Job Title:
【品川】Information & Product Security Officer
【職務内容】
日本マーケットのInformation security officerとして、以下業務を担当
- ビジネスサイドからのInformation securityに関する問合せ対応

• ISMSやISO27001等の事務局、およびプロジェクトリード
• Information securityに関する社員トレーニングの企画、および実行

- 内部監査
- 各種グローバルプロジェクトへの参画

• Product securityに関する業務

【レポートライン】在シンガポールのRegional Information Security Officer APAC


Position Summary:

As Information & Product Security Officer, you are the leading responsible expert in your designated business, market and functions for all activities related to information and products & services security, both internally within the Enterprise, and for the products and services we deliver to our customers.

The Information & Product Security Officer works across various environments, markets and business teams to maintain and expand a world-class capability and culture around information & product security and ensures that formal regulations and certifications are kept up to date and adhered to.

General

• Support/localize information & product security awareness, training and education programs.
• Supports, creation, approval and embedding of information/product security policies, adaptions, standards.
• Establish & deliver centralized reporting within Philips and to the business markets on the effectiveness of the information & product security function and its performance against strategic objectives.
• Aligns with the supplier security team on information & product security issues related to Philips suppliers/partners/3rd party ecosystems.

Product & Services Security

• Creating products & services security strategies, both shortterm and longrange, in support of the business goals.
• Identify product/services security requirements throughout the Ideatomarket (I2M)/ Product Development Lifecycle Management and work with other teams as necessary to provide mitigation and cost/benefit analysis.
• Directing an ongoing, proactive product & services security risk assessment program so effective controls can be put in place for those areas presenting the greatest information security risk. Communicating risks and recommendations to mitigate risks to the senior management
• Supporting businesses in maintaining external business certifications and compliance with other (international) guidelines for information security.
• Assisting with business internal audits and overseeing and guiding external audits related to its products and services in the markets.
• Creating products & services security strategies, both shortterm and longrange, in support of the business goals.

Information Security

• Be an authority on the

Philips Security Management Framework:
policies (tactical level), processes and risk management designs. Drive and support compliance/policy/risk reviews for your assigned market areas/business units.

• Engage with business, markets and functions to identify improvement opportunities across secure foundation, information protection, secure access to business information/assets, threat/ incidents response capabilities and vulnerabilities mitigation.
• Drive local business on the implementation of ISMS (High level controls and Technical Baselines), gather information and assess risk together with the risk management team.
• Support the embedding of Information Security (e.g. ISMS, client requirements, Technical Baselines) within business/markets/ functions operations and various environments.
• Support the Market Japan ISO27001 certification and improvement

【採用要件】

• Information securityの豊富なご経験を有する方
• CISA、CISM、CISO、CISSP、CRISC等のInformation securityに関する資格を有する方

- 日本語(母国語レベル)英語(ビジネスレベル)
【契約期間】期間の定めなし
【試用期間】試用期間あり(原則として入社日より6ヶ月)
【就業場所】品川オフィス(東京都港区港南 フィリップスビル)

【就業時間】9:00-17:30 休憩時間: 原則として12:00-13:00

【休日】毎週土(所定休日)/日曜日(法定休日)、国民の祝日、年末年始(12月29日~1月4日)、
【休暇】初年度最大20日間の有給休暇あり、Care Leave、Sick Leave ほか
【給与】基本給(月)65万円-123万円
【賞与】アニュアルインセンティブ(年1回支給)
※アニュアルインセンティブは、毎年3月支給。ただし、会社業績、部門業績、個人評価によって変動して支給されます
※年度途中入社者は対象期間中日割計算あり
【加入保険】社会保険(厚生年金保険、健康保険)・労働保険(雇用保険、労災保険)
【会社概要】
フィリップスは、「

---