Senior Information Security Engineer

Munich, Germany

Full Time Senior-level / Expert
Kaia Health logo
Kaia Health
Kaia Health helps large employers and health plans tackle musculoskeletal (MSK) conditions. ✓ ROI guarantee ✓ No straps or hardware ✓ Bill via medical claims
Apply now Apply later

Kaia is a mission-focused health technology company.
Our story began in 2016, when our founders, Konstantin Mehl and Manuel Thurner, created a mission to bring affordable and accessible relief to millions of people with chronic conditions.  No strangers to chronic pain themselves, they decided to innovate ways to remove the obstacles many people experience in getting the leading-edge care they need.
How do Kaia apps work? Kaia uses a dynamic AI-powered algorithm. Our programs are based on multimodal rehabilitation, a holistic approach to managing chronic conditions. Our users have easy access via smartphone and tablet to our programs for back/hip/knee pain and COPD using this evidence-based approach. 
Five years into our story, we are a leader in digital therapeutics, with 500,000+ users worldwide. Having raised $125 million from investors like Optum Ventures, idInvest, and Balderton Capital, to name a selected few, we are poised to create a global footprint in digital self-care. Kaia is patient empowerment made easy.
The regulatory landscape is quickly adapting to the digital ecosystem. Therefore, our mission and strategy bring new opportunities for determined talent to join our journey. With over 100 “Kaianeers” spread across the US and Europe, we now need more specialized talent to help take our mission further.
We are looking for a driven, experienced technical support engineer who is excited about our mission and wants to help us build a strong security infrastructure, security controls and practices, thrives in an entrepreneurial team, adapts easily to change, and enjoys a fast-paced environment.

The role encompasses:

  • Architects, designs, implements, maintains and operates information system security controls and countermeasures around AWS cloud environment
  • Analyzes and recommends security controls and procedures in acquisition, development, and change management lifecycle of information systems, and monitors for compliance
  • Analyzes and recommends security controls and procedures in business processes related to use of information systems and assets, and monitors for compliance
  • Monitors information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends.
  • Responds to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches. Interacts and coordinates with third-party incident responders, including law enforcement.
  • Analyzes trends, news and changes in threat and compliance environment with respect to organizational risk; performs risk and compliance self-assessments, and engages and coordinates third-party risk and compliance assessments.
  • Supports Information Security Officer in Analyzing and developing information security governance with respect to information security and use and operation of information systems.
  • Develops and administers, or provides advice, evaluation, and oversight for, information security training and awareness programs.
  • Assisting CISO in information security strategy and roadmap development. 

Your profile:

  • BS or MS in Computer Science or related field5+ years of cybersecurity experience
  • Have previous experience performing threat hunting and incident response duties using SIEM tools, cybersecurity management consoles, and ticketing systems
  • Must have previous experience with AWS cloud environment and its security products (Cloudtrail, Cloudwatch, WAF, IAM)Experience with managing DLP/antivirus anti-malware/endpoint response and detection infrastructure and endpoints at the enterprise level, including performing upgrades to the back end application and deploying new agent versions to endpoints
  • Understanding the investigative process and performing triage for cybersecurity incidents
  • Experience writing and using simple Python, BASH, or Powershell scripts to automate cybersecurity functions
  • Experience in deployment, development, and maintenance of SIEM
  • Scripting experience to automate security operations, alerting, and compliance checks, CI/CD design, deployment, and management
  • Patching and configuration of Linux systems; Configuring delegated access control on Linux systems
  • Ability to communicate effectively both verbal and written; excellent interpersonal skills
  • Must be detail-oriented and organized with the ability to handle competing demands while meeting deadlines
  • Experience in authentication protocols and frameworks to include OAuth, and AWS IAM
  • Proactive and motivated; team player with a positive can-do attitude
  • You have excellent communication and interpersonal skills
  • Fluent written and spoken English

Ideally you also have:

  • SANS, ISACA, ISC2 Security and cloud certifications (CISSP, eJPT, OSCP, CySA+, GCIA, Sec+, CEH, CCSP, AWS)
  • Strong experience using programming/scripting languages (Python, Powershell, BASH)
  • At least 2 years of experience in a large enterprise SOC environment, preferably in a consultant type role
  • Any advanced white, red, purple, or blue team experience involving directed missions, custom tool creation, operations evaluation, and thinking like the attacker

Some of the benefits we offer:

  • Opportunity to shape the future of digital health – one of the fastest-growing industries
  • A goal that allows you to grow with. We believe we have only built a fraction of what we have imagined
  • Work with an experienced founding team (previously founded and scaled Foodora)
  • Flat hierarchies, flexible vacation and working times
  • Personal development budget of 1200 Euro per year
  • Free drinks, team events, knowledge sharing sessions, engineering library
  • Flexible remote work policy
Some of the benefits of being a Kaianeer:
You can directly influence the future of digital health in a team of industry experts and digital shapers.
You will work alongside serial entrepreneurs (previously founded and scaled another startup, Foodora).
You’ll enjoy flat hierarchies, a hybrid work from home/office environment, and flexible vacation and working times.
We support your professional development and have a budget set aside for you just for that! 
Happy hours, team events, and knowledge-sharing sessions galore!
Join us if you’re looking for an entrepreneurial adventure and an exciting place to grow personally and professionally.
Job region(s): Remote/Anywhere Europe
Job stats:  19  0  0
  • Share this job via
  • or

Explore more Information Security career opportunities