Do you want to help create the future of healthcare? Our name, Siemens Healthineers, was selected to honor our people who dedicate their energy and passion to this cause. It reflects their pioneering spirit combined with our long history of engineering in the ever-evolving healthcare industry. We offer you a flexible and dynamic environment with opportunities to go beyond your comfort zone in order to grow personally and professionally. Sound interesting?
Then come and join our global team as Senior IT Security Auditor!
responsibilities :
Responsibilities are to include, but not limited to:
Act as a Lead Auditor alongside qualified Audit Teams.
Develop, design, and execute IT Security Audits and Assessments ad-hoc and as per the global internal Audit Plan.
Audit and Assess IT systems, controls, and procedures to ensure compliance with ISO 27001 requirements and company policies, identifying weaknesses or gaps in the implementation of IT controls and procedures in safeguarding information.
Evaluate Siemens Healthineers IT Quality Management System (QMS), for compliance with, as applicable: ISO 9001, as well as applicable standards and guidance documents specific to the audit target. Knowledge of ISO 13485 and MDSAP would be an advantage.
Develop Audit Reports/Presentations on findings to Auditees and communicating the results to (Senior) Management.
Collaborate with IT teams to implement corrective actions and monitor progress towards achieving compliance objectives. Provide guidance and support to IT teams and stakeholders on implementing and maintaining IT security measures.
Serve as an expert on applicable regulatory and internal requirements, their interpretation, and application.
Accompany and support incoming audits/inspections, liaise with external auditors and counterparts in Business/Functions.
Stay abreast of emerging IT security threats, vulnerabilities, and technologies to continuously improve the organizations security posture.
requirements-expected :
We are looking for a Lead Auditor with 6 to 10 years of experience in ISO 27001, IT Security, ISO 9001, and Auditing (ISO 19011)
The Applicant shall:
Have successfully completed studies in the fields of computer science, IT, economics, or a related discipline. Alternatively, possess several years of relevant professional experience or additional qualification in the field of Information Security or IT Security.
Have proven experience in conducting Audits and Assessments of IT systems, controls, and procedures, specifically within the ISO 27001 framework, in the role as Auditor as well as Lead Auditor
Essential knowledge with ISO 9001, MDSAP, and desired ISO 13485
Have in-depth knowledge of information security principles, best practices, and standards, with a focus on IT environments.
Have strong analytical skills to identify risks, vulnerabilities, and weaknesses in IT processes and technologies.
Have excellent communication and interpersonal skills to effectively interact with IT professionals and stakeholders.
Be a motivated self-starter and be able to work independently and collaboratively in a fast-paced environment, managing multiple priorities effectively.
Have a self-confident personality, experienced with communicating up to senior level management.
Have a consultative mindset.
Be located in Poland
Be open to occasional business travels
Have business-fluent English skills which enables to collaborate and communicate with colleagues in an international environment
Advantageous:
Relevant certifications such as ISO 27001 Lead Auditor, CISA, CISSP, or CISM and ISO 9001 QMA.
Familiarity with industry regulations and standards such as GDPR, NIST, SOC, or HIPAA.
offered :
Exciting work in international corporation
You can work remotely/hybrid/in one of our local offices
We provide necessary tools
benefits :
private medical care
sharing the costs of professional training & courses