Cybersecurity Engineer

Company Description

Ergomedgroup is a rapidly expanding full service mid-sized PV and CRO specializing in Oncology and Rare Disease.  

Since its foundation in 1997 the company has grown organically and steadily by making strategic investments and landmark acquisitions, with operations in Europe, North America and Asia 

Our company allows for employee visibility (you have a voice!) creative contribution and realistic career development.  

We have nourished a true international culture here at Ergomedgroup.  

We value employee experience, well-being and mental health and we acknowledge that a healthy work life balance is a critical factor for employee satisfaction and in turn nurtures an environment from which a high-quality client service can be achieved. 

Come and join us in this exciting journey to make a positive impact in patient’s lives.

Job Description

The cybersecurity engineer will play a critical role in designing, implementing, and maintaining the security architecture necessary to protect enterprise systems, networks, and data against emerging cyber threats. This role ensures that cybersecurity practices align with industry standards, regulatory requirements, and the organization’s business objectives.

The primary focus of the cybersecurity engineer will be on developing and managing security measures to safeguard sensitive information, identifying vulnerabilities, and ensuring the organization’s resilience against potential cyber incidents. They will collaborate with cross-functional teams to implement security tools, technologies, and best practices, enabling secure operations and supporting risk-informed decision-making for enterprise-wide initiatives.

Role and Responsibilities:

• Monitor and analyse security events using Microsoft E5, Defender, Sentinel SIEM, and related tools.
• Perform web content filtering, malware analysis, and incident response triage to detect and mitigate threats.
• Manage vulnerability assessments, threat intelligence processes, and the incident response lifecycle.
• Perform threat hunting aligned with the MITRE ATT&CK framework.
• Coordinate external penetration tests
• Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks.
• Develop and implement data governance principles to classify, protect, and manage data throughout its lifecycle, collaborating with data stewards to establish and enforce data policies, standards, and security best practices.
• Collaborate with internal teams and external providers to apply security-by-design principles and assess third-party solutions.
• Ensure compliance with industry standards (e.g., ISO 27001, NIST) and maintain thorough security documentation.
• Assist with security audits and assessments.
• Provide technical advice to colleagues and train staff about potential security risks and prevention strategies
• Stay updated on evolving attacker tactics and contribute to "lessons learned" reviews for continuous improvement.

Qualifications

Education:

A bachelor’s or master’s degree in computer science, cybersecurity, information systems, or a related field.

While not mandatory, holding any of the following certifications would be an advantage:

• Certified Ethical Hacker (CEH)
• GIAC Security Essentials Certification (GSEC)
• CompTIA Security+
• Microsoft Certified: Microsoft Security Operations Analyst
• Microsoft Certified: Azure Security Engineer Associate
• Certified Cloud Security Professional (CCSP)

Experience

• At least three years of experience in cybersecurity engineering, information security, network security, or a similar role.
• Expertise in identifying, assessing, and mitigating vulnerabilities across systems, applications, and networks.
• Strong experience designing, implementing, and managing security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, and SIEM solutions.
• Experience with cybersecurity frameworks and standards such as NIST, ISO 27001, CIS Controls
• Hands-on experience in incident response, including detection, investigation, containment, and recovery of cybersecurity incidents.
• Familiarity with scripting and automation for security tasks using tools and languages such as Python, Bash, PowerShell, or others.
• Intermediate experience with cloud security in platform Azure, including tools such as Azure Security Center
• Proficiency in managing and securing various operating systems (Linux, Windows, macOS) and virtualized environments.
• Knowledge of modern authentication and authorization protocols, including OAuth, SAML, MFA, and zero-trust architecture concepts.
• Experience with cybersecurity tools and technologies for:
  • Endpoint detection and response (EDR).
  • Threat intelligence platforms (TIPs).
  • Network monitoring and traffic analysis.
  • Forensics tools and techniques for investigating security incidents.
• Ability to recognize and address evolving security challenges, such as ransomware, phishing, and advanced persistent threats (APTs).
• Excellent problem-solving skills, including the ability to debug complex issues, analyze patterns in cyberattacks, and develop long-term solutions to mitigate risks.

Additional Information

We prioritize diversity, equity, and inclusion by creating an equal opportunities workplace and a human-centric environment where people of all cultural backgrounds, genders and ages can contribute and grow.  

To succeed we must work together with a human first approach. Why? because our people are our greatest strength leading to our continued success on improving the lives of those around us. 

 We offer: 

• Training and career development opportunities internally  
• Strong emphasis on personal and professional growth 
• Friendly, supportive working environment 
• Opportunity to work with colleagues based all over the world, with English as the company language 

Our core values are key to how we operate, and if you feel they resonate with you then Ergomed is a great company to join!  

Quality 

Integrity & Trust  

Drive & Passion  

Agility & Responsiveness  

Belonging 

Collaborative Partnerships  

We look forward to welcoming your application.