Product Security Officer for Medical Devices - Munich, Deutschland - ZEISS Group

ZEISS Group

Geprüftes Unternehmen

Munich, Deutschland

vor 3 Wochen

Geschrieben von:

Lena Wagner

beBee Recruiter

Beschreibung

Your Role- The Product Security Officer (PSO) for Medical Devices is a member of the Medical Device Security team at Carl Zeiss Meditec AG and reports directly to the Information Security Manager Medical Devices- The PSO Medical Devices manages, consolidates, prioritizes, and coordinates with the global Information Se-curity Manager (ISM) Medical Devices all information security and data protection topics throughout the entire lifecycle of the medical devices- This includes, amongst others, the phases of initial planning, development as well as further development of ZEISS medical devices- Here, he/she (M/F/d) coordinates closely with the respective development teams at the respective site and, if necessary, also across sites- The PSO Medical Devices ensures that the products themselves, as well as the corresponding development and operating processes, comply with the state of the art, the company's internal information security require-ments and the relevant standards, regulations and applicable laws- In addition, where required, the PSO Medical Devices is responsible for bringing the relevant products within the scope of the existing ISO 27001 certification- Furthermore, the PSO Medical Devices, in terms of information security and data protection, is the interface between the respective business unit and the technical implementation in the development units- As such, he/she (M/F/d) also represents information security and data protection issues in strategic decisions and coordination on business level- If required by the product, this also applies across sites or internationally for the correspond-ing product

Your Profile- Bachelor's or Master's degree in the field of IT, a comparable degree or comparable professional experience in information security; relevant certifications from the security field (e.g.

CISM, CDPSE, CISSP or similar)- Mid-term experience in information security and data privacy roles in a development environment (international scope of advantage)- Technical experience in IT-Security- Experience in product development and engineering of advantage Ability to solve new conceptual issues- Ability to correlate technologies, understand complex environments, business requirements, incl.

knowledge outside own area of expertise Ability to interact with subordinate employees, stakeholders, incl.

security engineers, involving matters between functional areas, other company divisions or units- Broad expertise or specialized knowledge on: - IT-Security, incl.

technical implementation of security measures- Data protection / privacy - ISO 27xxx series, HIPAA, GDPR- Agile development- Medical devices- Self-driven, results-oriented approach to work- Strong program and project management skills in international and complex environments- English (fluent)

Your ZEISS Recruiting Team:
Steffen Volk