Job Description
Fresenius Medical Care is the world's leading provider of products and services for individuals with renal diseases. As a global health care company, we have a special goal: provide the best possible care. Join us to improve the quality of life for a growing number of patients around the world and be a vital part of our team.
#careerswithapurpose at Fresenius
Over 128,000 people across the globe work at Fresenius to provide better ever medicine for ever more people. We offer you the opportunity to make a difference with your career – and to become part of our impressive growth story.
Fresenius Medical Care – Creating a future worth living. For patients. Worldwide. Every day. More than four decades of experience in dialysis, innovative research, the global leader in dialysis services and products – that is Fresenius Medical Care.
- Leading cybersecurity & privacy for the digital product portfolio, incl. cloud, mobile, IoT and, software solutions, in alignment with internal stakeholders
- Apply industry leading cybersecurity and privacy practices and standards to the digital product portfolio
- Perform cybersecurity risk management, including threat modeling, to ensure security and privacy by design and by default
- Assist the project teams with technical security- and privacy-related guidance
- Perform / organize security assurance activities, such as penetration testing, vulnerability assessment, static code analysis, fuzzing, and (code) reviews
- Perform post-market vulnerability assessments and support incident response activities
- Collaboration with cross-functional teams on project level
- Support and advise senior management regarding cybersecurity and privacy risks
- Supervising a team of security advisors for the digital product portfolio
- Academic degree in computer science, information technology, IT security, or a related technical field
- Five years of experiences in secure software development lifecycle (SDLC) activities, preferable within the healthcare industry
- Good knowledge in conducting security risk assessments, including threat modeling
- Familiar with DevOps, IT security, cryptography, and Secure SDLC activities
- Hands-on experiences with SAST, DAST, (code) reviews, penetration testing, and cloud solutions
- Experience in complying with cybersecurity and data privacy regulations, frameworks, and guidelines such as GDPR, HIPAA, MDR, FDA, NIST CSF, ISO 27k, CIS Controls, NIST SP 800-series, OWASP ASVA/MASVS or similar is desirable
- Preferably you have experiences with quality standards in the medical sector, such as ISO 13485, ISO 14971 and/or FDA 21 CFR 820.30
- Professional certifications such as CISSP, CSSLP, or others would be a plus
- Experience in working in international teams
- Fluent in English written and in spoken; other languages like German are an advantage
There is a lot for you to discover at Fresenius, because we have a lot to offer. No matter in which field you are an expert (m/f/d) and how much experience you bring with you — for your professional future with meaning:
- The opportunity to work on a mobile basis, individually in consultation with your manager
- Whether in front of or behind the scenes - you will help to make better and better medicine available to more and more people around the world
- Individual opportunities for self-determined career planning and professional development
- A corporate culture in which there is enough room for innovative thinking — to find the best, not the fastest, solution together
- A large number of committed people with a wide range of skills, talents and experience
- The benefits of a successful global corporation with the collegial culture of a medium-sized company