Job Description
At Olympus, we are committed to our purpose of making people's lives healthier, safer and more fulfilling. As a global medical technology company, we partner with healthcare professionals to provide best-in-class solutions and services for early detection, diagnosis and minimally invasive treatment, aiming to improve patient outcomes by elevating the standard of care in targeted disease states. For more than 100 years, Olympus has pursued a goal of contributing to society by producing products designed with the purpose of delivering optimal outcomes for its customers around the world.
Within the Olympus Corporation, Olympus Surgical Technologies Europe (OSTE) is the global competence center for development, production and repair services for rigid endoscopy, bipolar high-frequency surgery and reprocessing. With a total workforce of about 3,600 employees at 14 locations in EMEA and its headquarters in Hamburg, the company stands for exceptional performance in medical technology and therapy and offers a full range of the most modern endoscopic applications from single products to procedure-oriented system solutions.
- Support EMEA product security governance as a core PSIRT (Product Security Incident Response Team) member, coordinating global PSIRT activities and ensuring compliance with processes
- Facilitate collaboration across disciplines and ensure timely delivery of results
- Engage with external partners (regulatory bodies, industry groups, researchers) to manage reported cybersecurity vulnerabilities and incidents
- Develop and maintain incident response plans, conduct drills and coordinate responses to actual incidents
- Propose process improvements based on regulatory updates and operational experience
- Act as tier 2 contact for product-related cybersecurity queries for EMEA-developed medical devices, ensuring accurate and consistent responses
- Design and deliver training sessions on post market product security processes and best practices
- Bachelor's degree in Cybersecurity, Computer Science or equivalent
- Associate degree acceptable with several years of relevant experience
- Several years of experience in product security, including incident response and external communication (e.g., customers, regulatory bodies)
- Familiarity with regulatory environments, preferably medical
- Knowledge of development principles and lifecycles
- Strong grasp of product cybersecurity best practices and standards
- Understanding of software architecture and systems
- Knowledge of medical product regulatory requirements
- Proven ability to drive interdisciplinary collaboration and activities
- 30 days of annual leave
- Up to 60% mobile work possible and flexible work time model with overtime compensation
- Holiday and Christmas bonuses
- Corporate benefits (discounts for employees)
- Comprehensive company pension scheme and capital-forming benefits
- Company restaurant with live cooking and healthy food (subsidized)
- Employee Assistance Program of famPLUS to support your health, mental and emotional well-being
- Subsidy for public transportation (Deutschlandticket), free parking spaces and bike or car leasing
- Various subsidized company sports groups and access to the in-house company gym