Service Owner - Security
Hoya
Job Description
The Company
HOYA Group: Founded in 1941 in Tokyo, Japan, HOYA Corporation is a global technology and med-tech company and a leading supplier of innovative high-tech and medical products. HOYA’s divisions and business units research and develop products utilized in the healthcare and information technology fields. In the healthcare field, we provide medical device products such as eyeglasses, medical endoscopes, contact and intraocular lenses, orthopedic implants, surgical/therapeutic devices and medical device reprocessing and disinfection solutions.
In the information technology field, we provide products such as optical lenses, photomasks and blanks used in the manufacturing process for semiconductor and LCD/OLED devices, text-to-speech, human resources and other software solutions and critical components for the mass memory and cloud storage industries. With over 150 offices and subsidiaries worldwide, HOYA currently employs a multinational workforce of 37,000 people.
The PositionThe Service Owner for Security is responsible for the overall management and ownership of security-related IT services within the organization. This role plays a pivotal role in ensuring that security services meet the needs and expectations of their users, align with business objectives, and deliver value to the organization. The Service Owner defines the security service strategy, manages service design and delivery, and acts as the primary point of contact for all security service-related matters.
Internal Relationships:Cross-functional IT Teams, service desk, end users: Collaborate on security service design, development, delivery, and operations.External Relationships:Service Providers and Vendors: Collaborate for security service delivery and improvement.Industry Associations: Stay informed on security service trends and best practices.
Major Responsibilities
Service Strategy and PlanningDevelop and communicate a clear security service strategy, including objectives, scope, and goals.Align the security service strategy with the organization's business and IT objectives.Service Design and DevelopmentDefine the security service portfolio, including service offerings, service levels, and service catalog items.Collaborate with stakeholders to design and develop security services, ensuring they meet user needs and quality standards.Service Delivery and OperationsOversee the day-to-day delivery and operation of security services.Monitor security service performance, availability, and reliability, taking proactive measures to ensure continuous improvement.Service Ownership and AccountabilityAct as the primary point of contact and accountable owner for security services.Define and manage security service-related policies, standards, and procedures.Service Governance and ComplianceEnsure that security services comply with relevant industry regulations and internal policies.Manage security service risks and compliance requirements.Stakeholder EngagementCollaborate with internal and external stakeholders, including service providers and vendors.Gather and prioritize user feedback and requirements to enhance security services.Service ImprovementContinuously identify opportunities for security service improvement and optimization.Drive security service enhancements based on feedback and performance analysis.Incident ManagementOwn the incident resolution for any security service issues, providing resolution or allocating it to relevant team members.Financial ManagementManage the budget and financial aspects of security services, including cost optimization and resource allocation.
Key Deliverables
Quantitative KPIs:Percentage adherence to security service uptime and availability SLAs.Percentage adherence to SLAs for resolution of security incidents.NPS for security services from end users.Qualitative KPIs:Effectiveness in implementing initiatives to improve the quality of security services.
Qualifications
Education/Training Qualifications:Bachelor’s degree in Cybersecurity, Information Technology, or related fieldCertifications such as CISSP, CISM, CISA, ITIL, or equivalent are highly desirableExperience:5-8 years of experience in IT security or service management roles.Proven track record of successfully managing and owning security services.Strong understanding of service management frameworks and best practices.