At Pacmed we develop world leading AI-based decision-support software for intensive care doctors. It’s a hugely exciting area where we’re breaking boundaries every day. We have currently implemented our software in our first ICUs, and we are currently developing new exciting features and prototypes, with the ambition to scale across the Netherlands and beyond. We’re looking for a Senior Information Security Manager who’s excited to manage our ISMS and ensure all stakeholders are aligned, involved and aware to help improve the level of medical care for as many patients as possible.
Why Pacmed is a great place to work
What would be expected of you
Manage the ISMS and ensure all stakeholders are aligned, involved and aware.
Lead the development and continuous improvement of ISMS-related procedures.
Maintain high quality documentation related to ISMS processes (i.e security incidents and/or data breach procedures, incident response plans).
Manage and lead internal and external audits, ensuring compliance and managing communications with auditors.
Conduct root cause analysis and ensure timely closure of non-conformities (NCs) and corrective actions (CAPAs).
Perform gap analyses in relation to new or updated standards, identifying vulnerabilities and applying appropriate security controls (ISO 81001-5-1).
Monitor and evaluate agreements with external suppliers.
Analyze and communicate security-related data, metrics, and risks to the management team.
Collaborate with the QARA and Engineering teams to ensure alignment between the ISMS and QMS.
Promote security awareness through training, workshops and internal audits.
Must-haves
There is no need to apply if you don’t meet these requirements, sorry!
Experience with ISO 27001, NEN 7510, and other relevant security frameworks applicable to a medical device company;
Experience in leading internal and external audits (ISO 13485, ISO 27001);
A Bachelor/Master degree in Pharmacy, Chemistry, Engineering or equivalent degree and five years of experience in the medical device field.
Should-haves
We hope you bring these things as well, but don’t worry if you don’t tick all the boxes.
Previous experience as Information Security officer or as Data Protection Officer (DPO)
Strategic: understands the role of ISMS within the overall business objectives, ability to manage projects and communicate with stakeholders effectively
Natural drive for quality, focus on operations and problem-solving skills
Expected to work independently under minimum level of supervision
Excellent communication skills and ability to work collaboratively
Nice-to-haves
These are things that would make your profile jump out!
Experience with cloud security management (Azure, etc.)
Previous experience in a software or healthcare startup and/or scaleup environment
Experience in vendor management for security compliance
🏝 25 paid holidays per year based on full time employment
➕ The option to buy 5 extra holidays based on full time employment
🚀 You get a SAR package
👵🏽 Sponsored contribution of an equivalent of 6% of your salary to a private pension fund
💡 Development Day once a month – spend 5% of your work time for personal development!
📚 Yearly 500 euro budget for learning and development
🏠 Flexible working arrangements in working hours and working from abroad
🏖️ Possibility to take a 3-months sabbatical once employed with a permanent contract
🥗 Lunch provided daily at the office, with plenty of vegetarian and vegan options
🏋🏽 A ClassPass and OpenUp subscription
🙏🏻 Option to customize public holidays: swap some standard Christian holiday for alternative days to accommodate personal or religious observances
👶 Extra paid additional birth leave and maternity leave
🖥️ Company laptop, phone allowance and home office equipment provided
🎪 Regular social events, with quarterly outings and yearly off-site
At Pacmed, we think there is strength in diversity. Studies show that women and members of underrepresented communities apply for jobs only if they meet 100% of the qualifications. Does this sound like you? If so, Pacmed encourages you to reconsider and apply! Building responsible AI requires diverse perspectives, equitable practices, and integrity every step of the way. This is our commitment.
We’re looking forward to meeting you!