Cybersecurity Specialist – Digital Enablement

The manager is seeking a cybersecurity professional to support product and engineering teams in evaluating secure architecture and product design, with a focus on cloud-native platforms and application security. The ideal candidate will have practical cybersecurity experience, strong analytical and problem-solving skills, and the ability to effectively communicate security recommendations and best practices to technical stakeholders.

Travel: Minimal travel required; may include 1–2 trips during the 6-month engagement, though travel is not expected.

Work Schedule: 8 hours per day, 5 days per week

Role Overview

We are seeking a Cybersecurity Specialist to support product teams in evaluating and improving the security posture of digital products and technologies. This role focuses on cybersecurity assessments, risk identification, security guidance, and collaboration with engineering teams to help ensure products are developed and maintained in alignment with cybersecurity best practices.

The position supports a variety of technologies including medical devices, IoT and sensor-based products, mobile applications, cloud platforms, and backend systems. The ideal candidate will have experience working with product development teams and possess a strong understanding of cybersecurity principles, risk management, and secure development practices.

Primary Responsibilities

• Support cybersecurity reviews of products, applications, and platforms.
• Participate in architecture and design discussions to identify potential security risks and recommend mitigations.
• Assist with cybersecurity threat modeling activities and documentation.
• Review vulnerability assessment, penetration testing, SAST, and DAST findings and help teams prioritize remediation efforts.
• Support the development and maintenance of cybersecurity standards, guidance, and best practices.
• Collaborate with product owners, developers, architects, and engineers to integrate security requirements into product development processes.
• Assist in evaluating cybersecurity controls and identifying opportunities for improvement.
• Support risk assessments and help document security risks and mitigation plans.
• Monitor vulnerability remediation activities and assist with compliance tracking.
• Participate in governance meetings and provide cybersecurity input as needed.
• Stay informed on emerging cybersecurity threats and technologies.

Required Qualifications

• 5+ years of experience in cybersecurity, information security, application security, product security, or related technology roles.
• Experience working with software development or product engineering teams.
• Knowledge of cybersecurity frameworks such as NIST, ISO 27001, PCI DSS, SOC 2, or similar standards.
• Experience conducting security reviews, risk assessments, or control assessments.
• Understanding of cloud technologies, web applications, APIs, and modern software architectures.
• Familiarity with identity and access management concepts, secure software development, network security, and cryptography.
• Ability to communicate cybersecurity risks and recommendations effectively to technical and non-technical audiences.
• Strong analytical, organizational, and problem-solving skills.

Preferred Qualifications

• Experience supporting medical devices, healthcare technologies, IoT products, mobile applications, or cloud environments.
• Familiarity with vulnerability management, penetration testing results, SAST, and DAST tools.
• Knowledge of regulatory requirements such as HIPAA and medical device cybersecurity guidance.
• Experience with governance, risk, and compliance (GRC) processes.
• Security certifications such as Security+, CISSP, CISM, CCSP, HCISPP, or equivalent are a plus but not required.

Top Required Skills

• Cybersecurity collaboration with software or product development teams.
• Security risk assessment and mitigation.
• Evaluation of cybersecurity controls.

Preferred Skills

• Medical device, healthcare, IoT, or product security experience.
• Cloud security knowledge.
• Application security and secure development practices.

Interview Process: One Microsoft Teams video interview.