Senior Security Architect – OT/IT & Supply Chain Systems

You will be responsible for developing, implementing, and overseeing a strategic security plan for the Information Technology (IT), Integrated Supply Chain (ISC), and Operational Technology (OT) environments. Your role is critical in protecting sensitive data, ensuring system integrity, and mitigating risks while maintaining compliance with industry regulations.

Your Responsibilities:

1. Security Strategy & Risk Management

• Develop and execute a comprehensive IT & OT security strategy aligned with industry standards.
• Identify, assess, and mitigate security risks across the supply chain and operational environments.
• Ensure compliance with regulatory standards (e.g., HIPAA, FDA).

• Design and maintain a secure architecture for IT and OT environments.
• Deploy firewalls, IDS solutions, and security tools (Nozomi Guardian, Armis, Claroty, Microsoft Defender for IoT).
• Establish and enforce a security policy framework for supply chain technologies.

• Develop and lead incident response plans to handle security threats.
• Conduct risk assessments and implement remediation plans without disrupting operations.
• Perform threat modeling (STRIDE, PASTA, DREAD) and cyberattack simulations to strengthen defenses.
• Analyze attack patterns using the MITRE ATT&CK framework and develop countermeasures.

• Work with service owners to review and improve security controls.
• Define and track security KPIs to measure effectiveness.
• Collaborate with Philips’ Security Office to drive continuous security improvements.

• Conduct security assessments of suppliers to ensure compliance with security standards.
• Train employees and stakeholders on security best practices to foster a culture of security awareness.

You're the right fit if you have:

• Bachelor’s or Master’s degree in Information Technology or equivalent experience in delivering security solutions.
• 12+ years of enterprise IT security experience.
• Security certifications such as CISSP, CISM, CISA, CIPP are preferred.
• Excellent English communication skills, both verbal and written. Cross-cultural etiquette, customer-centric, and collaborative mindset.
• Ability to work autonomously within established procedures and practices.
• Strong stakeholder management, judgment, conflict resolution, risk management, and mitigation skills.
• Leadership experience in a global team at strategic, tactical, and operational levels.
• Current knowledge of industry and regulatory trends in enterprise technology.
• Specialization in security domains such as incident response, security posture assessment, and security management.
• Thorough understanding of Security Management and Governance principles.
• Good knowledge of MITRE Framework, IEC 62443, NIST 800-series.

Why Join Us?

• Make a significant impact by securing global supply chain operations.
• Work with leading cybersecurity tools in a dynamic environment.
• Collaborate with top security experts to drive innovation and protection.

If you are passionate about IT & OT security, compliance, and safeguarding critical infrastructure, we would love to hear from you!

How we work together:

We believe that we are better together than apart. For our office-based teams, this means working in-person at least 3 days per week. Onsite roles require full-time presence at the company’s facilities. Field roles are most effectively performed outside of the main facilities, generally at customer or supplier locations.

This role is an office-based position.

#LI-EU