Information Security Expert (m/f/d)

We are the leading provider of software in the healthcare sector. With our vision ‘No one should suffer or die just because some medical information is missing’, we want to create a culture that makes a sustainable contribution to the future of our healthcare system. Our work serves the goal of improving healthcare by ensuring that the necessary information is available anytime and anywhere.

Your contribution:

• Security Advocacy: Promote a security-first mindset and advocate for best practices within development teams across all projects.
• Risk Assessment: Conduct collaborative risk assessments and threat modeling to identify vulnerabilities and devise mitigation strategies.
• Security Training: Create and deliver workshops on secure coding practices and threat awareness to improve the security skills of development teams.
• Policy Development: Assist in developing and maintaining security policies and guidelines that comply with industry standards and regulations.
• Incident Response: Contribute to incident response efforts by identifying root causes during security incidents to prevent future occurrences.

What you bring along:

• Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master’s degree or relevant certifications (e.g., CISSP, CISM, CEH) are a plus.
• Experience: Minimum of 2 years of experience in cybersecurity, with a strong focus on application security and secure software development practices.
• Technical Skills: Proficiency in security testing tools (e.g., OWASP ZAP, Burp Suite), static and dynamic analysis tools, and familiarity with cloud security practices (AWS, Azure, GCP).
• Soft Skills: Strong communication and interpersonal skills to effectively collaborate with technical and non-technical stakeholders. Ability to influence and drive change in a cross-functional environment.
• Problem-Solving: Exceptional analytical and problem-solving skills, with a proactive approach to identifying and addressing security issues.

What you can expect from us:

• Ergonomics: Design your workplace so that it meets your ergonomic needs and you can work comfortably and healthily on site.
• Mobile work: Work flexibly remotely two days a week and on site three days a week.
• Training programme: Take advantage of individually selected training courses to expand your skills and continuously develop yourself.
• Events: Take part in internal events and activities, these take place regularly on site but also remotely.
• Work-life balance: Take advantage of our job bike leasing offer, subsidised membership of a cooperating fitness studio and/or our various training offers to find a sporty balance to work.

Diversity is part of CGM! We look forward to receiving your application regardless of disability, gender, nationality, ethnic and social background, religion, age, sexual orientation and identity.

Convinced? Apply online now with your detailed application documents (including salary expectations and earliest possible starting date).