Responsible for security, privacy and medical device regulatory compliance.

Responsible for technology, security, privacy and medical device regulatory compliance.

I worked with the other co-founders to set up the company, create the business plan and secure funding.

Worked with Elisa remote patient monitoring system on international security and compliance, medical device compliance, and security roadmap. I was put in charge of the ISO13485 and MDR/IVDR certification (medical device CE mark) project. In addition to quality management system development, I performed medical device qualification and classification analysis and discussed medical device qualification with Finnish and Swedish regulatory authorities. I also designed a new secure patient onboarding and authentication process, wrote a report on patient data regulation in Finland, Sweden and Norway, and consulted on data protection issues in contracts.

Responsible for overall security architecture and security related regulatory requirements for medical devices in the Patient Care remote patient monitoring program (Nokia Technologies, Digital Health unit), as well as for organizing security training and audits. I also led a security tool evaluation effort to determine the best tools for securing our devops process.Responsible for Patient Care HIPAA compliance. Held HIPAA training sessions for workforce, and assisted Legal department as HIPAA compliance and data protection expert in contracting matters. Responsible for Patient Care GDPR gap analysis.Responsible for EN ISO 14971:2012 compliant risk management for medical devices in the Patient Care program. This included risk management for cloud software (mobile software was handled on Withings side) and creating the risk management file for class I medical device self-certification documentation.

Responsible for overall security architecture and security related regulatory requirements for medical devices in the Patient Care remote patient monitoring program (Digital Health unit), as well as for organizing security training and audits. I was also responsible for the legal and regulatory risk analysis done at the beginning of the program, covering Finnish medical device, medical record and personal data legislation. The system was piloted with HUS Neurology clinic to excellent results [1].Responsible for Patient Care HIPAA compliance, editor of the HIPAA compliance documentation, and responsible for Patient Care HIPAA auditing process done in June-July 2017. The audit was very successful and as a result I was granted a personal Achievement Award.Responsible for organizing EN ISO 14971:2012 compliant risk management for medical devices in the Patient Care program. This included risk management for cloud and mobile software used for remote patient monitoring, as well as for a prototype monitoring device that was being developed at the time. I also led gap analysis for IEC 60601 series of medical device safety standards for the monitoring device. Finally, I developed JIRA customizations using JIRA ScriptRunner and Structure plugins for risk management, defect tracking and requirement management in accordance with IEC 62304.[1] https://lnkd.in/ekvRTfg

Responsible for security architecture, software protection (copy protection and reverse engineering protection) and cloud integration architecture in the High-Accuracy Indoor Positioning (HAIP) project. Also participated in HAIP product planning, analysed competitor positioning tag offerings, and organized training on secure design, privacy, threat modelling and secure coding for multiple teams.

Worked as a system architect on the Serenity project which was developing a data-driven, multi-device, HTML5-based liquid software[1] platform. The idea was to develop a platform for HTML5-based applications that would be able to run on and move between all operating systems, with data stored in the cloud and synchronized to all your devices. I mainly worked on database architecture, cloud architecture and overall system architecture, but also did differentiation / key selling point analysis and studied potentially competing BaaS/DBaaS systems.Designed a dynamic mash-up architecture concept for Cloudberry, an HTML5 cloud phone platform for mobile devices[2]. Implemented web applications that prototyped dynamic mashup concepts. Responsible for the Cloudberry Application Framework (CAF) that is based on jQuery Mobile. Designed and implemented for CAF a componentization mechanism that makes web pages into reusable components.Designed and implemented the backend for a prototype social networking service using Node.js and MongoDB. I was also responsible for user testing, and participated in developing service concept and business model. [1] http://lively.cs.tut.fi/publications/LiquidSoftwareManifesto-2013.pdf[2] http://www.infoq.com/articles/cloudberry-html5-cloud-phone-platform

Advocated for and participated in a cross-organizational effort to use NRC-developed technologies in MeeGo local search, leading to successful technology transfer.Did feasibility analysis on web-based mobile user interfaces, created a concept for quick, inexpensive and context-sensitive integration of web-based services to phones and started a successful prototyping activity which led to a new platform requirement, created a comparison of feature phone application platforms which received positive feedback from internal customers.Led development of a configurable, XForms based, offline-capable J2ME mobile client for mobile SME services. Developed forms functionality (logic and UI) personally. This work was part of the research project that resulted in the creation of the Nokia Tej service; the XForms client was used for piloting the Nokia Tej service in India.Analyzed benefits and weaknesses of XForms technology compared to competing technologies such as AJAX. Led development of an XForms plugin for the Nokia OSS browser.Created two corporate venture proposals. The first one (still theoretically viable, so won't discuss details) run through a full business case evaluation including hiring of a business manager, talks with potential partners, hardware manufacturers etc. The product category turned out to be very cost-sensitive though and while there was clearly a business opportunity, the hardware costs were estimated to be such that we were unlikely to reach volumes that would be interesting to Nokia.The second venture proposal was mobile advergames, i.e. games with either embedded advertising or games created specifically for the purpose of advertising a certain product. While in-game advertisements is a well known feature of mobile app stores today, this venture proposal was created years before the iPhone. This proposal was killed by a reorganization that ended advertising business related activities in Nokia.

Participated in developing a device-independent web-based service development framework by extending XForms technology. The services could be used through either HTML, WAP 2.0 XHTML, WAP 1.0 WML or pure voice interface. Participated in implementing a multimedia adaptation subsystem for the Nokia Multimedia Message Service Center.

Designed and implemented protocol software for a prototype e-book device, studied Java acceleration issues.

Coordinated the work of the nine people in the project, implemented Monads Adaptive Web Browsing Software in Java.

Designed the Monads Adaptive Web Browsing software and co-designed Monads Java RMI performance enhancing software.Designed and implemented a Java / C++ implementation of the DOLMEN Web Browsing software.