Cybersecurity Officer (CYSO) Southern Europe (m/f/d) Lisboa

Cybersecurity Officer (CYSO) Southern Europe (m/f/d)
Lisboa
Lisboa, Lisboa, Portugal

CYSO for Southern Europe is responsible for implementing cybersecurity strategies and measures to ensure business continuity, compliance with mandatory regulations, and safeguarding SHS business in Spain, Italy, Portugal, and Greece. The CYSO shall orchestrate and lead cybersecurity activities and support the Zone Management team on all related matters.

Key Responsibilities:

1. Understand local, regional, and
   - specific cybersecurity developments to ensure the implementation of the SEU Zone and Country-specific cybersecurity strategies, aligning with local business needs, regulatory requirements, and global SHS cybersecurity processes.
2. Oversee and actively drive the implementation of the corporate cybersecurity strategy within the scope of SEU Zone and Countries (Spain, Portugal, Italy, Greece).
3. Implement strategic priorities related to cybersecurity according to the Zone Strategic Business Plan and Hoshin-Kanri Breakthrough Targets.
4. Support the identification of
   - and
   - critical assets and advise leadership on security posture.
5. Define and ensure the execution of portfolio security strategies for assets developed in the SEU Zone and Countries.
6. Ensure compliance with cybersecurity requirements and best practices for portfolios in scope.
7. Manage and address cybersecurity risks in the portfolio and operations of the organization units.
8. Lead local cybersecurity certification and compliance efforts for legal entities in scope.
9. Support customer requests regarding security documentation and discussions.
10. Oversee the quality and accuracy of cybersecurity information submitted in customer questionnaires or tenders.
11. Participate in cybersecurity incident and vulnerability management procedures.
12. Provide cybersecurity expertise or liaise with experts across Siemens Healthineers.
13. Monitor regulatory and legislative landscapes to derive necessary actions and liaise with authorities.
14. Represent Siemens Healthineers in local security communities within the scope countries.

Requirements:

1. Master's degree in Cybersecurity, Information Security, Computer Science, Business Informatics, or related fields.
2. Relevant professional certifications (CISSP, CISM, CISA, GSLS) preferred.
3. Over 7 years of experience in cybersecurity or information security, especially in assessing and implementing security measures.
4. Knowledge and experience with the Spanish National Cybersecurity Scheme (ENS) certification preferred.

Skills:

1. Strong knowledge of information security frameworks (ISO 27001, Common Criteria), risk management, and regulations (NIS2, ENS, Cyber).
2. Working knowledge of network security, application security, and secure software development practices.
3. Understanding of secure operations principles (monitoring, incident response).
4. Excellent communication skills for engaging with stakeholders and explaining complex concepts to diverse audiences.
5. Analytical and
   - solving skills with strategic thinking and multitasking ability.
6. Fluent in spoken and written English, including technical discussions.