Information Security Working Student (f/m/d) // mediaire GmbH at mediairePosted on: 01/05/2022
Location: Berlin, Germany (ON-SITE)
**Who we are** We’re a Berlin-based MedTech startup dedicated to building AI-powered software that supports radiologists with their daily work: Analyzing medical images. Our first product, mdbrain, helps identify Alzheimer’s and Multiple Sclerosis is certified as a medical product and has already gained much traction in the German market. To safely scale our business further, we’re looking for a working student in information security that helps us make sure that the sensitive medical data we’re processing in our hybrid cloud infrastructure is as secure as possible. **Your mission** * Revisiting our processes from a security perspective, analyzing risks, reporting them to the CTO & our quality management representative, proposing security measures, and implementing them together with our developers * Implementing security measures to ensure our AWS-based cloud services and our local GPU cluster run as secure as possible (managing roles & permissions, extending monitoring, alerting & logging, setting up secure VPNs/VPCs, hardening the systems, ...) * Training and supporting our developers and machine learners with best security practices, so they become security experts themselves * Keeping oversight about security-relevant laws and regulations, especially in the medical domain **Your profile** * You're studying computer science or a related field * You have at least one year of experience in cybersecurity, regulatory or system administration (e.g., from a job, an internship, or personal projects) * You have heard about threat modeling, identification of attack vectors, and risk assessment. * Solid understanding of networking fundamentals, Linux, docker, and bash scripting * Good communication skills, proactivity, and willingness to teach others * Fluent in English and ideally also in German **Not needed, but a big plus:** * Experience with cybersecurity guidelines like ISO 27001 or BSI Grundschutz * Experience in securing and operating (cloud) infrastructure * Experience with the legal and regulatory requirements for processing and storing medical data (e.g., GDPR, ISO 13485, MDR) * Passion for cybersecurity in general, demonstrated by e.g., participation in relevant meet-ups, congresses or in challenges/wargames like "Hack The Box," or by relevant industry certifications * Passion for automation, using tools like Terraform and Ansible for infrastructure, or tools like sonarcube for checking for secure code within the CI pipeline * Experience or interest in machine learning and artificial intelligence * Experience with IT radiology systems like PACS/RIS and with radiological data (DICOM) * Experience with Python **Why us?** * You will join an early-stage venture trying to positively impact people’s lives and health. * You will be able to work hands-on and shape our security processes and infrastructure (both cloud and on-premises) from the ground up. * You will join a highly interdisciplinary team of motivated and highly collaborative data scientists, engineers, physicists, and medical doctors with rapid decision-making processes * Flexibility: You can either work from our offices in Berlin-Kreuzberg or from home * Perks: Membership in the Urban Sports Club, Drinks and Snacks in the office Our current tech stack: Python, react, redis, postgres, mongoDB, docker, AWS (EC2, EMR, RDS, ECR), gitlab-CI **About us** mediaire was founded in 2018 by Dr. Andreas Lemke and Dr. Jörg Döpfert – both physicists with a background in MRI physics. The real founding history, however, dates back to 2009 when the scientific paths of Andreas and Jörg crossed several times with the renowned radiologist Prof. Henrik Michaely. Coming from different backgrounds and discovering that each had the same goal, the idea of a scientifically and economically successful high-tech product took shape – a software powered by artificial intelligence (AI) that allows highly efficient analysis of medical imaging data in Radiology to support radiologists in their daily routine.