Cybersecurity Governance SME - 100% - Permanent position - Lausanne
23.08.2019 | Employee | 100%

Cybersecurity Governance SME
100% - Permanent position 
Lausanne 

Mission:

This position will be responsible for ensuring the cybersecurity program and strategy for the R&D I2C Cybersecurity...

Cybersecurity Governance SME - 100% - Permanent position - Lausanne

Cybersecurity Governance SME
100% - Permanent position 
Lausanne 

Mission:

This position will be responsible for ensuring the cybersecurity program and strategy for the R&D I2C Cybersecurity sub-group with high quality & security levels which are required in the sectors of medical devices development sectors. Being part of a dynamic team, the skills in cybersecurity and security for software development projects, process execution and compliance to regulations will be key to ensure the position responsibilities.
Professionalism, and willingness to contribute to the implementation of the cybersecurity program at the team activities level, the group level and at the corporate level, will be highly appreciated.

Responsibilities:
 

  • As a Cybersecurity Subject Matter Expert, to ensure the responsibility to execute in-depth security assessments, to provide security consultancy, best practices and advices within IT and business project teams as well as building and maintaining positive relationships
  • Dynamic collaboration in Information Security & Cybersecurity Strategy, data protection, systems and services protection, security level monitoring
  • Contribute in the implementation and the management of the Cybersecurity Governance Program including incident response solutions
  • Dynamically involved in the implementation for the organization, the projects, the products, the processes, the business applications and the secure deployment of applications in the field
  • Ensure the implementation and the execution of the Information Security Risk Management strategy and the corresponding Internal Control System (ICS)
  • Support and drive a variety of initiatives and programs in the area of cybersecurity and information security
  • To enhance the assessment methodologies and processes in collaboration with the Cybersecurity department of the organization and all interested parties
  • To promote an adequate safety culture through awareness training.
Profile:

Education
  • MS degree or University degree in Computer Science, Information Systems, in the field of Cybersecurity (EPF, HES, UNI, etc.)
Minimum
  • At least 3-5 years' experience in information security and/or cybersecurity
  • Professional certifications in information and cyber security (e.g. CISSP / CISA / CISM) or equivalent education are an advantage (e.g.: CAS, MAS)
  • Information & Cyber Security audit, implementation, governance, compliance, and risk assessment experiences in complex IT environments are required.
  • Excellent knowledge on HIPAA, GDPR, ISO 2700x, NIST Cybersecurity framework, FDA Cybersecurity guidance, UL 2900, AAMI TIR57, ENISA
  • Well organized, rigorous, accurate, persistent, reliable, communicative, and customer-oriented 
Preferred
  • Knowledge in methodology and practices in security and cybersecurity related to software development
  • Good knowledge in cryptography, strong authentication, Certificates, PKI, PKCS, HSM are a plus
  • Experiences with vulnerabilities handling, OWASP TOP-10, SonarQube reports, penetration testing are a plus
  • Good experience in writing documentation and technical documents (GDP) such as SOP, Working Instructions, Requirements, Specifications, workflows, manuals in the filed for medical device development
  • Dynamic, teamwork mindset, adaptability and flexibility

 
 

This website uses cookies to ensure you receive the best service. Further information can be found in our Terms and Conditions and in the Privacy Policy.