Development of a cyber security concept (medical technology)

Start : Q1 2026 Duration
: 6+ months
Workload : Part-time or full-time Location : Baden-Württemberg Implementation of a company - wide cybersecurity concept to meet regulatory requirements and secure critical systems and processes in an internationally operating medical technology company. Tasks:

• Analysis of the existing IT and OT infrastructure : identification of vulnerabilities and evaluation of current security measures.
• Creation of a cybersecurity concept : Development of a strategy to comply with regulatory requirements and internal compliance guidelines.
• Definition and implementation of processes : Development of standardized procedures for incident response, monitoring and risk management.
• Integration of security measures into existing systems : Ensuring compatibility with the tools and platforms used.
• Training and awareness measures : Conducting training courses for employees to strengthen safety awareness.

Requirements:

• Solid knowledge of cybersecurity and IT security standards
• Experience with regulatory requirements such as NIS2, ISO 27001, Cyber ​​Resilience Act and other applicable regulations
• Understanding of quality management, compliance and product life cycles in medical technology
• Ability to manage complex projects with multiple stakeholders.
• Knowledge of network security, encryption, endpoint protection and risk analysis.
• Communication and consulting skills
• Languages: German, English (both fluent)