Cybersecurity Architect - Cybersecurity Operations

Job description, responsibilities and duties

Siemens Healthineers is a leading global medical technology company with over 170 years of experience and 18,000 patents. More than 65,000 dedicated colleagues in over 70 countries are driven to shape the future of healthcare. We stand with our customers around the world to support them in delivering high quality care to their patients. An estimated 5 million patients across the globe benefit every day from our innovative technologies and services in the areas of diagnostic and therapeutic imaging, laboratory diagnostics and molecular medicine, as well as digital health and enterprise services. This is what truly matters to us. 

Overview:

Through your experience, knowledge of cybersecurity trends, technical abilities, and knowledge you will produce guidance on the protection roadmap, proof of concept and implementation of security solutions and technologies to protect Healthineers’ infrastructure and applications and significantly contribute to Healthineers’ security posture. You will assess the effectiveness of security tools and improve configurations.

You will also be involved in IT and Business projects helping in the design of the security protection model, on the implementation of security measures and ensuring the applications follow Information Security policies and controls, as well as industry best practices.

Tasks and Responsibilities:

The position will bring a mix of the following tasks and responsibilities:

• Provide technical leadership as we design and deploy our secure architectures. Drive implementation, innovation, and continuous improvement for Healthineers’ security.
• Review existing security capabilities, changes in the digital business and threat landscape. Define roadmap and strategy for security enhancements and implementation of solutions.
• Validate security configurations and utilize infrastructure security tools, including endpoint protection systems, cloud security configurations, network security technologies, etc. Assess security tool effectiveness and review configurations to request improvements and fine-tuning.
• Develop and document security reference architectures, design patterns, roadmaps, and other architectural artifacts aligned with policies, standards, and industry best practices to leverage security capabilities and implement Information Security controls in projects and operations.
• Design, develop and implement security solutions and tools to improve our security posture and protect our infrastructure and applications. Implement security improvements by assessing the current situation, evaluating trends, and anticipating requirements.
• Provide support to IT teams within projects to ensure the project is aligned with overall enterprise security architecture and security control requirements.
• Support and participate in the implementation and enforcement of secure design principles according to policies, standards, and patterns of Information Security.
• Participate in application and infrastructure projects to help defining the security model and adopt and promote a security-by-design approach with the different project stakeholders.
• Work closely with peers and colleagues across Infrastructure, Cybersecurity Operations and Governance to ensure that implementation and operations are aligned with security standards and best practices.
• Advise on incident containment measures through recommended initial actions in collaboration with the Incident Response team.

Qualifications:

• Knowledge of relevant technological aspects for this position. The ideal candidate should bring a mix of expertise in (a subset of) the following areas:
• Minimum 5 years of experience as a Cybersecurity Engineer, Architect, or related functional areas.
• Subject matter expertise with EPP and EDR technologies, Microsoft E5 security suite, operating systems, databases and middleware hardening, and security architecture. Desirable experience in configuration and administration of security devices from leading vendors.
• Solid understanding of security architecture best practices and implementation (e.g. security protocols, cryptography, authentication, authorization).
• Experience determining security requirements by evaluating business strategies and requirements following a risk-based approach, and describe associated data flows and security controls needed, interacting with different stakeholders to explain and enforce security measures.
• Interaction with the other technical teams is an essential part of this position and as such a broad array of technical knowledge would be beneficial.
• Experience working in security environments based on SaaS-based products.
• "Hands-on" security tools operation experience in a global production environment is desirable.
• Willingness to stay on top of the latest information technology security trends.
• Understanding of security governance and compliance frameworks, incident categories, incident responses, and timelines for responses.
• Knowledge of security frameworks and methodologies (for example, NIST, SANS, Mitre Att&ck, Cyber Kill Chain).

Additionally:

• STEM studies are highly desirable but might be traded-off for relevant experience.
• 3+ years of relevant work experience in Cybersecurity Operations of mid-size to large high-tech or healthcare organizations as well as working in geographically distributed teams is highly valuable.
• Relevant Industry Certifications such as SANS/GIAC (e.g. GCIA, GCIH, GNFA, GCFA), CompTIA Security+, CISSP, CISA, CISM as well as vendor-related certifications are desirable.
• Expected time travelling abroad: 10-20%.

Personality Traits

• Able to build long-lasting working relationships across different business areas and IT departments and foster technical collaboration and exchange.
• Able to work on a very tight schedule, while keeping track of tasks progress and deadlines.
• Able to structure complex problems and find practicable solutions to those.
• Team player but also able to work on an individual basis.
• Self-learning and curiosity to keep pace with the ever-evolving cybersecurity developments are highly appreciated.
• Advanced English and Communication skills: clear and concise communication; able to address stakeholders of different backgrounds and technical expertise.

Soft Skills Requirements

• Strategic Innovative Orientation (++)
• Leadership (+)
• Collaboration & Customer Orientation (+)
• Intercultural Sensitivity (+)
• Team Development (+)
• Ability to multi-task and handle multiple assignments simultaneously, while focusing on delivery quality (+)
• Ability to use initiative when needed (self-motivation and proactive attitude) (++)
• Excellent communication skills (both written and verbal) in English (++)
• Quick learner and aptitude to get into new technologies and architectures (++)

Required education, skills and personality requirements

Required education
University education (Bachelor's degree)
University education (Master's degree)
Postgraduate (Doctorate)

Language skills

We offer

• Adjustable standing desk as a standard
• MSDN license for each developer with prepaid access to AZURE
• Free access to PLURALSIGHT – the WBT platform
• Team building program - 2 days adventure offsite meeting for all employees every year, Christmas party, extra budget for team building events
• Participation on world famous IT conferences like Microsoft IGNITE for best employees
• Wide project portfolio in healthcare domain and job rotation within company (Cybersecurity, Artificial Intelligence, Healthcare IT services, …)
• Training and development program (business and product trainings, e-learning, language courses, soft skills trainings,…)
• Health program (contracted wellness providers, sport centers, salary reimbursement in case of illness)
• Retention program (work anniversary, life anniversary, additional pension plan, employee loans)
• Family care program (subsidy for newborns, maternity leave, kindergardens, summer camps)