As we expand and dive deeper into the healthcare sector, we are anticipating increased data security thresholds and the need to undergo audits. We're looking for an IT Security Specialist eager to shoulder these crucial responsibilities.

Requirements

• Familiarity with GDPR and HIPAA is just the start; we're looking for someone with hands-on experience in applying these standards to prepare for and successfully pass certifications and audits. We anticipate your participation in developing and implementing data protection processes, ensuring full compliance with these standards, and preparing our company for external audits.
• Thorough experience working with AWS services such as EKS, IAM, KMS, VPC, CloudTrail, and S3. We value skills in developing secure architectures, managing access, protecting data, monitoring, and responding to threats.
• A background in IaaC (Terraform/Terragrunt) for automating deployment and securing cloud infrastructure.
• Experience in implementing data encryption methods in IT systems, introducing solutions for information anonymization, and knowledge of cryptographic key management tools and practices (creation, distribution, storage, and revocation).
• Proficiency in managing vulnerability and incident management systems, including intrusion detection systems and antivirus software.
• Expertise in security audit methodologies, the ability to precisely configure protective mechanisms based on security documentation study, and experience in setting up and using security monitoring and audit tools, including but not limited to AWS CloudWatch and AWS Config, as well as applying third-party solutions.
• In our distributed team, we value asynchronous communication and expect clarity and persuasiveness in interactions with colleagues, management, and regulatory bodies.
• We expect you to effectively manage your time between tasks and priorities, be skilled in quick and effective problem-solving, risk assessment, and risk minimization plan development.

Responsibilities

• Ensure compliance with GDPR and HIPAA requirements.
• Develop and implement processes and tools for data and system security.
• Manage information security risks and incidents.
• Conduct external and internal security audits to confirm compliance with industry standards. A key task will be carrying out an audit and creating a GDPR Compliance plan to ensure adherence to GDPR requirements.

What We Offer

• Embrace the freedom of remote work. No matter where you are, you'll find a supportive and friendly team.
• As part of our team, you'll collaborate with experts in Database Administration and DevOps, using the latest tools.
• At the start of your journey with us, you'll be introduced to our internal processes and supported throughout. With our cross-team collaboration, you'll always have access to answers and support from your colleagues.
• Compensation is personalized and reliant on industry standards as well as individual performance. Benefits include a tech purchase subsidy, access to psychological support, and an options program for standout contributions.