Senior OT/IT Security Architect, Integrated Supply Chain

You will be responsible for developing, implementing, and overseeing a strategic security plan for the Information Technology (IT), Integrated Supply Chain (ISC), and Operational Technology (OT) environments. Your role is critical in protecting sensitive data, ensuring system integrity, and mitigating risks while maintaining compliance with industry regulations.

Your Responsibilities:

1. Security Strategy & Risk Management

• Develop and execute a comprehensive IT & OT security strategy aligned with industry standards.
• Identify, assess, and mitigate security risks across the supply chain and operational environments.
• Ensure compliance with regulatory standards (e.g., HIPAA, FDA).

• Design and maintain a secure architecture for IT and OT environments.
• Deploy firewalls, IDS solutions, and security tools (Nozomi Guardian, Armis, Claroty, Microsoft Defender for IoT).
• Establish and enforce a security policy framework for supply chain technologies.

• Develop and lead incident response plans to handle security threats.
• Conduct risk assessments and implement remediation plans without disrupting operations.
• Perform threat modeling (STRIDE, PASTA, DREAD) and cyberattack simulations to strengthen defenses.
• Analyze attack patterns using the MITRE ATT&CK framework and develop countermeasures.

• Work with service owners to review and improve security controls.
• Define and track security KPIs to measure effectiveness.
• Collaborate with Philips’ Security Office to drive continuous security improvements.

• Conduct security assessments of suppliers to ensure compliance with security standards.
• Train employees and stakeholders on security best practices to foster a culture of security awareness.

You're the right fit if you have:

• Bachelor’s or Master’s degree in Information Technology or equivalent experience in security solutions.
• 12+ years of enterprise IT security experience.
• Security certifications such as CISSP, CISM, CISA, CIPP preferred.
• Excellent English communication skills, both verbal and written. Cross-cultural etiquette, customer-centric, and collaborative mindset.
• Ability to work autonomously within established procedures.
• Strong stakeholder management, judgment, conflict resolution, and risk mitigation skills.
• Leadership experience with global teams at strategic, tactical, and operational levels.
• Up-to-date knowledge of industry and regulatory trends in enterprise technology.
• Specialization in security domains such as incident response, security posture assessment, and security management.
• Thorough understanding of Security Management and Governance principles.
• Good knowledge of MITRE Framework, IEC 62443, NIST 800 series.

Why Join Us?

• Make a significant impact by securing global supply chain operations.
• Work with leading cybersecurity tools in a dynamic environment.
• Collaborate with top security experts to drive innovation and protection.

If you’re passionate about IT & OT security, compliance, and safeguarding critical infrastructure, we’d love to hear from you!

How we work together:

We believe that we are better together than apart. For our office-based teams, this means working in-person at least 3 days per week. Onsite roles require full-time presence in the company’s facilities. Field roles are most effectively done outside of the company’s main facilities, generally at the customers’ or suppliers’ locations.

This role is an office-based role.

#LI-EU