As part of a successful international team, you will be an important link between various R&D groups ensuring the cybersecurity of our products and processes.
You will:
- Establish and maintain processes to ensure compliance with relevant standards (EN IEC 81001-5-1) and guidances (FDA, IMDRF, MDCG) on cybersecurity.
- Support the ISO 27001 certification.
- Provide cybersecurity training to internal staff and external partners.
- Stay up-to-date about emerging threats and best practices.
- Work closely with cross-functional teams, including R&D, quality, and regulatory affairs to ensure cybersecurity compliance in projects.
- Investigate and respond to security incidents.
- Conduct and maintain comprehensive threat modeling for web-based medical device applications.
- Identifying potential threats and collaborating with development teams to incorporate secure coding practices and mitigations.
- Monitor relevant databases for security events and communicate into the organization.
Requirements
- Bachelor or Master in Information Science or Engineering with a strong SW background.
- Minimum of 2 years of experience in cybersecurity required, preferably in medical device cybersecurity.
- Relevant certifications (e.g. CISSP, CEH, CISM) are preferred.
- Strong knowledge of network security, vulnerability assessment, and cyber security risk management.
- Excellent problem-solving skills and attention to detail.
- Knowledge of software development lifecycle and methodologies.
- Knowledge of tools like Burp, Microsoft Threat Modeling Tool, and OWASP ZAP is a plus.
- Ability to work independently and as part of a team.
