key Responsibilities :

• Understand the evolving local / regional and market specific cybersecurity developments to ensure implementation of the necessary SEU Zone and Country specific Cybersecurity strategy holistically, ensuring local business needs, evolving regulatory landscape and adherence to the global SHS Cybersecurity processes
• Oversee and actively drive implementation of the corporate cybersecurity strategy in given scope for SEU Zone and Countries (Spain, Portugal, Italy, Greece)
• Implement strategic priorities related to Cybersecurity according to Zone Strategic Business Plan and Hoshin-Kanri Breakthrough Targets
• Support identification of mission and business-critical assets, advise organization's leadership on security posture
• Define and ensure execution of portfolio security strategy for portfolio developed in SEU Zone and Countries
• Ensure implementation of cybersecurity requirements and local and global cybersecurity best practices for portfolio developed in the organization units in scope
• Manage and address cybersecurity risks in the portfolio and operations of the organization units in scope
• Lead local cybersecurity certification / compliance efforts for corresponding legal entities in countries in given scope
• Support customer requests for completion of security related documentation and related discussions
• Oversee and assure quality and accuracy of cybersecurity relevant information submitted to customer questionnaires or tenders
• Actively participate in cybersecurity incident and vulnerability handling procedure
• Provide expertise to the organization in scope about cybersecurity topics or liaise with other experts across Siemens Healthineers
• Monitor regulation and local legislation landscape to derive required actions, accordingly, liaise with respective authorities
• Participate and represent Siemens Healthineers in local security communities in the countries in given scope

Requirements :

• Master's degree in Cybersecurity, Information Security, Computer Science, Business Informatics, or a related field
• Relevant professional certifications (CISSP, CISM, CISA, GSLS) preferred
• Work experience >

7 years in cybersecurity or information security areas especially in assessing and implementing security measures

• Working knowledge and experience with National Cybersecurity Scheme (ENS) certification in Spain preferred

Skills :

• Strong knowledge of information security frameworks and standards (ISO 27001, Common Criteria), risk management, and regulatory requirements (NIS2, ENS, Cyber )
• Working knowledge of network, application security, secure software development principles and practices
• Working knowledge of principles and practices for secure operations (monitoring, incident response)
• Great communication skills, with the ability to interact effectively with stakeholders up to top leadership level, and communicate complex concepts to people in technical and non-technical roles
• Good analytical and problem-solving skills, ability to think strategically and manage multiple priorities
• Fluent in spoken and written English, also in discussions on technical topics

Cybersecurity Officer • Madrid, Madrid, Spain