Key Responsibilities
Security Architecture & Implementation:
• Design, implement, and maintain enterprise security solutions, including firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM solutions, and endpoint security.
• Develop and enforce security policies, procedures, and best practices for network, cloud, and application security.
• Evaluate and integrate new security technologies to enhance the organization’s security posture.
• Work closely with IT teams to ensure secure system configurations and adherence to security policies.
Threat Management & Incident Response:
• Monitor security systems for vulnerabilities, threats, and incidents, and take appropriate action to mitigate risks.
• Conduct forensic investigations and provide incident response to security breaches, including root cause analysis and remediation.
• Develop and execute penetration testing, vulnerability assessments, and security audits.
• Collaborate with SOC teams and other stakeholders to improve threat detection and response capabilities.
Compliance & Risk Management:
• Ensure compliance with industry standards and regulations such as ISO 27001, NIST, CIS, HIPAA, GDPR, and PCI-DSS.
• Conduct risk assessments and provide recommendations to mitigate cybersecurity risks.
• Maintain documentation for security policies, risk assessments, and compliance reports.
Collaboration & Training:
• Provide security guidance and training to IT teams and end-users to promote security awareness.
• Collaborate with cross-functional teams to embed security into system development lifecycles (SDLC).
• Lead security projects and mentor junior security engineers.
Required Skills & Qualifications
Technical Skills:
• Strong knowledge of network security protocols (e.g., TCP/IP, SSL/TLS, VPN, DNS, DHCP).
• Hands-on experience with firewalls, IDS/IPS, SIEM, EDR/XDR, and DLP solutions (e.g., Palo Alto, Cisco ASA, Splunk, Sentinel, CrowdStrike).
• Expertise in cloud security (AWS, Azure, Google Cloud) and cloud-native security tools.
• Proficiency in encryption, authentication, and identity management (IAM, PAM, MFA, SSO, OAuth).
• Experience with secure coding practices and application security testing (e.g., OWASP, SAST/DAST).
• Knowledge of DevSecOps practices and security automation using scripting (Python, Bash, PowerShell).
• Familiarity with container security (Docker, Kubernetes) and Infrastructure-as-Code (Terraform, Ansible).
Soft Skills:
• Strong analytical and problem-solving abilities.
• Excellent communication and collaboration skills.
• Ability to work under pressure and handle security incidents effectively.
• High attention to detail and ability to adapt to evolving security threats.
Education & Experience:
• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Systems, or a related field.
• 5+ years of experience in cybersecurity engineering, security architecture, or related roles.
• Industry certifications such as CISSP, CISM, CEH, OSCP, GIAC, CCSP (preferred but not mandatory).Preferred Experience:
• Experience in zero-trust architecture and zero-trust network access (ZTNA).
• Familiarity with security frameworks like MITRE ATT&CK, NIST Cybersecurity Framework, and CIS Controls.
• Hands-on experience with threat hunting and cyber threat intelligence (CTI) tools
About Philips
We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help the lives of others.
• Learn more about our business.
• Discover our rich and exciting history.
• Learn more about our purpose.
If you’re interested in this role and have many, but not all, of the experiences needed, we encourage you to apply. You may still be the right candidate for this or other opportunities at Philips. Learn more about our commitment to diversity and inclusion here.
#LI-PHILIN
#LI-Onsite
#LI-EU
#SRC
