DESIRED REQUIREMENTS (PREFERRED)

• Good understanding of DevSecOps principles and modern-cloud architecture.
• Excellent written and verbal skills in German.

YOUR ROLE IN HELPING US ACHIEVE OUR MISSION

As an Information Security Lead, you are responsible for improving and managing the security management systems which need to fulfil requirements of i.e. ISO 27001, HiTrust. You identify vulnerabilities and work with our product and tech teams, to resolve them while ensuring that our platform and data remain secure. To be successful as an Information Security Lead, you are an expert in analytical skills and have in-depth knowledge of best practices to prevent a wide range of security threats. Furthermore, you are an excellent communicator and are able and like to train and educate our staff on various information security topics.

RESPONSIBILITIES

• Hardening the security of our platform by i.e. conducting information security risk and compliance assessments for Sidekick Health’s internal processes, tools, products, and third-party systems to ensure compliance with industry standards and internal information security policies.
• Collaborating with management and product teams to improve security.
• Communicating and promoting Sidekick Health’s corporate rules relevant to information security, educating colleagues about best practices for information security.
• Keeping up to date with developments in IT security standards, threats and the development in the area of AI.
• Overseeing penetration tests to find any flaws.
• Continuously monitor, evaluate, and enhance security controls to adapt to evolving cyber threats and technological changes.
• Documenting any security breaches and assessing their damage.
• Coordinate information security-related activities (e.g. internal audits, external audit preparations) in their area of responsibility.