Information Security Officer

Job description

WHY WE NEED YOU

At Nicolab, we believe connecting human and artificial intelligence will revolutionize emergency care. We develop end-to-end solutions to further empower physicians in emergency care. We are growing globally and therefore looking for an Information Security Officer who will strengthen and maintain our Information Security Management System according to ISO standard 27001.

You’ll develop and guard processes and practices to keep patient health information entrusted to us by our customers (stroke care centers) and all of our valuable company business information safe. Your work will have a significant impact on our efforts to expand our presence in regions all over the world by ensuring compliance to regional data protection requirements. Through continuous improvement of our information security systems, you will increase the benefit, availability, and safety of our products for our customers and patients globally.


WHAT YOU'LL DO:

  1. You will assume overall responsibility for the design, implementation, monitoring, and governance of Nicolab's information security framework according to ISO 27001 and other applicable standards and regulations

  2. You will host our bi-weekly Information Security Committee meeting and discuss all security aspects related to our product and company with representatives from all parts of the organization.

  3. You will maintain and build a proactive, security-responsible culture at Nicolab by communicating and training to propagate cyber security policies, procedures and practices throughout the organization.

  4. You will manage (from a security perspective) various IT systems including services, contracts and renewals.

  5. You will plan, manage, execute and follow up on all control checks defined by Annex A of ISO 27001 to ensure the correct implementation of defined processes.

  6. You will organize, manage and follow up on information security management audits, penetration tests and similar.

  7. You will prepare security-related documentation to support sales, marketing, and other activities in the company.

  8. You will communicate to data protection personnel of our customers aligning on data protection and cyber security requirements.


Job requirements

WHAT YOU’LL BRING

You have a passion for information security and are driven to communicate and improve the implementation of secure practices related to our product and the entire company. You have experience working in an ISO 27001 compliant management system preferably including ISO 13485 (Medical Devices) and have knowledge of data processing regulations like GDPR and HIPAA.

You are always looking for innovative approaches to establish and maintain compliance to regulations and requirements and keep our management system efficient and lean-to facilitate growth and maintain flexibility. You are organized and methodical in managing your own work.


WHAT WE'RE LOOKING FOR:

  • BSc degree or higher in engineering or related field.

  • 3+ years of experience in information security, data protection, information technology or software development.

  • You have a broad interest in all aspects of information security and data protection.

  • You take ownership and responsibility for security aspects within Nicolab and communicate proactively throughout the organization.

  • Knowledge and experience with ISO 27001.

  • Knowledge and experience with NEN 7510 (IS in health care), ISO 13485, ISO 14973, GDPR, HIPAA is preferred.

  • Communication skills, written and oral, in English, additional languages are a plus.


WHAT WE OFFER:

  • Chance to make a real difference to patient’s lives

  • A fun and ambitious work environment

  • Pension contribution

  • Additional 8% holiday pay

  • Flexible working hours

  • Travel expenses by car, train or bike

  • Work laptop (Apple or other)

  • Free lunch

  • Stimulating environment with a fun motivated team


WHO WE ARE:

We believe the combination of artificial and human intelligence will revolutionize emergency care and we work each day to make that happen. Founded in 2015 as a spin-off from the Amsterdam University Medical Center, our research background continues to drive our way of thinking. We have a diverse team from all corners of the world, composed of researchers, developers and experienced medical specialists who ensure our product and services match our clients' needs. We’re first tackling the major issue of stroke, the leading cause of life-long disability, where we will ensure every patient gets the right treatment in time. Watch more here.