At Nedap Healthcare we carry great responsibility for all the medical data which is maintained in our systems. We do this at scale: we are a market-leading SaaS-provider and are developing, hosting and operating our solutions for use in the healthcare industry in The Netherlands.
Security is always a top priority. Our applications must comply to high security standards when it comes to aspects as monitoring, auditing, and data access management. To increase our security maturity, we’re building a green team (InfoSec colour wheel). This new team will support the security focus within all our product development teams by improving their development process systematically and at scale.
As part of the green team it’s your task to find, prevent and remediate as many vulnerabilities and (mis)configurations that can be exploited as possible. This does mean diving into code and automating security scans where possible. Meanwhile you are thinking about where and why the mistakes are being made at organizational level and think of possible mitigations. Because of the high amount of teams and applications within Nedap Healthcare, automation and evangelizing are essential parts of this team.
As an example, one of your projects could be to make sure that all teams integrate at least one application security testing (AST) tool into their CI/CD process. Or, as a second example, a project could be to add new analyses onto the continuous monitoring of existing logs, audits and/or metrics to ensure our security mechanisms are performing as intended.
You will work in a new, small team in close collaboration with our developers and Security Officer. At the same time, you will work with many different development teams to detect flawed patterns in the software development process and find ways to improve on them.
We offer excellent primary and secondary employment conditions. You are responsible for your own working hours and vacations. Nobody keeps track of this, we rely on your own responsibility. In addition, we offer you the means to fulfill your responsibilities. Financially too, things are well arranged here. In addition to your salary and vacation allowance, Nedap offers a 13th month, a profit-sharing scheme and the option of shares. We also have a very attractive pension arrangement. But above all, we invest in your development! Nedap does not have a strict budget for your development. In addition to our extensive introduction programme and personal development programme, we would like to explore your potential with you.
Required experience and skills
We're looking for a Security Engineer with a background in software security and a passion for developing robust software. Furthermore, you recognise yourself in the following:
- You are hands-on and have seen your part of software engineering.
- You have good communicative, explanatory, and educational skills.
- You have worked with containerized applications such as Docker
- You are not afraid to discuss complex issues
- Preferably, you have experience with Ruby on Rails and/or Java
About Nedap Healthcare
We help care givers and nurses to save time on administrative tasks. With our technology, they are able to spend less time on registering, planning, reporting, and drawing up care plans, allowing them to devote more time to their patients. The family can also be informed immediately about the patient’s wellbeing at the touch of a button.
Life at Nedap
Interested in joining us? Send your CV and a covering letter to Yorick Hoftijzer by clicking on the application button and tell us why you would be a suitable candidate for this challenging position. An assessment could be part of the application procedure. As a part of the application procedure we can ask you for a Certificate of conduct.
- 1. Your application
- 2. First interview
- 3. Next meet & greet
- 4. Offer
- 5. High five!
You’ve applied? Awesome! We will reply to your application as fast as possible, but at least within 10 workdays via e-mail.
We respect your privacy, therefore you can only apply via our website. Applications via e-mail will not be accepted.