Information Security Specialist

Despite healthcare spending at an all-time high, patient waiting time is getting longer, and patients aren't accessing the quality of care they deserve. At Kry, we believe we can play a unique role in changing this.

As Europe's leading digital healthcare provider and one of the largest healthcare providers in Sweden, we believe that providing accessible and affordable healthcare has never been more important. Our vision has been consistent and clear: great healthcare for everyone. Do you share our vision and want to be part of shaping the future of healthcare?

The role
As an
Information Security Specialist
at Kry / Livi you will be part of continuously designing, monitoring and improving our ISMS. Enabling the business to make security-conscious decisions while operating in a fast-growing agile environment.

This role can be structured as either a full-time or part-time position and will be offered on a temporary basis (minimum 12 months)
. You will be part of the Legal Team with colleagues within data protection, regulatory affairs, general compliance and business law across all our markets. Being a team of experts, we all have our areas of responsibility, but we truly believe in the power of teamwork and prioritise cross-area collaboration whenever possible and meaningful. You will report to the General Counsel.

What You'll Be Doing

• Working as an expert within Information Security capabilities, solutions, policies, procedures and standards
• Work closely together with Legal, Security, IT, Operations, market specific quality and compliance teams, R&D, and other stakeholders
• Assist the business in identifying, analysing and mitigating information security risks
• Draft, manage and implement lightweight and easy to understand policies, procedures and programs adapted to our agile and fast-growing organization
• Advocate and communicate the importance of compliance and information security to the Kry Livi group, and train personnel on relevant policies and processes
• Own planning, coordinating and implementing new information security frameworks and standards
• Managing and completing security due-diligence requests, including vendor assessments, and related documentation
• Perform internal audits and conduct quality assurance and follow up on exercises to make sure policies and programs work efficiently

Who You Are

• You have 5-10 years of experience working both operationally and with implementation of security programs in fast-growing agile environments, preferably at a tech-scale up company and/or a healthcare organization.
• You have a strong sense of ethics and principles but have a pragmatic and in-it-for-the-long-game work attitude where proactive, thorough and a willingness to keep learning are leading words.
• You are familiar with standards such as ISO 27001, NIST CSF, SOC 2 and OWASP Top 10. and information security laws and regulations such as the NIS2 Directive.
• You are eager to find new ways of implementing that essence enabling the business to balance the need for speed and patient trust, in a highly regulated environment.
• You have a good understanding of software development processes, delivery of digital services, online and offline security threats and technical security measures
• You have extensive experience working with a diverse set of stakeholders to figure out reasonable ways forward
• You have good enough legal understanding such that working together with a legal team is second nature to you.
• You are structured, analytical with great communication and presentation skills.

*What's*
in it for you?

• A fast-moving, purpose-driven workplace with amazing, friendly and smart colleagues.
• The opportunity to grow and learn from knowledgeable co-workers and cross-collaboration across departments.
• The chance to be a part of the journey of building the future of healthcare.

Join us and shape your future as well as ours
If you think you're up to the challenge, come and help us to grow, innovate and develop A diverse workforce is an absolute necessity for anyone with a vision like ours: to provide great healthcare for everyone. Therefore, we celebrate differences and are committed to creating an inclusive environment where all employees can truly belong and thrive. We offer a hybrid way of working where we aim to be at our great office at least 3 days a week to cater for a great relationship with our colleagues.

About Kry/Livi
Kry/Livi is the European leader in digital healthcare, allowing patients to see a doctor, nurse, psychologist or other professions online within minutes. We also combine digital with physical care, transforming how millions of patients access healthcare. In Sweden we have 50+ physical units where patients can choose to get help both physically and digitally. Headquartered in Stockholm, we are committed to improving the world's health through innovation, one patient at a time. In Sweden and Norway, we are called Kry. In the UK and France, we operate under the name Livi.

Submissions and Questions
Please submit your application by including your CV or LinkedIn. No submission will be accepted via email, nor when the job posting has become inactive. All applications must go via the careers site or an official Kry / Livi job post. If you have any questions regarding jobs or our recruitment process, please read our FAQ.