Cloud Security Engineer

Are you passionate about safeguarding data security in healthcare? Join Noteless, a rapidly growing health tech startup revolutionizing how healthcare professionals manage their time and workload. We're seeking an experienced Cloud Security Engineer to help us maintain the highest standards of data security as we expand our innovative AI-driven platform.

About Noteless

Noteless is transforming healthcare by empowering professionals to focus on what truly matters—providing excellent patient care. Our AI-driven platform captures and organizes patient conversations into structured medical notes, reducing administrative tasks by up to 2 hours daily. Our team combines medical expertise with cutting-edge technological innovation, bringing together experienced physicians, specialists, and AI-focused data engineers to create a platform that deeply understands and addresses the needs of healthcare professionals.

Key Responsibilities

We are looking for a proactive security expert to define and implement our security strategy. This role is critical in protecting our cloud infrastructure, ensuring compliance with key regulatory requirements, and fostering a secure development process.

Security Strategy & Policy Development:

• Develop, document, and enforce security policies and procedures aligned with industry standards (e.g., GDPR, ISO27001, SOC).
• Lead initiatives to achieve and maintain compliance certifications through regular audits and process improvements.

Cloud & Network Security:

• Architect and secure cloud environments, managing configurations for networks, VPNs, IAM, and data encryption both in transit and at rest.
• Implement robust data protection strategies, ensuring proper data separation and secure access controls.

Risk Management & Vulnerability Assessments:

• Conduct regular vulnerability assessments and coordinate independent penetration tests.
• Analyze security incidents, drive remediation efforts, and continuously refine threat detection mechanisms.

Integration with DevOps (DevSecOps):

• Collaborate closely with the DevOps team to integrate automated security checks within CI/CD pipelines.
• Ensure that security best practices are embedded in every stage of the software development lifecycle.

Security Awareness & Training:

• Develop and deliver training initiatives to promote security awareness and best practices across the organization.
• Serve as a subject matter expert for security-related inquiries and lead cross-functional projects to enhance the company’s security posture.

Must-haves

• Extensive experience with Azure, including setting up security infrastructures in cloud environments.
• Solid knowledge of data security principles, network security, operating system security, and database security.
• Proficiency in English and Norwegian.

Nice-to-haves

• Experience in healthcare or industries with high-security requirements.
• Understanding of relevant legal regulations, such as the AI Act.
• Familiarity with SaaS products (B2C).
• Understanding of full-stack development, especially backend processes.

Personal Attributes

We're looking for a solution-oriented, analytical thinker who thrives in a startup environment. You should see opportunities rather than limitations and be ready to make a significant impact in healthcare technology while ensuring top-tier data security.

What We Offer

• Opportunity to shape the future of healthcare with cutting-edge technology.
• Dynamic, innovative environment with rapid growth and exciting challenges.
• Competitive salary and bonus scheme.
• Continuous learning and development with a team of experts.
• Modern office facilities at Forskningsparken, alongside other inspiring and innovative businesses.

Ready to join a company making meaningful change in healthcare? We’d love to hear from you!

Join our journey and help us build a platform that makes a real difference in healthcare! Apply now and become part of our engaged, innovative team at Noteless.