About Liva
Since our inception in 2015 in Denmark, Liva has been a pioneer in the field of digital therapeutics. Our ambition is to prevent, manage, and treat chronic diseases through behaviour and lifestyle change, with a keen focus on cardiometabolic conditions.
Headquartered in Copenhagen and London, our collaborations with healthcare systems, including the NHS, as well as life science companies and health insurers, allow us to impact lives at scale.
About the Role
Reporting to Regulatory and Technical Compliance Director and working closely with legal, regulatory and compliance team members to assist in monitoring IT systems; identify and contribute to resolving security incidents, vulnerabilities, security alerts and threats; and contribute to maintaining security certifications, assurances and accreditations.
Key Responsibilities
- Actively monitor, develop and help improve information and Cyber security operations, including assisting in reporting alerts, identifying and mitigating vulnerabilities and cyber threats.
- Provide assistance in IT asset inventory management throughout their lifecycles, from acquisition to disposal including update logs with changes.
- Provide assistance in monitoring and managing security incidents and requests through remediation and resolution and following escalation routes in line with internal incident management policy.
- Support the Security Incident Management process and assist in spot checks and patching management.
- Contribute to threat intelligence analysis and implement remediation or mitigation.
- Contribute to security risk assessments, Helping identify security gaps and recommending appropriate remediation.
- Support annual ISMS review including policy updates and amendments.
Key Criteria
You thrive in a fast-paced environment in a company on a growth journey.
Professional proficiency in oral and written English.
Knowledge and/or experience with security best practices in a cloud environment.
You are working to obtain a degree in a science field including network engineering, computer science, information technology etc., or a related field OR equivalent experience in a related field, e.g. information and cyber security, cyber operations.
Relevant training will be provided for the role.
Knowledge of information and cyber security issues is desirable.
Knowledge of Information Security Management Systems (ISO27001) is desirable.
Knowledge of Cyber Essentials and Cyber Essentials Plus standards is desirable.
We expect you to be able to put in at least 15 hours a week.
