About the Role
This role leads the development and execution of product security initiatives across the full lifecycle of medical devices, integrating security into engineering processes and ensuring compliance with applicable regulations and frameworks.
Responsibilities
- Lead the creation and implementation of a comprehensive product security strategy
- Collaborate with engineering teams to embed security practices in product development
- Oversee vulnerability management and coordinate timely responses to security issues
- Ensure compliance with healthcare security standards and regulatory requirements
- Guide secure architecture and design reviews for new and existing products
- Develop and maintain policies, standards, and procedures for product security
- Partner with quality and regulatory teams to support audits and certifications
- Manage third-party security assessments and coordinate remediation efforts
- Lead incident response activities related to product security breaches
- Establish metrics to measure the effectiveness of security controls and programs
- Advocate for security awareness and training across technical teams
- Stay current with emerging threats and advancements in medical device security
- Interface with external stakeholders, including regulators and partners
- Support product certifications requiring security validation
- Drive adoption of secure coding practices and tools within development teams
- Oversee penetration testing and red team exercises for product evaluation
- Work closely with legal and compliance to address data protection obligations
- Manage relationships with external security consultants and vendors
- Develop executive-level reports on product security posture and risk
- Ensure alignment of security initiatives with business objectives
- Promote a culture of security-first thinking across product teams
- Evaluate and integrate security tools into the development pipeline
- Support due diligence for mergers, acquisitions, or partnerships
- Contribute to threat modeling and risk assessment processes
- Ensure secure handling of customer data throughout product lifecycles
Compensation
Competitive salary and comprehensive benefits package including equity incentives and performance bonuses
Work Arrangement
Hybrid work model with a combination of remote and on-site presence
Team
Part of the global information security organization reporting to the Chief Information Security Officer
Why This Role Matters
Medical devices are increasingly connected, making robust product security essential to patient safety and trust. This position plays a critical role in safeguarding sensitive health data and ensuring devices remain resilient against evolving cyber threats throughout their lifecycle.
Our Commitment to Inclusion
We value diverse perspectives and foster an inclusive environment where all team members can contribute meaningfully. Our hiring practices reflect a dedication to equity, belonging, and professional growth for underrepresented groups in technology.
Available for qualified candidates requiring sponsorship
