IT Security Administrator (m/f/d)

at  Cancilico GmbH

Are you ready to make a difference in the fight against cancer? Join Cancilico GmbH, a cutting-edge startup at the intersection of medicine and artificial intelligence. We’re on a mission to transform cancer diagnostics, and we need your expertise to help us build a secure foundation for our innovative AI solutions.
About Us: At Cancilico, we’re developing state-of-the-art AI software for cancer diagnostics, providing medical professionals with intuitive, secure, and efficient tools. Our dynamic startup culture fosters innovation, collaboration, and personal growth. Join us in our quest to revolutionize healthcare and make a lasting impact on patients’ lives.
Your Role: As our IT Security Administrator, you’ll architect our secure IT landscape. You’ll work closely with our development and quality management teams to ensure our products meet the highest security standards required for medical software. Your expertise will be crucial in safeguarding sensitive medical data and maintaining the integrity of our systems.

Tasks

• Independently design and implement a robust Information Security Management System (ISMS)
• Develop and enforce IT security policies and best practices
• Conduct risk assessments, vulnerability analyses, and internal audits and provide recommendations for improvement
• Ensure compliance with relevant regulations and industry standards
• Develop concepts, guidelines, and decision templates to optimize information security and data protection processes
• Advise and train employees on security awareness and data protection
• Collaborate with internal teams and external partners to proactively address and resolve security threats and support security incidents
• Manage hardware and software assets within the company
• Optional: Conduct penetration testing and forms of attack simulation

Requirements

• Degree in IT, Computer Science, or related field
• Professional experience in IT security or Security Operations Center (SOC)
• Familiarity with ISMS implementation and ISO/IEC 27001 certification
• Knowledge of security technologies, cloud solutions, and standards (OWASP, ISO/IEC 27001, IT-Grundschutz)
• Relevant certifications (e.g., CISSP, CISM, ISO/IEC 27001 Lead Auditor) or willingness to obtain them
• Experience in IT project management and IT infrastructures
• Optional: Experience as a Data Protection Officer or Information Security Officer
• Optional: Experience in hospital IT and knowledge of specialized applications/KIS and processes

Benefits

• An open and dynamic startup culture in an innovative environment, where communication is at eye level, and your influence extends to product and company development.
• Flexible work arrangements, including attractive home office options
• A salary range of 40.000,- € to 55.000,- €
• Benefit from 30 days of vacation.
• Take on challenging and impactful tasks with ample room for personal growth and self-realization.
• Utilize a flexible budget for office and hardware equipment of your choice.
• Empower your personal and professional development through further training opportunities.
• Option for part-time employment

Our Culture: We pride ourselves on our open, dynamic, collaborative work environment. At Cancilico, you’re not just an employee – you’re a vital part of our mission to revolutionize cancer diagnostics. That means:

• A modern, ergonomic office space designed for comfort and productivity
• Family-friendly policies that support your personal life
• A well-stocked kitchen to fuel your creativity
• We value your input, and our office environment is continually shaped to ensure it aligns with the needs and preferences of our team.
• We encourage professional growth and offer opportunities for training and development to help you reach your full potential.

Ready to Make a Difference? If you’re passionate about using your IT security skills to build life-saving medical software, we want to hear from you! Apply now and be part of a team that’s changing the face of medical diagnostics

• Independently design and implement a robust Information Security Management System (ISMS)
• Develop and enforce IT security policies and best practices
• Conduct risk assessments, vulnerability analyses, and internal audits and provide recommendations for improvement
• Ensure compliance with relevant regulations and industry standards
• Develop concepts, guidelines, and decision templates to optimize information security and data protection processes
• Advise and train employees on security awareness and data protection
• Collaborate with internal teams and external partners to proactively address and resolve security threats and support security incidents
• Manage hardware and software assets within the company
• Optional: Conduct penetration testing and forms of attack simulatio