Join us in pioneering breakthroughs in healthcare. For everyone. Everywhere. Sustainably.

Our inspiring and caring environment forms a global community that celebrates diversity and individuality. We encourage you to step beyond your comfort zone, offering resources and flexibility to foster your professional and personal growth, all while valuing your unique contributions.

Apply now for the position of Senior IT Security Auditor

Your role:

• We are looking for a Lead Auditor with of experience in ISO 27001, IT Security, ISO 9001, and Auditing (ISO 19011);
• Develop, design, and execute IT Security Audits and Assessments ad-hoc and as per the global internal Audit Plan.
• Audit and Assess IT systems, controls, and procedures to ensure compliance with ISO 27001 requirements and company policies, identifying weaknesses or gaps in the implementation of IT controls and procedures in safeguarding information.
• Evaluate Siemens Healthineers IT Quality Management System (QMS), for compliance with, as applicable: ISO 9001, as well as applicable standards and guidance documents specific to the audit target. Knowledge of ISO 13485 and MDSAP would be an advantage.
• Develop Audit Reports/Presentations on findings to Auditees and communicating the results to (Senior) Management.
• Collaborate with IT teams to implement corrective actions and monitor progress towards achieving compliance objectives. Provide guidance and support to IT teams and stakeholders on implementing and maintaining IT security measures.
• Serve as an expert on applicable regulatory and internal requirements, their interpretation, and application.
• Accompany and support incoming audits/inspections, liaise with external auditors and counterparts in Business/Functions.
• Stay abreast of emerging IT security threats, vulnerabilities, and technologies to continuously improve the organization's security posture.

Your expertise:

• Bachelor's degree in Computer Science, Engineering or equivalent experience.
• Availability to work in hybrid model in São Paulo
• Advanced English (you will be part of an global team)
• Essential knowledge with ISO 9001, MDSAP, and desired ISO 13485
• Have in-depth knowledge of information security principles, best practices, and standards, with a focus on IT environments.
• Have strong analytical skills to identify risks, vulnerabilities, and weaknesses in IT processes and technologies.
• Have excellent communication and interpersonal skills to effectively interact with IT professionals and stakeholders.

Who we are:
We are a team of more than 71,000 highly dedicated Healthineers in more than 70 countries. As a leader in medical technology, we constantly push the boundaries to create better outcomes and experiences for patients, no matter where they live or what health issues they are facing. Our portfolio is crucial for clinical decision-making and treatment pathways.

How we work:
When you join Siemens Healthineers, you become one in a global team of scientists, clinicians, developers, researchers, professionals, and skilled specialists, who believe in each individual’s potential to contribute with diverse ideas. We are from different backgrounds, cultures, religions, political and/or sexual orientations, and work together, to fight the world’s most threatening diseases and enable access to care, united by one purpose: to pioneer breakthroughs in healthcare. For everyone. Everywhere. Sustainably. Check our Careers Site.

As an equal opportunity employer, we welcome applications from individuals with disabilities.

We care about your data privacy and take compliance with GDPR as well as other data protection legislation seriously. For this reason, we ask you not to send us your CV or resume by email. Please create a profile within our talent community and subscribe to personalized job alert that will keep you posted about new opportunities.

To all recruitment agencies:

Siemens Healthineers' recruitment is internally managed, with external support permitted only when a qualified supplier has established a formal contract with us. Unsolicited candidate submissions and referrals, absent a current supplier contract, do not establish consent and are ineligible for fees. We delete and destroy unsolicited information, thus, would recommend you refrain from any such practices. Your adherence to our policies is appreciated.